Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
File: uwoTocnh3YTt5DKDSQvng4d1SpQ.mft (raw, json)
Hash identifier: jQ1LHTP/CiB7Bm0G3fQxmXoitn8NqOB4gbU0IOLf85Q=
Subject key identifier: EC:90:06:27:34:74:4B:72:DB:9E:16:81:0C:AD:43:98:2F:D6:41:37
Authority key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Certificate issuer: /CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Certificate serial: 019A725CC0AD8420BAD3FC11BC2506EEA982
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 10:01:12 +0000
Manifest this update: Tue 11 Nov 2025 10:01:12 +0000
Manifest next update: Wed 12 Nov 2025 10:01:12 +0000
Files and hashes: 1: e4ClDxZZC-HgzfD6jjAt7w6H7rI.roa (hash: s/lm7kNCD/Mf0FKczgw09MeHHAa4AoL+4qjfAKGabq0=)
2: uwoTocnh3YTt5DKDSQvng4d1SpQ.crl (hash: C7h0MlRe+gqc1PRqaBptkJQ2LVNr/pBmIOUCacmsHT4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:c0:ad:84:20:ba:d3:fc:11:bc:25:06:ee:a9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Validity
Not Before: Nov 11 10:01:12 2025 GMT
Not After : Nov 12 10:01:12 2025 GMT
Subject: CN=ec90062734744b72db9e16810cad43982fd64137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:6b:6f:6a:9e:63:b6:31:77:17:3d:97:04:
73:dd:87:63:d2:43:e9:95:98:a5:8e:03:f4:b2:e2:
53:47:00:eb:a7:39:0d:69:29:15:09:11:69:9c:b1:
b7:d9:da:2d:af:41:2d:29:f9:06:f0:46:51:9c:31:
5e:2c:56:e4:d4:e5:41:5a:02:76:93:ae:74:ec:7a:
46:0c:92:66:69:38:53:b1:67:d6:a5:32:bb:13:6d:
14:7b:e1:5d:25:e1:bb:da:aa:9c:a0:82:70:2d:15:
39:81:13:55:aa:66:71:b4:be:6d:3b:8a:ad:a5:1a:
84:40:84:db:dc:65:f7:1b:2f:71:4c:ab:93:ec:f2:
73:d6:12:00:d9:6a:ff:4f:c4:d1:f3:ab:4f:77:6b:
dc:fb:9d:6d:42:75:c8:32:cb:79:9a:df:47:9f:8e:
03:de:88:b9:4a:ea:6d:47:17:01:38:68:2b:9c:54:
ac:7d:23:c3:55:a1:0a:b7:9d:e8:eb:84:f9:42:d2:
1f:c1:63:f6:f0:2b:28:2c:45:f9:d4:08:cd:50:bb:
91:06:a0:ee:b9:c8:0f:29:cb:e3:3d:18:bb:b4:ba:
be:d5:d8:3c:46:2a:40:af:71:04:bb:42:c0:1f:b1:
53:4c:d6:bf:93:c0:31:86:79:ad:7b:a2:64:70:92:
21:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:90:06:27:34:74:4B:72:DB:9E:16:81:0C:AD:43:98:2F:D6:41:37
X509v3 Authority Key Identifier:
keyid:BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:ee:18:a6:1e:38:6c:32:87:3d:ce:da:3a:6b:4c:f8:95:5e:
d9:db:6b:81:d3:43:76:5d:ea:d7:4a:a2:d1:23:f1:45:09:b4:
e2:a9:96:d2:a4:cd:e9:b2:64:af:4f:8a:8e:5f:ba:c1:8d:fa:
be:66:92:2c:32:8b:61:28:80:92:f8:b9:25:e4:e4:2f:dc:6d:
65:67:8e:71:53:b3:7e:de:e5:32:ea:57:95:99:01:c7:8e:2f:
6e:9f:4c:0d:6b:3c:2e:e3:15:80:85:6b:c0:c0:2b:cd:9d:c8:
89:33:f8:0e:8c:3c:91:52:b7:b6:8a:0d:fd:f4:b2:a3:64:f4:
1b:c2:f3:8b:bf:9a:bf:32:39:32:40:2f:24:42:75:c0:78:51:
15:1a:ae:15:bf:19:89:e4:b3:93:f2:19:a4:04:71:24:49:81:
62:d4:2b:cf:a8:c1:47:ec:2e:b7:78:98:a2:71:5c:73:a8:f3:
0d:e7:0f:c2:7d:ef:34:31:2b:ee:2b:45:ea:a6:1c:c4:51:60:
8f:44:26:83:ae:e2:96:cc:4e:65:e2:f5:fc:35:cd:12:31:cc:
18:24:08:18:83:bb:c8:1d:55:c1:f9:32:90:4a:67:83:7a:7a:
16:e5:d4:ae:44:a7:cc:e8:74:5b:22:69:58:3e:3f:45:e4:ac:
99:fb:9a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:12:54 2025 by rpki-client