Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
File: w-twdDgV_kRclYo8URfvJ1PTD34.mft (raw, json)
Hash identifier: 2V7wzMRuRcy4mOxIVHsTf2NqmFCOVoLnpDHiGLJI9Ko=
Subject key identifier: 57:D6:30:20:2E:2A:E2:13:57:10:68:E1:98:0F:A1:B7:D0:50:29:6B
Authority key identifier: C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
Certificate issuer: /CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Certificate serial: 019923D61A12A1911928A65D49900DDCCFCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 11:00:57 +0000
Manifest this update: Sun 07 Sep 2025 11:00:57 +0000
Manifest next update: Mon 08 Sep 2025 11:00:57 +0000
Files and hashes: 1: GzCIBu4tHiFH76_Ly9Ei_0SMBpg.roa (hash: ucUps3PWBgmn642QIizMtNVpME3QV9nJ//n0R1ijDxA=)
2: w-twdDgV_kRclYo8URfvJ1PTD34.crl (hash: Uy8BrukQYLWfZbTHLPCSvjC/4rHBAa9SkCKToJlTJ5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:1a:12:a1:91:19:28:a6:5d:49:90:0d:dc:cf:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Validity
Not Before: Sep 7 11:00:57 2025 GMT
Not After : Sep 8 11:00:57 2025 GMT
Subject: CN=57d630202e2ae213571068e1980fa1b7d050296b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:88:1f:79:63:60:3e:c1:e9:82:5d:3e:72:de:
99:9a:e2:a3:da:6c:29:0e:7f:d2:45:33:6b:83:f1:
63:40:8c:ce:cf:18:f6:e8:11:c8:b7:88:3d:34:10:
51:5e:3f:b0:77:d6:dd:e2:cc:1c:d5:1f:1d:d1:96:
e5:b1:41:f4:df:e2:4c:10:0f:b4:13:2d:c4:66:20:
77:44:11:01:27:32:02:fc:a5:9d:1b:e6:11:19:00:
f7:33:11:3c:20:bf:fa:d1:55:ab:15:96:ec:69:70:
f5:95:cd:2f:e4:37:71:23:e4:b7:66:6f:44:14:7d:
68:0a:95:6b:b9:3b:31:87:44:0a:f6:a0:b9:9f:bb:
64:ef:14:47:74:ba:6b:68:b9:e3:86:c3:1f:0a:36:
a9:ea:1e:20:9e:72:37:05:71:08:c4:23:6f:de:6d:
4c:1c:c2:45:d4:cb:68:ff:9f:7d:e5:d2:5e:b3:00:
82:91:fa:ae:52:77:a7:47:98:6f:9b:b1:34:30:b7:
0f:97:aa:31:a6:9c:ee:01:f8:18:7b:1c:2a:89:e8:
24:84:ef:45:5e:c9:04:88:d7:42:f8:2b:96:21:1e:
db:44:d6:0c:47:b6:46:aa:53:57:d9:df:e6:73:2f:
00:da:6f:f1:7d:ea:77:02:c8:19:3f:fb:1d:92:89:
89:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D6:30:20:2E:2A:E2:13:57:10:68:E1:98:0F:A1:B7:D0:50:29:6B
X509v3 Authority Key Identifier:
keyid:C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:dc:9e:db:f4:cf:8e:c3:94:62:88:d2:ed:7a:e3:d6:76:58:
b1:ee:3f:ac:cd:81:70:cb:36:9d:30:91:16:a5:d4:f1:25:c0:
9b:2c:fa:03:ba:63:0a:3f:df:ab:dc:c1:5e:c6:4a:0b:d9:fb:
5b:66:80:5a:3b:fe:d9:be:d7:25:ed:d7:cd:6f:cc:07:5d:3a:
c3:01:e0:b9:6f:cd:1c:4d:bc:2e:c0:54:ab:63:80:3c:87:b3:
2f:d2:10:55:87:5f:03:d3:d6:e0:80:9a:dc:b5:e7:c1:e2:d0:
17:3f:f1:f0:8d:37:fd:c1:47:65:1f:45:3a:2e:56:38:78:27:
77:58:87:6a:cd:30:2c:25:35:e6:c7:3f:f5:2b:08:38:d7:46:
2c:94:32:46:bc:fc:6c:f0:11:71:73:6d:16:d0:b2:ce:a5:2e:
08:eb:a7:ea:0a:47:46:4d:61:e3:c7:47:32:69:42:db:06:31:
69:60:a9:6d:e7:95:6e:20:58:0b:7c:3b:3f:ca:b2:95:3b:25:
66:06:e9:18:60:2f:5a:24:64:93:28:d9:11:6f:03:f3:4b:db:
97:bb:ba:3c:89:9f:34:e9:34:df:28:a9:93:d7:c7:41:b7:e5:
86:6b:b1:23:6b:7e:00:bb:4c:ac:ec:41:98:48:cd:61:03:39:
e2:e5:56:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:09 2025 by rpki-client