Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
File: w-twdDgV_kRclYo8URfvJ1PTD34.mft (raw, json)
Hash identifier: S1+AiUO3+p4JyDnlQcB2vE+HyEMvYi6RXAWQBDDOrEE=
Subject key identifier: F7:DB:1D:10:61:BA:0C:52:F3:C7:FC:AD:91:64:03:B3:30:3C:72:4A
Authority key identifier: C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
Certificate issuer: /CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Certificate serial: 0196575D2B581C08F27D985D937BEB05DC35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
Manifest number: 14FF
Signing time: Mon 21 Apr 2025 08:00:45 +0000
Manifest this update: Mon 21 Apr 2025 08:00:45 +0000
Manifest next update: Tue 22 Apr 2025 08:00:45 +0000
Files and hashes: 1: GzCIBu4tHiFH76_Ly9Ei_0SMBpg.roa (hash: ucUps3PWBgmn642QIizMtNVpME3QV9nJ//n0R1ijDxA=)
2: w-twdDgV_kRclYo8URfvJ1PTD34.crl (hash: /lr4h0mxABufUhiqcbMlU6xb6jJ1swF/xIiturlTzVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:5d:2b:58:1c:08:f2:7d:98:5d:93:7b:eb:05:dc:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Validity
Not Before: Apr 21 08:00:45 2025 GMT
Not After : Apr 22 08:00:45 2025 GMT
Subject: CN=f7db1d1061ba0c52f3c7fcad916403b3303c724a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:24:52:f0:00:31:6c:d2:ca:b2:31:80:be:c8:
16:ee:f0:92:cc:02:f1:f7:31:af:3f:ab:c9:ed:e6:
0f:08:49:1e:91:25:36:4a:d2:8c:16:ec:81:eb:fb:
fe:e3:2b:08:a7:13:c0:b1:6b:2f:02:c9:25:31:40:
18:c4:d6:fd:a5:80:ed:db:13:47:1e:b6:82:6b:51:
11:9c:ea:00:a4:54:b4:b8:05:cb:3f:32:12:63:0f:
95:22:a6:fa:c8:91:d6:34:38:5f:dc:df:b1:49:d8:
22:98:27:c4:16:c4:c2:cc:37:7e:d9:ed:89:6d:c9:
26:b1:e2:fa:f6:88:49:47:e6:c7:33:82:5c:e0:e3:
7e:03:9f:fb:cc:02:bc:47:28:9a:09:8c:79:5c:6a:
a4:b3:14:8b:50:ea:ec:f5:91:a6:21:26:d4:64:01:
56:a6:e9:35:0c:0a:f1:b7:be:34:30:c0:12:1a:dd:
ae:7f:a6:d0:bc:48:77:7d:71:5b:84:29:37:76:0f:
a8:54:ba:c8:55:c7:cf:d6:6d:3c:5c:0f:3a:92:73:
4d:79:a7:ed:4a:eb:db:e0:e0:88:56:30:95:1d:5d:
20:1c:5c:50:cc:7b:5e:15:fc:15:1f:80:fc:3d:13:
2d:e2:9a:0b:e0:74:44:86:f3:4e:af:c3:b7:1c:23:
a2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DB:1D:10:61:BA:0C:52:F3:C7:FC:AD:91:64:03:B3:30:3C:72:4A
X509v3 Authority Key Identifier:
keyid:C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:36:bf:82:1f:af:25:d9:49:83:4f:db:6c:0c:6b:e9:45:c0:
96:f6:72:e5:41:0c:57:a5:d7:07:f3:56:4a:29:3b:37:cc:7c:
3b:ea:f1:7b:41:d6:7f:df:97:fb:b9:e3:2f:e8:44:07:6e:14:
1b:cb:e3:85:21:88:18:c0:74:1a:b4:36:87:ce:d3:09:c6:45:
13:26:2f:60:a1:d1:89:a8:04:a8:ab:96:37:7d:82:2e:a1:fe:
a7:f1:b5:84:b0:2d:d6:18:5b:65:f8:3e:1b:3c:32:58:17:ec:
09:d3:b2:d0:39:04:da:bc:a3:f6:16:98:83:73:9a:24:1b:4e:
a6:e1:e2:5d:47:6a:31:a3:5f:3c:50:2c:ed:2c:d6:e0:7c:b0:
d8:4b:cc:f4:fd:fa:26:6e:24:3d:92:9d:c2:fc:ab:12:a6:68:
bb:6a:48:9d:7b:36:fc:0e:34:90:bf:78:92:fa:54:e1:5e:00:
a1:4c:04:93:61:f6:a9:4e:79:2b:e0:aa:7b:48:72:7c:18:83:
b0:28:a2:bc:b0:82:4b:6b:d3:a0:e3:a7:a1:ff:eb:0d:25:c3:
4d:12:c2:20:e7:8f:d5:19:3f:2b:4c:a4:06:18:44:d2:3c:19:
5a:c3:cb:3d:a5:5c:ce:19:ff:4e:ce:61:02:a6:d6:80:44:d7:
be:75:d3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:59:45 2025 by rpki-client