Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
File: w-twdDgV_kRclYo8URfvJ1PTD34.mft (raw, json)
Hash identifier: KMaPsxhPJceeT99DUTePwSKmeAmsge5bbt+itE7Kxv0=
Subject key identifier: 5E:ED:CD:0D:C1:E6:FC:11:7B:FD:64:CB:25:60:2B:8E:67:CB:EB:AD
Authority key identifier: C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
Certificate issuer: /CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Certificate serial: 01974AB1A8B4A22A64D80D7C5EE187B92B66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 14:00:46 +0000
Manifest this update: Sat 07 Jun 2025 14:00:46 +0000
Manifest next update: Sun 08 Jun 2025 14:00:46 +0000
Files and hashes: 1: GzCIBu4tHiFH76_Ly9Ei_0SMBpg.roa (hash: ucUps3PWBgmn642QIizMtNVpME3QV9nJ//n0R1ijDxA=)
2: w-twdDgV_kRclYo8URfvJ1PTD34.crl (hash: UV/wPk0OCuyG1vAPzFVilFJMjK3yy2M/firbsxK63mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:a8:b4:a2:2a:64:d8:0d:7c:5e:e1:87:b9:2b:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Validity
Not Before: Jun 7 14:00:46 2025 GMT
Not After : Jun 8 14:00:46 2025 GMT
Subject: CN=5eedcd0dc1e6fc117bfd64cb25602b8e67cbebad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b7:84:e8:a7:7e:95:52:20:3a:b7:d8:c6:77:
ce:a7:8c:c8:dd:d8:c1:c9:e9:84:18:32:2e:7d:79:
7b:90:c2:e1:12:13:b9:0e:11:92:fe:82:c4:52:e4:
85:5c:a3:9e:c4:57:0b:02:49:7c:db:c2:8f:38:5e:
83:63:d4:71:a2:18:76:6f:c0:b1:aa:d3:56:df:68:
8a:5b:59:30:a9:69:41:0a:ab:14:11:73:17:28:36:
8f:4c:fb:84:f6:c0:08:07:51:4f:0b:e3:68:a0:b0:
11:6f:7d:5e:5e:db:4b:98:38:ec:31:1e:09:47:8b:
82:8b:70:57:95:b0:08:56:5e:aa:e0:d0:2b:00:18:
22:bc:05:2c:85:c9:f8:42:24:30:10:27:f0:c6:d8:
30:4b:53:30:72:b4:df:f6:c3:12:a7:03:d8:17:c8:
0d:1e:24:42:b9:98:42:01:be:c8:67:b3:0c:f8:77:
b7:92:fe:65:3b:21:a5:f4:d8:87:5f:35:47:46:e4:
9b:06:bd:4e:70:8b:6e:5e:e6:19:c4:d1:20:61:9c:
21:a2:54:24:0b:cb:90:50:91:6d:b4:7f:c9:10:c9:
62:8f:98:66:b2:e4:20:dc:0a:6a:74:ef:6f:02:c4:
08:27:d7:bd:5d:eb:d9:ea:93:c0:34:9a:83:fd:25:
be:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:ED:CD:0D:C1:E6:FC:11:7B:FD:64:CB:25:60:2B:8E:67:CB:EB:AD
X509v3 Authority Key Identifier:
keyid:C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:31:f2:9a:13:76:be:10:e1:e3:ff:a3:d7:29:0b:97:9b:7f:
eb:9d:a9:2d:04:54:43:7d:94:e2:e1:84:92:34:e9:07:f1:44:
1f:8f:20:09:ca:62:71:09:e0:89:84:9a:e4:ca:3c:5b:41:9e:
dd:88:d3:20:f4:96:0c:cd:fe:dc:39:86:fa:50:76:dc:a8:8d:
2a:65:6e:44:e4:80:93:5d:11:cd:7a:8d:9d:ce:3f:9b:72:19:
d9:d4:c1:ab:a9:69:c8:6d:79:2b:cc:24:32:0f:11:a6:75:c1:
6c:54:6b:e0:c7:b5:13:01:4e:80:65:fb:a7:b1:ff:f9:d4:14:
94:f0:ca:b9:03:87:f6:6e:d2:ca:ed:4c:64:f8:cf:25:12:34:
3c:e4:2c:bd:b1:80:ee:5a:a5:d1:1d:ea:b4:44:2b:61:5d:ab:
43:6d:44:1a:3d:ed:21:bd:28:ad:2d:50:79:04:e2:24:91:4c:
5a:64:60:53:16:bf:65:28:7b:53:ed:ee:34:62:3b:d9:a8:25:
8e:97:31:7d:fd:3b:09:ee:27:bc:ff:50:d8:9b:c6:33:da:3a:
20:be:44:3f:e1:6e:e3:a1:c3:db:0a:87:25:3d:c3:a4:3e:63:
49:4c:b0:d5:6a:95:5a:9f:7e:4e:b0:70:86:fc:63:32:ba:ae:
f8:fa:28:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:09:51 2025 by rpki-client