Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
File: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft (raw, json)
Hash identifier: 1Ao/KudN//6ZdiHruNKZEzbDrWZjpS4REKVoQ5NoIB0=
Subject key identifier: AA:4E:60:DC:B2:5D:35:69:CD:B0:F0:A6:5B:01:50:70:AA:6E:80:3E
Authority key identifier: 4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
Certificate issuer: /CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Certificate serial: 0197488C7E1023ACB06EB438AD278F91DD3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
Manifest number: 086A
Signing time: Sat 07 Jun 2025 04:00:56 +0000
Manifest this update: Sat 07 Jun 2025 04:00:56 +0000
Manifest next update: Sun 08 Jun 2025 04:00:56 +0000
Files and hashes: 1: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl (hash: pm8wcaCZfxqnvvI3SDD+HbuKlgOytBJ9i5Y7WwbX+wk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:7e:10:23:ac:b0:6e:b4:38:ad:27:8f:91:dd:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Validity
Not Before: Jun 7 04:00:56 2025 GMT
Not After : Jun 8 04:00:56 2025 GMT
Subject: CN=aa4e60dcb25d3569cdb0f0a65b015070aa6e803e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:cc:e2:2f:63:40:37:10:22:86:9d:7a:24:58:
14:3d:ad:33:4d:b0:5a:5d:05:91:0f:4e:47:62:b6:
3f:b4:75:12:ed:e7:e5:6c:bb:7c:dc:40:ef:bc:c9:
08:78:b4:79:c1:ba:b4:9b:92:43:9c:85:2c:1d:10:
20:eb:a8:27:ea:dc:b3:3d:37:7d:ea:76:bc:43:5e:
77:b5:32:b9:c0:de:14:a9:60:a4:0e:af:dd:59:5c:
09:93:dc:21:07:4d:f9:ed:24:c4:b1:fe:ed:3e:82:
79:87:ce:0f:61:7f:c4:e9:6c:5e:33:4e:53:a8:e5:
9e:65:8b:16:d7:a5:c2:35:79:54:4f:00:e6:1b:d9:
5b:b3:01:40:46:60:ab:b4:ca:37:99:07:b3:64:67:
dd:ae:2a:6b:39:27:1a:3d:9a:ce:a9:87:ee:19:3b:
e0:05:60:33:6b:15:ab:19:52:22:92:1b:48:87:5a:
c9:2a:8e:2b:ce:31:c7:56:59:c0:e2:36:57:8b:3c:
e7:92:af:18:5c:33:76:cf:f7:cd:43:38:fd:7d:15:
a3:1d:e2:10:b9:31:bd:e4:e8:f2:94:34:0a:32:35:
81:59:53:17:37:85:e0:e1:cf:2b:52:7f:99:39:bd:
d0:b5:ea:39:cb:90:ab:86:68:86:08:e3:32:c2:87:
10:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:4E:60:DC:B2:5D:35:69:CD:B0:F0:A6:5B:01:50:70:AA:6E:80:3E
X509v3 Authority Key Identifier:
keyid:4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:64:dc:90:35:d6:cf:41:c3:80:46:6f:12:3d:2a:f6:ee:50:
86:6e:c5:1a:0a:d1:58:68:0e:e7:8a:cf:10:04:04:02:2f:f5:
12:f0:4c:fb:d4:c3:40:be:25:ea:25:d9:7b:cc:d8:17:de:c5:
4d:f1:80:a2:c4:86:e8:68:06:46:68:42:32:52:50:6d:d1:98:
c6:53:e5:cf:bd:73:bb:ab:27:0f:39:bd:67:72:72:d6:65:7a:
27:05:0e:f6:39:b1:90:e6:60:e2:03:c6:c6:74:a0:1d:d9:f8:
49:6b:0c:2c:62:20:51:cd:77:af:67:0a:0f:30:5d:03:14:5e:
2f:77:4f:25:c3:ed:6e:ca:eb:ce:a5:bc:27:c4:46:be:d6:ec:
3b:26:78:ab:35:78:46:c7:0c:7e:e0:60:b4:9e:a5:88:4a:0d:
43:98:af:08:fc:6d:ad:38:e3:2e:04:a5:75:f1:37:85:1d:71:
ad:4c:42:0d:07:d4:dc:f2:b8:10:46:78:3e:b0:0b:12:f7:0d:
f6:80:92:60:ea:7b:b6:59:37:af:fe:d8:79:03:a1:21:ff:db:
c0:32:65:e8:49:de:34:01:03:d7:9c:01:b1:36:66:aa:e5:9e:
d5:4e:5f:0d:cd:e7:47:e1:3e:54:72:da:5e:ef:c5:4f:ce:15:
7e:43:98:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:07:12 2025 by rpki-client