Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
File: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft (raw, json)
Hash identifier: b8Yky0lnzYd1KrkkulMvHGQVMB22TQErJkbKgLAG6ew=
Subject key identifier: 5A:C2:E2:8D:A8:09:23:A3:F9:F7:41:6C:A0:2C:78:A4:6E:C9:6F:F0
Authority key identifier: 4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
Certificate issuer: /CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Certificate serial: 019A71B954FD2DFC47C154B9A11FDB8F409A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
Manifest number: 0A0D
Signing time: Tue 11 Nov 2025 07:02:42 +0000
Manifest this update: Tue 11 Nov 2025 07:02:42 +0000
Manifest next update: Wed 12 Nov 2025 07:02:42 +0000
Files and hashes: 1: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl (hash: bv1J9VqZoKkSwTUBuEKVmwnsKjea3cGI+HfmAUj/ayg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:54:fd:2d:fc:47:c1:54:b9:a1:1f:db:8f:40:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Validity
Not Before: Nov 11 07:02:42 2025 GMT
Not After : Nov 12 07:02:42 2025 GMT
Subject: CN=5ac2e28da80923a3f9f7416ca02c78a46ec96ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:16:73:13:60:d2:dc:ef:31:3e:b2:91:f9:6f:
1e:13:59:66:00:28:39:7d:47:77:a6:1a:66:26:66:
bb:0e:f1:f9:96:fe:25:4c:ad:15:f9:9d:89:5a:a8:
20:fa:f3:d4:f6:51:4c:a5:da:9f:10:6c:66:22:5c:
76:39:fa:8d:e6:a4:80:19:db:ea:cf:f2:ff:99:65:
80:70:5d:56:cd:3d:20:c9:72:7d:97:70:da:7f:66:
cb:ec:6d:91:65:b6:82:cb:f5:29:59:98:42:4b:5d:
8d:0a:da:82:f3:cb:ac:57:b9:db:b8:9e:95:ee:11:
a0:77:90:25:b9:dc:d6:67:5d:c0:61:07:58:f3:fd:
ad:fc:72:f0:63:98:1f:56:1d:04:a9:1d:bf:aa:bc:
6e:87:6e:0c:ed:c3:bb:e3:f4:ed:22:6e:4f:8c:8c:
f2:23:ea:a9:57:6a:8d:ba:ff:df:95:3f:17:7f:cc:
68:da:1f:dd:d1:0d:34:1c:4f:eb:ec:8b:8b:7e:d8:
aa:b2:8e:5d:5a:01:0c:3d:5a:7f:a6:ea:27:43:32:
65:8f:8f:63:f8:dc:92:74:a3:82:de:01:42:0d:7e:
d8:5c:9f:3f:9a:84:e9:de:be:cf:4b:ce:29:61:c8:
70:e7:8e:43:0c:6b:86:08:87:e8:80:14:e6:48:be:
9d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C2:E2:8D:A8:09:23:A3:F9:F7:41:6C:A0:2C:78:A4:6E:C9:6F:F0
X509v3 Authority Key Identifier:
keyid:4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:2a:6d:46:62:8e:35:ea:01:6e:eb:2b:1e:c7:34:65:ae:40:
e9:48:3c:b2:6b:61:80:74:1c:83:7c:b0:c4:2b:1f:4a:f5:2c:
24:e5:67:5f:e0:7b:cb:76:e1:75:8e:8a:21:fa:0c:b2:ba:f8:
66:ac:82:2a:dc:1f:f2:de:ec:52:35:df:34:f8:53:f9:98:67:
39:0d:f6:ff:10:bf:df:37:26:ac:49:68:a5:96:52:b7:d6:c1:
e7:e4:b3:da:8d:bf:bb:05:26:07:95:6e:df:79:53:f0:8a:e5:
76:66:60:87:e6:89:99:bd:2a:27:d8:88:da:b8:e0:15:4e:c9:
bc:3e:05:5f:b3:43:bb:bf:45:f4:67:6d:cc:d2:e5:3a:d5:f7:
4e:ee:98:41:28:0a:0a:bb:ae:fb:e4:a3:8b:78:2b:7e:f2:cf:
46:7b:f4:06:64:72:9a:8f:98:05:84:76:05:c5:dd:75:11:6c:
f9:2f:e8:58:4d:d6:60:c5:1b:73:ad:ea:5a:a8:8f:b2:6d:b7:
e2:16:6c:9e:47:54:bb:e5:cf:fe:79:50:c8:58:20:19:75:0f:
13:e9:a6:15:ca:8e:bc:7a:51:78:08:37:21:70:64:6f:7b:44:
f7:55:d3:46:a0:a7:48:4c:3c:37:58:dc:c3:1a:25:f8:76:d2:
9f:a9:3e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:46 2025 by rpki-client