Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
File: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft (raw, json)
Hash identifier: qkCaQsw+b7nBswJKZoKJtJjfuM8gY4b/BcZtFwf57Uc=
Subject key identifier: 36:36:0C:C5:71:FB:7B:EB:9B:0B:62:7E:8B:E0:A5:70:DE:B5:AB:47
Authority key identifier: 4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
Certificate issuer: /CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Certificate serial: 01962ABCD208C7E1913C196D185F8AAC750D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
Manifest number: 07D6
Signing time: Sat 12 Apr 2025 16:02:19 +0000
Manifest this update: Sat 12 Apr 2025 16:02:19 +0000
Manifest next update: Sun 13 Apr 2025 16:02:19 +0000
Files and hashes: 1: TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl (hash: Lp8IZq5mPuH2bpzc0PVXm44pOxHIiSCLE+djoDRoQSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 16:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:bc:d2:08:c7:e1:91:3c:19:6d:18:5f:8a:ac:75:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f01333f86ca97071a0f96126ba38e2252e70a34
Validity
Not Before: Apr 12 16:02:19 2025 GMT
Not After : Apr 13 16:02:19 2025 GMT
Subject: CN=36360cc571fb7beb9b0b627e8be0a570deb5ab47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4b:1b:3d:01:0b:dd:a6:8e:43:60:c9:5d:26:
65:b9:ae:0b:81:b9:02:1e:29:eb:c8:ef:f4:eb:fc:
6e:07:03:0d:04:92:ed:99:93:b4:d3:1f:fc:01:ad:
bf:18:52:72:d7:f0:94:ed:64:ff:c2:e0:d0:c4:04:
70:04:cc:76:d5:af:be:b1:11:55:e2:be:42:28:1f:
5d:b0:a2:77:ed:ef:bb:3a:73:06:c5:cf:53:a7:2c:
4b:f4:d1:b1:f9:35:45:3e:07:55:7d:dc:76:9e:28:
5a:7d:34:0d:80:0d:8d:4f:5c:2d:9e:d8:0e:78:eb:
4c:77:10:e8:0a:f6:c4:4a:0e:c3:a5:6c:e0:1e:90:
48:ce:1d:52:36:0b:32:f6:3d:ba:3c:fb:9b:ca:a3:
70:20:c9:8c:e6:44:64:cf:34:fe:3b:f2:a7:91:ac:
d7:ac:9f:45:e6:a5:3c:95:d9:61:9e:21:33:1d:37:
6b:b0:f4:cb:8a:19:02:bc:63:c9:78:c4:37:e6:81:
bb:5a:a7:81:a4:06:96:68:fd:bd:d6:a6:53:3f:88:
b3:b1:97:48:87:1f:55:78:26:a4:55:26:a6:ac:63:
04:eb:00:2a:87:6f:04:33:8a:ca:63:e7:17:83:3f:
13:92:3c:7b:99:fc:b2:50:a5:0e:1d:b2:84:27:d8:
1f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:36:0C:C5:71:FB:7B:EB:9B:0B:62:7E:8B:E0:A5:70:DE:B5:AB:47
X509v3 Authority Key Identifier:
keyid:4F:01:33:3F:86:CA:97:07:1A:0F:96:12:6B:A3:8E:22:52:E7:0A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/64ecd9-a2f8-4685-a872-b4056916b18b/1/TwEzP4bKlwcaD5YSa6OOIlLnCjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:d8:a4:f5:2c:19:c1:cd:a0:f3:0e:41:b7:cb:c8:0d:89:ee:
ef:0b:51:a8:b7:ff:69:d5:6c:ae:56:16:53:2b:a7:41:af:8a:
e0:10:b3:36:f5:eb:fc:2c:95:ff:ed:5a:f7:f7:8b:84:12:f6:
07:1b:9b:a9:fb:8d:1a:34:28:33:51:b3:b9:fa:9a:8d:38:10:
28:e9:2e:17:2d:eb:f4:77:f3:55:e0:e3:c6:5b:a5:f4:41:4e:
76:23:9f:56:0c:89:11:2a:b6:34:22:5a:94:ad:ff:63:b9:7b:
67:f6:fa:0e:21:ad:bf:7e:17:6e:f1:8e:c4:ba:64:4e:57:c3:
27:47:2b:16:fa:4d:cd:f8:da:88:bc:79:97:58:5b:0a:32:ed:
8d:c7:a9:75:43:73:51:77:93:0c:3a:00:aa:79:5b:3e:d6:04:
f1:dd:14:05:3d:61:82:a1:1f:dc:bb:7d:50:a5:65:4d:16:d5:
8a:8a:49:6e:d7:47:67:00:f1:84:05:57:8a:a4:2a:a5:d1:2a:
5c:b6:57:62:fd:c0:44:04:f0:8b:7c:20:62:98:79:2d:1d:5e:
be:38:68:9f:b3:7d:5a:5a:18:74:74:aa:23:51:b3:a2:7d:99:
97:61:07:84:be:62:f8:f7:0e:a4:87:ae:59:53:3a:98:39:95:
5d:85:57:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:48:06 2025 by rpki-client