Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
File: EsqtEcXYmB2YPDAehqGs8tgRqsE.mft (raw, json)
Hash identifier: /UnPcidWkEr1Gs6884IqQDm/38DX96P7LUJyI/tNPug=
Subject key identifier: 3E:28:35:E7:45:00:16:34:09:7F:DB:29:72:45:25:4E:60:27:26:89
Authority key identifier: 12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
Certificate issuer: /CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Certificate serial: 0196C239711D540A01FC691F9AA14E3D8B56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
Manifest number: 0F32
Signing time: Mon 12 May 2025 02:01:06 +0000
Manifest this update: Mon 12 May 2025 02:01:06 +0000
Manifest next update: Tue 13 May 2025 02:01:06 +0000
Files and hashes: 1: EsqtEcXYmB2YPDAehqGs8tgRqsE.crl (hash: /JNqCm5X2qku0kc1otbG19aDPimJdX5F3y3laG9dSPw=)
2: wCYSBxlEFn9C3bKzEBin_RqzoTU.roa (hash: HuM1kg7JZIqnFeWlmolggLVBCkZTp9UadWTeRelOxb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:71:1d:54:0a:01:fc:69:1f:9a:a1:4e:3d:8b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Validity
Not Before: May 12 02:01:06 2025 GMT
Not After : May 13 02:01:06 2025 GMT
Subject: CN=3e2835e745001634097fdb297245254e60272689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:89:3a:9d:29:30:31:18:7b:9a:f8:3d:9f:9d:
25:f2:1b:0a:8f:40:02:37:ec:e7:52:d6:51:f3:58:
f3:0c:9f:a5:47:fd:42:d3:fb:23:d9:87:06:77:2e:
d5:39:73:23:ff:96:cd:a5:16:5e:de:37:e8:33:fc:
f6:30:43:bb:d5:b5:e7:53:33:17:8d:e9:83:49:d9:
b9:b2:1c:fb:af:b6:ea:07:e9:3e:00:19:9a:7f:4b:
5d:e2:26:b4:58:79:c5:96:cc:a7:e0:e9:16:d4:9a:
f6:03:a6:6d:f4:58:74:ed:52:12:56:23:7e:86:7d:
4c:a5:24:cc:27:3c:5e:ae:8b:76:c9:cb:92:89:cb:
45:54:9d:db:99:f0:b4:af:ea:46:48:af:22:9a:d4:
89:38:86:a0:b8:16:ff:ce:c4:43:92:7c:a7:63:4d:
7c:e0:ed:26:ec:70:5c:3f:b9:5e:dd:b1:16:f1:59:
77:83:bc:38:f2:d4:f6:f7:4a:fc:15:40:5c:6c:4a:
b5:fb:eb:04:cd:c1:c6:f5:d6:10:0d:52:08:b0:19:
38:5a:96:ba:82:47:a2:76:5a:22:d4:72:72:bf:0a:
63:f3:71:dc:90:81:b4:77:76:d2:74:a4:a8:fb:04:
79:a6:fb:ad:1b:e7:07:fb:a8:a9:7e:d7:0f:db:53:
52:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:28:35:E7:45:00:16:34:09:7F:DB:29:72:45:25:4E:60:27:26:89
X509v3 Authority Key Identifier:
keyid:12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:9c:73:a6:5a:70:53:f7:f5:d3:48:43:75:da:8b:48:10:bd:
96:93:80:a6:55:6c:e4:ef:79:8d:e1:be:67:92:50:9b:4e:68:
4d:1d:1a:11:6a:b9:04:47:b5:78:51:5f:23:11:81:5d:02:a4:
fd:b6:46:c6:2a:6b:cb:52:38:ea:ab:b7:1e:8d:22:93:77:c1:
43:2f:69:7c:f1:77:28:c7:ef:3d:6c:c9:95:ef:ab:60:77:a3:
2b:3d:ce:12:88:55:b4:91:db:11:97:6a:99:fb:33:20:ad:22:
9e:1c:39:99:0f:3c:e0:c0:43:66:76:8a:0a:b6:10:30:10:2e:
fe:de:e3:e3:38:06:17:a8:76:d0:bd:bb:51:c3:e3:47:52:39:
91:54:e4:48:6c:32:60:c6:c0:b4:e3:16:1d:60:ec:79:63:64:
98:d1:40:b7:0a:80:ad:54:4e:02:87:d9:b0:fa:86:36:e6:c4:
bf:fd:8b:7e:75:f9:d6:d3:46:10:fb:6f:fe:d9:8a:df:ee:9e:
a3:82:6a:63:50:c7:4b:46:6a:06:f8:d6:76:70:93:0a:7e:19:
6e:fc:b6:7a:85:0f:78:56:d2:46:82:de:c3:58:c7:01:74:a0:
c8:84:96:c0:1f:16:f5:af:c1:a9:a0:4b:e6:49:bf:77:ab:0c:
67:e0:2e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:12:52 2025 by rpki-client