Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
File: EsqtEcXYmB2YPDAehqGs8tgRqsE.mft (raw, json)
Hash identifier: dDgjWakDK/3ZZZ9ujsWnvmuBHXsNYRpH+6zcijGhmbU=
Subject key identifier: 88:ED:CB:DB:E0:FD:75:B9:B1:0D:92:EA:A2:EC:26:15:D5:C4:08:D2
Authority key identifier: 12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
Certificate issuer: /CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Certificate serial: 019A047F12F8E05E91F531A4C9E57FC7ED98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
Manifest number: 10E2
Signing time: Tue 21 Oct 2025 02:00:27 +0000
Manifest this update: Tue 21 Oct 2025 02:00:27 +0000
Manifest next update: Wed 22 Oct 2025 02:00:27 +0000
Files and hashes: 1: EsqtEcXYmB2YPDAehqGs8tgRqsE.crl (hash: DNG0iOd0Euk7oFYbwcwWMng8ImRGDmxWv9d5iwqPtEw=)
2: wCYSBxlEFn9C3bKzEBin_RqzoTU.roa (hash: HuM1kg7JZIqnFeWlmolggLVBCkZTp9UadWTeRelOxb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:7f:12:f8:e0:5e:91:f5:31:a4:c9:e5:7f:c7:ed:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Validity
Not Before: Oct 21 02:00:27 2025 GMT
Not After : Oct 22 02:00:27 2025 GMT
Subject: CN=88edcbdbe0fd75b9b10d92eaa2ec2615d5c408d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:da:b6:39:d9:8e:3d:ca:ff:aa:e0:92:76:89:
c5:bb:39:45:da:4c:f3:13:6c:b2:80:a4:85:2c:23:
d8:df:73:22:d9:95:26:ad:8e:40:48:ce:a1:8a:3a:
a3:d8:5e:24:3f:72:eb:ce:e1:72:48:95:ba:36:06:
89:dd:db:94:61:f6:23:23:b1:a7:3c:92:13:9a:be:
57:7d:09:1b:d0:54:79:f3:cb:40:59:b1:7f:ff:fb:
5a:f1:a6:16:a2:ad:42:eb:95:93:6d:86:98:21:69:
02:bc:bb:bc:25:17:fc:0b:45:3b:ef:e8:b9:0c:e9:
59:54:97:e4:16:91:ff:bd:94:7c:83:1a:c8:bd:8a:
d1:53:97:39:58:88:60:95:01:e0:82:96:5d:36:ca:
7b:4c:ae:4d:65:38:e3:74:dc:9d:e7:3d:a0:de:de:
eb:c4:ed:f2:13:dd:4a:fd:6f:86:3b:4d:1c:25:1d:
3b:80:98:e3:15:bf:86:4b:ad:fc:d5:34:2b:29:15:
b0:80:6e:e7:fa:b9:44:b1:b8:13:58:17:ca:a4:67:
6b:1c:0a:36:1c:5a:59:64:81:f3:94:dd:12:2e:ba:
a6:ea:23:c2:64:23:66:e2:66:c4:3d:4b:37:9a:ca:
3f:fb:31:b5:67:89:6f:a1:32:91:f2:7f:dc:ad:2c:
94:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:ED:CB:DB:E0:FD:75:B9:B1:0D:92:EA:A2:EC:26:15:D5:C4:08:D2
X509v3 Authority Key Identifier:
keyid:12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d2:b4:71:cb:af:33:4e:34:45:6e:47:38:4b:40:3e:18:a1:
75:99:a0:f0:b7:46:93:fa:2d:72:e3:9b:c8:01:1f:48:7b:68:
a0:d9:e8:f8:43:d4:4d:4a:81:5b:b0:c5:70:0b:8d:fc:3a:ab:
e3:84:5f:6b:82:fb:c6:54:06:93:6f:cc:eb:f0:11:b4:51:c3:
82:1e:be:e4:84:36:18:12:ef:9e:6d:b8:f7:ac:1f:80:59:e4:
e6:70:9f:92:46:9d:1a:82:ca:e7:1a:af:c1:87:5d:02:b1:e4:
3d:17:a3:64:48:e2:e9:d7:12:4f:e7:e6:3e:6b:48:31:0e:9f:
04:c7:b8:b9:bc:8b:5a:86:62:ec:bf:bb:ec:06:0e:58:3d:fb:
96:d9:01:e2:d8:b6:e3:ba:6c:63:bb:dc:32:fc:29:11:bc:2a:
f8:ac:54:96:ea:d1:d6:9e:f7:9c:57:86:48:71:df:bc:d8:c4:
04:f5:02:c5:a8:e8:4f:1f:2e:32:0a:86:fd:be:34:de:95:e7:
db:6c:71:e4:f8:56:1c:43:51:10:e8:58:b3:39:08:61:5e:07:
89:b6:6e:4f:6e:ea:4c:2e:f8:19:2c:59:f9:22:67:a8:03:cf:
b2:6b:fd:cd:c1:a9:f0:e1:de:b9:9f:63:31:7d:50:a3:52:58:
06:3b:a9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:19:47 2025 by rpki-client