Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
File: EsqtEcXYmB2YPDAehqGs8tgRqsE.mft (raw, json)
Hash identifier: sMh/FyI7aV0AnyttJ7a1UR4dqcUoBBHXXikbhLfZzcI=
Subject key identifier: 51:F0:BD:27:4B:0B:BF:03:E4:A5:26:A6:09:37:D4:A0:5D:B3:0B:4F
Authority key identifier: 12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
Certificate issuer: /CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Certificate serial: 0198D54E4DD93A7DC0C03AFEC30843E321F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
Manifest number: 1045
Signing time: Sat 23 Aug 2025 05:02:15 +0000
Manifest this update: Sat 23 Aug 2025 05:02:15 +0000
Manifest next update: Sun 24 Aug 2025 05:02:15 +0000
Files and hashes: 1: EsqtEcXYmB2YPDAehqGs8tgRqsE.crl (hash: oXimfYnAaqtU4sl4ZSPu9tG0COu89430BHQd00V93GQ=)
2: wCYSBxlEFn9C3bKzEBin_RqzoTU.roa (hash: HuM1kg7JZIqnFeWlmolggLVBCkZTp9UadWTeRelOxb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:4d:d9:3a:7d:c0:c0:3a:fe:c3:08:43:e3:21:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Validity
Not Before: Aug 23 05:02:15 2025 GMT
Not After : Aug 24 05:02:15 2025 GMT
Subject: CN=51f0bd274b0bbf03e4a526a60937d4a05db30b4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ed:d0:fb:c5:1d:e1:41:63:26:d9:26:c2:c3:
e5:ab:dc:ed:d0:cc:a2:37:0f:ad:e1:91:8d:12:5d:
34:e9:2f:54:ae:3a:72:38:c3:fc:cc:f3:5c:c5:40:
c3:f2:2c:f7:6d:bc:65:26:6f:0a:43:2b:d7:7d:5c:
04:b3:47:01:d1:1a:b9:b1:23:f3:12:c3:25:94:ee:
8d:b2:14:46:ed:4a:f3:a5:87:99:be:95:d6:02:3d:
73:fe:36:47:15:4e:e3:a6:ce:88:8e:e8:a7:3b:42:
a7:bc:44:cc:e9:13:11:4f:cb:71:46:03:ad:8e:74:
b6:fe:5b:f1:6e:41:f9:d6:51:ae:0f:4d:a1:fc:d4:
36:0c:c0:85:46:05:a8:9f:47:6e:0b:2e:ba:df:6a:
ba:23:8b:4f:c9:0e:b6:b5:3f:a1:f0:52:3a:e0:aa:
14:7c:15:55:c1:c0:d2:58:72:34:16:2e:46:2b:c8:
f8:06:65:75:de:51:26:4f:49:0f:94:43:0a:e7:9d:
5c:47:0f:bb:8c:21:e5:4f:48:57:86:de:61:78:67:
ad:fa:f2:a1:9b:f1:82:14:7f:16:7d:bd:35:76:bf:
90:0b:3e:bd:e5:43:ea:7f:e1:12:83:e4:7f:bd:b6:
54:19:f8:1b:30:7c:e8:8f:df:28:4d:38:27:e0:c3:
98:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F0:BD:27:4B:0B:BF:03:E4:A5:26:A6:09:37:D4:A0:5D:B3:0B:4F
X509v3 Authority Key Identifier:
keyid:12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3c:64:12:e6:b9:b0:fb:16:d6:78:f4:a6:af:80:fa:8a:f5:
ab:af:c3:6b:47:2b:bd:65:ee:07:22:08:f7:b5:8f:1e:02:fd:
b6:71:cb:85:7e:05:71:82:7a:9e:a2:d2:3c:ce:b7:59:5e:53:
bd:1f:ec:9a:f2:04:31:90:e0:7a:23:9a:e2:cf:83:3f:41:fa:
e5:86:1e:c5:85:44:b0:a7:ec:d1:be:c2:5b:14:71:06:e0:f9:
51:38:68:54:b4:55:4a:4e:5e:ba:29:73:6e:5f:e1:c5:0c:b1:
ec:5d:5a:21:3d:63:d9:d9:73:46:a3:26:ac:06:9f:a1:29:bd:
02:50:50:16:ec:b8:5d:6b:c9:f7:10:41:27:5f:05:a3:14:95:
2c:1e:02:74:10:a9:2e:23:8e:6d:b3:73:ba:8c:68:eb:18:ab:
b7:27:ae:74:75:6e:14:d3:75:17:ac:e9:58:8d:0e:c8:ce:7a:
c0:f8:a5:2e:57:a3:69:e4:63:20:c6:42:f4:e2:bd:1d:47:e6:
12:ff:26:d0:15:ea:1a:cb:c0:70:26:41:e3:10:4a:ea:32:10:
a3:b2:ba:a5:0c:88:e4:1b:cc:7e:b9:28:9c:84:ad:ff:14:01:
1c:73:38:9c:92:df:b3:f2:57:e2:6a:07:e6:5a:bf:a8:2b:d3:
c7:a2:7e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:27 2025 by rpki-client