Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
File: ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft (raw, json)
Hash identifier: BrpEL3OKbgC9d1sj6/R3Y9aONIwqbb9D0a8yTpOJ44Y=
Subject key identifier: 79:D4:1C:D1:42:90:C3:F1:72:7A:6F:6B:A2:FB:15:6C:46:3B:95:37
Authority key identifier: 12:B3:00:8E:DB:7C:C9:D6:1D:AF:65:F0:02:26:88:AC:73:25:F0:3A
Certificate issuer: /CN=12b3008edb7cc9d61daf65f0022688ac7325f03a
Certificate serial: 0198D6604C580F987128B6C740FCD823BB96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
Manifest number: 09CF
Signing time: Sat 23 Aug 2025 10:01:31 +0000
Manifest this update: Sat 23 Aug 2025 10:01:31 +0000
Manifest next update: Sun 24 Aug 2025 10:01:31 +0000
Files and hashes: 1: ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl (hash: toHbbWHDf0HAWFnLGG/zX64KWKXe+6Yxcfg9V7Jsp+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:4c:58:0f:98:71:28:b6:c7:40:fc:d8:23:bb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b3008edb7cc9d61daf65f0022688ac7325f03a
Validity
Not Before: Aug 23 10:01:31 2025 GMT
Not After : Aug 24 10:01:31 2025 GMT
Subject: CN=79d41cd14290c3f1727a6f6ba2fb156c463b9537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:68:b7:b1:c5:57:ce:2b:98:38:24:b9:c6:
c9:0d:7a:c8:8f:c5:ba:22:26:9a:d4:b6:b7:60:4f:
28:bc:f5:93:bd:c2:bc:c3:e3:49:cf:22:ae:40:5c:
35:aa:22:60:1d:4f:5d:7c:57:b1:fa:bf:17:5b:fc:
f7:91:e9:e8:6d:34:33:7a:41:ce:29:f5:1a:50:35:
eb:93:0c:63:66:a1:af:fc:28:61:de:db:8c:6c:83:
44:e6:04:81:cd:6f:ff:d9:40:42:f2:01:bc:9b:a6:
f2:d3:0f:3a:f0:56:d0:52:57:9c:2e:8f:57:eb:44:
1d:a7:c8:fe:50:bb:25:12:12:d5:e3:f7:1d:e5:1a:
fc:e9:26:95:22:eb:b3:18:4a:80:9d:16:af:45:7b:
c4:f0:b0:79:87:22:98:a0:60:b6:be:e6:bf:e9:ae:
93:de:92:e0:62:3a:13:5e:53:9c:e4:ea:0b:14:63:
89:03:6a:07:ee:28:c6:c2:f4:f8:39:6e:32:d8:4c:
d8:e7:96:b7:5f:f1:79:b6:85:17:63:fe:57:40:20:
17:83:28:e2:1a:c5:ca:37:54:4f:0b:42:bd:a6:90:
31:60:de:9a:ff:35:92:2c:6f:15:62:de:64:8c:46:
e6:f9:c1:88:7d:27:c3:04:a1:5d:54:ec:09:f5:14:
54:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D4:1C:D1:42:90:C3:F1:72:7A:6F:6B:A2:FB:15:6C:46:3B:95:37
X509v3 Authority Key Identifier:
keyid:12:B3:00:8E:DB:7C:C9:D6:1D:AF:65:F0:02:26:88:AC:73:25:F0:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:16:6c:00:a1:8d:47:c7:e1:c8:5a:2d:f5:93:71:4b:7d:de:
6b:3b:f9:59:5c:bb:73:b8:0c:b1:f5:59:1f:ca:33:17:f7:a5:
9e:36:73:50:86:df:dd:c9:cd:83:65:73:f0:ae:c7:af:2c:71:
57:16:d6:bd:81:36:55:42:a0:a3:b0:bd:85:55:e3:ff:16:c4:
df:2f:f7:ca:05:fd:98:30:e3:a1:0c:60:4a:04:6c:23:51:77:
2d:52:c6:5d:2e:1c:dc:92:d9:9e:b4:34:05:7b:d9:61:59:4d:
0e:c8:cb:ba:5e:59:67:6e:06:f3:0a:b9:1c:0f:15:00:87:fb:
86:98:43:2e:0c:7b:af:11:97:ea:cb:5c:09:77:c4:57:c9:0c:
5f:03:df:2c:90:b8:17:67:e2:4c:b5:c8:5e:00:a7:7c:c8:33:
9a:13:f5:1f:39:ad:8e:ff:e9:e3:8d:10:f8:e5:ed:35:ed:fb:
38:93:ab:e5:c1:77:a8:d3:85:2f:37:41:b4:16:20:46:4a:9a:
13:6d:7e:9c:d5:0a:80:29:cc:45:34:41:d6:5e:fe:18:1a:a9:
1e:fe:a1:15:12:a7:de:17:d8:52:f8:cc:b9:65:fd:ab:b1:23:
3c:81:18:d7:2b:08:d8:35:5f:c3:a7:9f:6b:d1:c3:78:93:e4:
4e:5e:39:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:35:17 2025 by rpki-client