Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
File: ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft (raw, json)
Hash identifier: EowUBgBe61tY+7OP3j2adg5QsFel0EO2rikHA8Nq1hY=
Subject key identifier: 9B:ED:F2:52:54:96:89:FB:FF:4B:0A:FC:B7:B0:EA:E1:14:AE:62:7C
Authority key identifier: 12:B3:00:8E:DB:7C:C9:D6:1D:AF:65:F0:02:26:88:AC:73:25:F0:3A
Certificate issuer: /CN=12b3008edb7cc9d61daf65f0022688ac7325f03a
Certificate serial: 0197B6A060589204A1201ADE199CF82FEDD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
Manifest number: 093A
Signing time: Sat 28 Jun 2025 13:00:52 +0000
Manifest this update: Sat 28 Jun 2025 13:00:52 +0000
Manifest next update: Sun 29 Jun 2025 13:00:52 +0000
Files and hashes: 1: ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl (hash: AvhwS+j51eGGPzE1GzI0w+PxuF6DZ/B0q79gyXdbLEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:60:58:92:04:a1:20:1a:de:19:9c:f8:2f:ed:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b3008edb7cc9d61daf65f0022688ac7325f03a
Validity
Not Before: Jun 28 13:00:52 2025 GMT
Not After : Jun 29 13:00:52 2025 GMT
Subject: CN=9bedf252549689fbff4b0afcb7b0eae114ae627c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:89:9b:b2:3c:23:05:8c:12:5b:49:f7:ed:d7:
6c:1c:da:82:99:c0:e2:7c:60:40:b0:c9:90:d8:51:
12:c2:a0:c8:ea:d1:e8:b9:36:fc:7d:40:30:81:57:
d6:65:f0:bd:6e:9a:a9:b4:19:a3:db:0e:d4:b1:46:
92:5e:fc:cb:69:f3:20:a8:a7:e1:70:64:63:94:8f:
8a:56:4a:77:8f:a1:b9:7c:c3:09:f7:a3:4a:f0:18:
52:5c:64:63:3f:fd:68:de:89:4e:fc:5d:34:3c:77:
32:5a:cf:81:71:b0:ae:03:ff:8e:9f:60:a4:b9:49:
32:3b:fe:c7:98:14:3e:0e:f5:23:7c:08:47:e2:c5:
e5:0d:28:19:42:b5:90:cb:b1:69:36:96:f5:13:0b:
3f:56:23:20:9c:50:d4:ca:ad:87:2f:08:61:6d:07:
41:ed:6f:90:12:12:55:0d:01:e1:b3:96:b3:fa:01:
1c:a1:d9:e7:98:eb:11:41:61:54:f1:5b:c3:77:ae:
c0:38:01:60:51:86:40:fd:51:38:b3:4c:8c:eb:63:
ab:4b:a4:67:6e:ac:90:75:d0:ca:1d:ff:d5:8c:a5:
62:be:ba:d4:fc:85:b3:48:0d:ce:e7:1d:2f:4f:14:
75:cf:48:54:35:45:fd:e5:92:cd:0e:64:90:23:09:
d5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:ED:F2:52:54:96:89:FB:FF:4B:0A:FC:B7:B0:EA:E1:14:AE:62:7C
X509v3 Authority Key Identifier:
keyid:12:B3:00:8E:DB:7C:C9:D6:1D:AF:65:F0:02:26:88:AC:73:25:F0:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:d1:42:67:c4:64:7d:ff:4d:57:64:d7:ab:e2:12:58:dc:73:
7e:2a:94:d3:60:34:37:2f:c0:2f:3b:0e:b4:54:82:c5:d3:78:
69:ff:9d:49:02:99:f7:3c:82:a2:4a:20:9d:5e:7b:6d:07:ac:
24:4d:24:65:f2:88:6a:32:70:35:d2:42:f6:00:bc:34:53:bb:
76:15:a4:fa:c1:1c:bc:1b:5c:6d:33:34:01:3b:59:e4:b5:85:
57:ed:39:75:3c:3c:cd:52:e6:c5:9c:eb:0e:7b:63:c4:b0:a3:
bd:4a:fe:85:ff:12:ac:7d:89:cd:79:64:14:17:28:b0:2a:eb:
00:7d:cb:6e:80:38:a1:6b:47:67:66:99:4c:e3:a5:fc:23:c5:
f7:97:95:0f:ff:a3:d4:35:1d:b1:a3:42:29:3a:57:3c:95:8a:
f2:8a:86:36:54:79:b5:1c:b0:49:1b:3b:56:7d:4b:e0:47:02:
2b:ec:36:7c:9d:a8:82:90:8d:ac:26:9f:8f:5e:f6:03:78:9a:
a9:04:3d:ec:85:af:4f:e6:9f:81:10:f1:0e:ce:56:a4:cd:01:
73:40:34:43:fd:f9:d3:1a:80:84:2f:42:71:68:68:fc:23:60:
a8:2b:c5:7f:8f:ab:a9:b6:6f:b1:d1:10:f5:ae:bc:36:b1:c0:
d4:82:03:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:55:43 2025 by rpki-client