Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
File: ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft (raw, json)
Hash identifier: yWUT5mVKUzZAI9RKMXT900vwTiPwbg5qGHaJuYyGvoY=
Subject key identifier: 78:94:6A:66:96:1E:A5:B2:80:DE:1E:9C:11:01:54:31:87:DB:7D:A2
Authority key identifier: 12:B3:00:8E:DB:7C:C9:D6:1D:AF:65:F0:02:26:88:AC:73:25:F0:3A
Certificate issuer: /CN=12b3008edb7cc9d61daf65f0022688ac7325f03a
Certificate serial: 019D2704AA3C87F5DE211CADB9768204CE9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
Manifest number: 0C0B
Signing time: Wed 25 Mar 2026 22:01:50 +0000
Manifest this update: Wed 25 Mar 2026 22:01:50 +0000
Manifest next update: Thu 26 Mar 2026 22:01:50 +0000
Files and hashes: 1: ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl (hash: 0ygWlMYCqFKp0oY131pwFKZXPxLXTi2UMIYY8ratRvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:aa:3c:87:f5:de:21:1c:ad:b9:76:82:04:ce:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b3008edb7cc9d61daf65f0022688ac7325f03a
Validity
Not Before: Mar 25 22:01:50 2026 GMT
Not After : Mar 26 22:01:50 2026 GMT
Subject: CN=78946a66961ea5b280de1e9c1101543187db7da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a6:2d:dd:f0:4c:f2:df:a4:06:ce:db:ff:0e:
66:37:f7:e7:e7:25:7f:6f:b7:f1:c8:bf:b7:6e:95:
bf:49:d4:e8:0c:73:9f:3b:21:ad:93:78:89:83:b8:
40:10:e6:33:ae:92:3d:48:2a:12:a2:6e:51:07:c7:
93:6d:a2:63:eb:fa:c5:97:ba:62:b4:9a:26:eb:fe:
59:18:54:f8:b8:45:5f:bc:4e:2a:f7:0b:6f:84:2f:
0c:4c:e1:19:c2:52:e7:d6:13:ef:1b:c6:eb:53:98:
58:b4:ee:af:51:7a:e5:3e:f6:d0:e7:39:43:53:c3:
ed:55:8a:1d:8f:e9:94:7b:c1:21:fd:6e:ab:20:fe:
8f:47:81:9e:e5:84:52:f3:9a:83:9e:aa:14:9b:0a:
e0:7d:df:57:3d:63:ad:3c:d6:fc:73:f2:a4:43:97:
9d:fa:f8:b7:56:44:03:bc:8a:ee:45:2b:76:d8:7a:
e4:ea:16:86:55:20:88:c2:14:75:61:71:5c:ae:2b:
f0:88:8a:d2:16:4d:2f:bd:86:ae:8f:74:5a:93:d8:
4a:3e:23:8a:be:ae:34:e8:74:91:bc:3d:76:f2:ba:
dd:c0:2c:d3:22:90:90:7a:d2:f1:a7:24:e4:eb:a4:
8f:87:76:e1:ec:e4:48:1f:ff:a9:34:69:8b:b4:38:
bb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:94:6A:66:96:1E:A5:B2:80:DE:1E:9C:11:01:54:31:87:DB:7D:A2
X509v3 Authority Key Identifier:
keyid:12:B3:00:8E:DB:7C:C9:D6:1D:AF:65:F0:02:26:88:AC:73:25:F0:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErMAjtt8ydYdr2XwAiaIrHMl8Do.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d0893a-1526-4c78-9d89-08acde32e664/1/ErMAjtt8ydYdr2XwAiaIrHMl8Do.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:1b:0b:b7:45:6b:8c:ea:ee:70:ff:e8:47:a9:e5:03:08:46:
18:89:e4:bb:2d:ac:0a:8e:33:42:55:3c:4b:4f:5e:1b:60:ad:
26:5f:f3:70:26:8f:c8:2f:68:58:52:fe:01:7c:d3:d3:07:74:
3c:de:f5:76:f0:ab:cd:5f:77:cf:57:1a:74:1a:3a:34:e1:60:
d7:2b:ea:54:ec:95:e2:9b:dc:ec:57:9d:b6:a1:f9:39:92:f7:
1e:55:94:b1:e1:c3:b3:71:45:cb:77:88:0f:8b:be:0a:4b:c6:
43:3a:4a:a1:21:2e:d1:6f:68:29:e7:db:ff:61:d0:d0:91:af:
ee:88:9b:47:c8:c4:e4:a1:2d:bd:f6:d5:c6:79:11:2f:8e:9c:
d7:ce:86:43:79:83:5e:0b:07:ed:b3:f6:57:a3:99:84:83:4c:
0f:0e:2a:86:14:1f:45:27:b4:67:de:38:00:fc:c8:3b:ba:f3:
86:81:7c:72:61:4c:34:b6:cf:a2:af:13:38:cc:71:11:b8:b3:
6f:06:e9:6d:55:8d:80:62:fb:ee:6d:59:d6:8c:38:8c:14:12:
f5:30:78:0c:81:27:36:33:4d:41:8f:f7:5f:b8:50:e1:3c:16:
0b:a2:b1:89:29:44:9b:8a:83:7f:df:63:6b:eb:5f:ae:c3:ef:
bb:ef:82:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:49 2026 by rpki-client