Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
File: ES1lq7x-8AUScohER5KrhvsVwu4.mft (raw, json)
Hash identifier: AjjuCWuT/0kWae7T+wFhpt19SsB8IdKh7x2XOdnaGms=
Subject key identifier: 6F:16:07:09:FC:97:7C:33:EF:40:B6:9F:C0:07:3F:75:75:06:78:CC
Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee
Certificate serial: 0198D4E057C26F04EB7B8DE838D5534ADD4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
Manifest number: 07CB
Signing time: Sat 23 Aug 2025 03:02:08 +0000
Manifest this update: Sat 23 Aug 2025 03:02:08 +0000
Manifest next update: Sun 24 Aug 2025 03:02:08 +0000
Files and hashes: 1: ES1lq7x-8AUScohER5KrhvsVwu4.crl (hash: xFw920rBxej9R0e0uq5e0g59ZTbACPQhxXWrA0QUhgk=)
2: pWMenEyK3oj7AZ6h81KI2eooBIo.roa (hash: 6KZd57Ad66QVQkNRU3497fAssJrDtYq8EPVr4qqDMKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:57:c2:6f:04:eb:7b:8d:e8:38:d5:53:4a:dd:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee
Validity
Not Before: Aug 23 03:02:08 2025 GMT
Not After : Aug 24 03:02:08 2025 GMT
Subject: CN=6f160709fc977c33ef40b69fc0073f75750678cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:52:91:e9:33:4f:ec:9b:83:27:14:c8:d0:54:
6f:1b:8a:13:19:10:af:34:0a:58:1e:a1:8f:67:51:
d0:71:ef:11:83:a1:50:63:48:9d:68:66:a6:f6:7d:
9b:59:cf:a2:21:22:c4:a8:30:f8:e7:5c:5b:7b:e6:
27:67:a9:af:a5:ed:fc:87:3a:28:7b:1f:8a:30:9e:
49:e3:05:a8:e2:b1:72:09:ea:2a:ac:d5:0b:59:8c:
c4:5e:06:c9:5f:47:50:2f:9b:1e:30:57:f1:59:77:
66:28:da:65:38:0f:80:e0:c9:21:47:77:cc:08:d8:
45:fb:c5:d0:95:a8:31:97:8f:87:ef:fc:f8:6b:64:
f0:29:78:ea:43:8a:c4:e4:56:db:1d:16:94:be:83:
96:e7:99:3a:93:fd:78:bf:1f:27:4f:e2:21:1f:1b:
01:8b:ac:28:80:8e:ab:eb:30:60:dd:3f:6d:df:4b:
2b:e7:d7:29:59:33:bd:a7:e7:af:0e:7d:2a:0d:37:
aa:a8:2d:0c:41:3b:fe:11:17:e3:02:24:79:ce:35:
69:1f:a1:8e:ba:96:36:71:a5:39:74:d8:6c:f0:b3:
5d:7d:6a:fe:27:71:d0:df:18:a9:67:6a:34:d5:e6:
c7:07:3d:03:03:0b:5b:fa:5d:41:40:9b:0d:f6:76:
f6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:16:07:09:FC:97:7C:33:EF:40:B6:9F:C0:07:3F:75:75:06:78:CC
X509v3 Authority Key Identifier:
keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:31:c7:62:33:6c:aa:06:8f:7a:76:bd:76:2e:0d:ee:30:0d:
01:6f:c1:57:31:f1:06:00:e3:84:70:7a:a0:13:4c:b8:bf:44:
49:8e:b2:5b:ae:c8:4d:0b:dd:a0:4b:4f:2b:6e:89:16:14:f5:
2e:81:94:45:d1:e3:4d:50:ad:5e:b3:47:e4:0f:a4:ce:c8:cc:
1d:23:b8:39:97:44:77:d7:b2:64:59:62:ea:db:ce:67:1b:44:
54:6e:ae:1c:27:f0:fa:31:a3:93:58:23:da:a2:c5:b8:19:10:
2d:61:d7:24:43:89:c1:4a:16:41:cd:d6:44:5e:46:68:36:06:
96:a8:9a:37:00:44:e8:49:32:ab:5b:95:a7:76:4e:50:1d:4e:
73:e7:81:08:94:6e:64:7d:90:aa:51:64:c9:3f:af:35:f3:79:
08:78:3d:9f:4a:e3:36:b2:27:93:74:79:cd:ff:31:4e:76:be:
be:20:f0:ab:24:9b:5f:22:7e:58:ca:84:2e:23:48:35:d8:f9:
19:e9:13:31:bc:72:50:fd:a1:c4:0a:78:9f:c0:4d:05:98:31:
5e:2f:7d:98:6d:d0:ca:72:9f:1e:7d:d2:e3:34:11:0c:06:93:
ff:40:9f:bb:11:ff:2f:34:b6:37:4d:5f:1a:99:3d:3b:7d:8b:
12:74:47:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:46:22 2025 by rpki-client