Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
File: ES1lq7x-8AUScohER5KrhvsVwu4.mft (raw, json)
Hash identifier: JA/qdAQUxBzyOUdAfjxSlzEMO+nmz4ZhSh+3zideMjk=
Subject key identifier: 5A:9E:04:11:A1:81:CE:E4:73:03:CD:AC:2B:CD:00:B5:3B:F3:F8:DF
Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee
Certificate serial: 0197B70EABBDF6FD6F8250AA6651643DCBF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
Manifest number: 0737
Signing time: Sat 28 Jun 2025 15:01:21 +0000
Manifest this update: Sat 28 Jun 2025 15:01:21 +0000
Manifest next update: Sun 29 Jun 2025 15:01:21 +0000
Files and hashes: 1: ES1lq7x-8AUScohER5KrhvsVwu4.crl (hash: abd/+j/2/EVJiJrc+p3bCfg+KfhIJ3tfdH1SQYYcXos=)
2: pWMenEyK3oj7AZ6h81KI2eooBIo.roa (hash: 6KZd57Ad66QVQkNRU3497fAssJrDtYq8EPVr4qqDMKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:ab:bd:f6:fd:6f:82:50:aa:66:51:64:3d:cb:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee
Validity
Not Before: Jun 28 15:01:21 2025 GMT
Not After : Jun 29 15:01:21 2025 GMT
Subject: CN=5a9e0411a181cee47303cdac2bcd00b53bf3f8df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b4:2f:64:90:f1:0c:91:30:20:c1:7e:b9:ab:
53:c9:b5:26:eb:b7:8e:e4:34:d0:80:ff:58:ca:df:
02:53:ae:8b:06:e3:06:61:f1:9e:69:df:ab:76:16:
5d:0f:db:d2:78:a2:4e:d3:0a:06:80:e3:a9:cd:2a:
ba:c9:6f:17:bb:2a:a1:00:5a:d7:f6:69:4c:2f:a7:
5f:0c:a6:3d:d0:6e:5e:b9:20:47:7c:c4:9f:06:4d:
f3:c6:8c:70:c2:a0:b5:5d:f2:af:3e:8e:3f:90:4e:
52:8a:9d:56:2f:a2:cd:e1:21:d2:8e:5e:5c:85:b2:
55:2f:ba:4f:a0:ad:e9:63:6e:d7:f6:85:b7:89:60:
cc:48:24:71:60:8b:a4:2e:ca:43:4a:f9:ce:ab:d7:
03:f1:12:d5:26:5d:65:99:4b:f9:4e:7a:89:1d:27:
64:90:58:2b:89:d9:b8:a3:c7:5d:a4:8f:e0:9e:a9:
30:e0:ed:7e:23:ea:3c:31:fb:5f:33:5e:07:d4:d4:
16:81:ce:95:c3:67:00:f2:a7:18:29:0b:6e:e2:a8:
d8:f3:9f:df:d0:4d:92:1d:87:bb:bc:a3:b0:0f:f7:
39:f5:bd:bf:70:f7:6f:a5:a0:b3:7d:3f:ad:72:6a:
b0:05:a7:2f:71:17:8a:1e:09:28:fa:38:24:75:13:
0d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9E:04:11:A1:81:CE:E4:73:03:CD:AC:2B:CD:00:B5:3B:F3:F8:DF
X509v3 Authority Key Identifier:
keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:8c:2d:aa:9a:59:a7:7a:97:86:07:4a:a2:01:77:ed:47:28:
fc:4c:7e:37:e0:10:17:ff:88:c1:e8:42:5d:73:53:5b:92:03:
e9:78:fe:66:0e:36:87:5f:b5:f3:cb:62:f6:26:b2:6b:f1:44:
f1:e9:91:5a:17:7c:97:83:12:17:69:7c:c3:94:b7:de:d9:c9:
27:8d:fb:9e:75:33:3d:a0:78:a2:d5:c8:fd:da:c9:87:dc:3b:
50:83:0b:53:c0:a6:99:6f:7b:b0:86:06:bc:a2:79:d8:50:eb:
f2:c7:8f:38:f5:88:d9:bd:2b:da:f2:95:6e:88:87:02:46:ea:
b9:2a:ae:f6:20:95:94:82:a1:af:a9:94:29:d5:22:b8:1a:0b:
9f:ed:3b:b0:99:11:7e:df:be:97:4a:28:29:2f:5a:5f:c8:31:
8d:c2:8c:27:8d:3b:4a:c7:ae:f2:5a:70:df:f4:42:49:b4:0d:
4d:71:43:22:4b:3f:69:96:90:0b:8c:82:91:42:69:a0:48:70:
66:fb:44:56:8b:73:36:13:8b:c2:e0:d2:df:b4:bf:fa:71:e9:
42:26:40:4b:63:01:96:df:3b:56:0b:d0:b7:b1:e4:fd:15:c1:
21:ad:f1:05:88:44:18:e5:91:ef:40:27:b3:bf:3e:a0:ce:37:
2e:48:bf:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3Dqu99v1vglCqZlFkPcvwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMmQ2NWFiYmM3ZWYwMDUxMjcyODg0NDQ3OTJhYjg2ZmIx
NWMyZWUwHhcNMjUwNjI4MTUwMTIxWhcNMjUwNjI5MTUwMTIxWjAzMTEwLwYDVQQD
Eyg1YTllMDQxMWExODFjZWU0NzMwM2NkYWMyYmNkMDBiNTNiZjNmOGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrQvZJDxDJEwIMF+uatTybUm67eO
5DTQgP9Yyt8CU66LBuMGYfGead+rdhZdD9vSeKJO0woGgOOpzSq6yW8XuyqhAFrX
9mlML6dfDKY90G5euSBHfMSfBk3zxoxwwqC1XfKvPo4/kE5Sip1WL6LN4SHSjl5c
hbJVL7pPoK3pY27X9oW3iWDMSCRxYIukLspDSvnOq9cD8RLVJl1lmUv5TnqJHSdk
kFgridm4o8ddpI/gnqkw4O1+I+o8MftfM14H1NQWgc6Vw2cA8qcYKQtu4qjY85/f
0E2SHYe7vKOwD/c59b2/cPdvpaCzfT+tcmqwBacvcReKHgko+jgkdRMNqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqeBBGhgc7kcwPNrCvNALU78/jfMB8GA1UdIwQY
MBaAFBEtZau8fvAFEnKIREeSq4b7FcLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9hMDM3YjEtMTMzYS00NjM5LThjN2Yt
NjM2ODU3ZWUxNzkyLzEvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9hMDM3YjEtMTMzYS00NjM5LThjN2YtNjM2ODU3ZWUxNzky
LzEvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA14wtqppZ
p3qXhgdKogF37Uco/Ex+N+AQF/+IwehCXXNTW5ID6Xj+Zg42h1+188ti9iaya/FE
8emRWhd8l4MSF2l8w5S33tnJJ437nnUzPaB4otXI/drJh9w7UIMLU8CmmW97sIYG
vKJ52FDr8sePOPWI2b0r2vKVboiHAkbquSqu9iCVlIKhr6mUKdUiuBoLn+07sJkR
ft++l0ooKS9aX8gxjcKMJ407Sseu8lpw3/RCSbQNTXFDIks/aZaQC4yCkUJpoEhw
ZvtEVotzNhOLwuDS37S/+nHpQiZAS2MBlt87VgvQt7Hk/RXBIa3xBYhEGOWR70An
s78+oM43Lki/GQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:31 2025 by rpki-client