Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
File: ES1lq7x-8AUScohER5KrhvsVwu4.mft (raw, json)
Hash identifier: 3HhmExgY012CmGtesxz6vpMtdoHJLjiji1i1lVcSXI4=
Subject key identifier: 23:62:6D:6A:EF:A2:B7:80:84:19:AD:D3:6A:5A:3F:3F:52:2C:C7:4B
Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee
Certificate serial: 0196C1CB46694824FB5C1CE2FB2CC2E18AC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
Manifest number: 06B8
Signing time: Mon 12 May 2025 00:00:46 +0000
Manifest this update: Mon 12 May 2025 00:00:46 +0000
Manifest next update: Tue 13 May 2025 00:00:46 +0000
Files and hashes: 1: ES1lq7x-8AUScohER5KrhvsVwu4.crl (hash: eKmbTAPWcGvgNiLlQb4O/lWxrvD99if9ezHIVkMIhIo=)
2: pWMenEyK3oj7AZ6h81KI2eooBIo.roa (hash: 6KZd57Ad66QVQkNRU3497fAssJrDtYq8EPVr4qqDMKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:46:69:48:24:fb:5c:1c:e2:fb:2c:c2:e1:8a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee
Validity
Not Before: May 12 00:00:46 2025 GMT
Not After : May 13 00:00:46 2025 GMT
Subject: CN=23626d6aefa2b7808419add36a5a3f3f522cc74b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:f7:6f:90:3c:2d:8a:5a:0a:24:60:d1:17:
60:a2:5f:0d:95:da:dc:1a:b2:6f:15:e0:e7:13:c0:
c5:64:8c:21:6d:3c:db:14:e6:ab:63:31:7e:7a:95:
23:d5:bc:ae:60:4d:3f:a3:b6:2b:39:69:1d:96:0d:
8e:da:ac:23:05:e5:06:69:18:a7:08:a7:49:db:a8:
a3:b5:f4:d9:08:4f:76:a6:5e:70:49:91:00:de:3d:
47:e0:19:2b:da:f9:f3:a5:aa:f6:3b:58:40:8e:4d:
9c:a9:d1:27:f0:3e:d8:50:67:e4:07:ed:ae:af:98:
6d:24:35:e0:65:47:49:2b:74:51:7d:f0:84:c0:b5:
5c:91:6a:1d:bd:de:3f:6e:96:21:8a:f6:2a:e0:52:
fc:a0:a2:0d:a5:c0:ab:90:f7:aa:eb:4c:74:29:ea:
08:0e:a8:03:58:a6:0d:73:9a:3b:b0:00:a9:22:92:
88:76:a1:24:ba:79:4e:a1:08:ed:f4:25:09:c9:89:
9c:f2:14:b5:8f:4d:2a:e2:71:32:7d:cf:90:7f:25:
7c:74:d6:81:de:f7:b4:c6:f0:a2:79:18:a0:29:13:
a8:96:ed:13:4e:1a:00:02:43:9a:29:55:cc:60:60:
59:57:af:23:93:d1:82:f8:19:bf:a0:75:ba:9d:d6:
97:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:62:6D:6A:EF:A2:B7:80:84:19:AD:D3:6A:5A:3F:3F:52:2C:C7:4B
X509v3 Authority Key Identifier:
keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:26:85:a8:12:d9:60:64:e6:33:b1:8d:4f:25:73:fd:3e:39:
08:45:22:b9:4c:55:16:94:9a:58:8f:f9:bd:cf:49:2b:46:0a:
d1:b3:69:6e:0c:30:99:8c:03:71:05:7b:87:88:8d:cf:d6:b4:
b7:88:cd:d0:94:79:64:e8:33:fe:f2:22:4d:96:d7:7e:c2:b5:
be:3c:d8:09:62:f0:50:d2:53:e9:fd:0a:92:8b:40:e7:df:a4:
6d:dc:54:bf:90:dc:e3:06:b0:1f:b5:8f:75:36:a6:b7:5a:6b:
5e:71:12:b0:44:a1:eb:0e:ec:b0:c5:bc:fa:39:3d:ba:7c:16:
f0:21:6b:76:51:ed:a0:ad:d6:2c:11:12:aa:95:3a:eb:c3:56:
61:6c:15:45:e6:e1:4f:0a:ed:90:c0:0a:54:f2:47:65:de:e3:
01:08:6d:79:58:ce:e6:aa:87:3b:9d:ad:08:68:42:96:f5:6c:
8a:c2:e3:99:45:3d:96:60:26:38:b7:a0:8c:fa:ad:fe:83:7e:
cf:86:67:c4:f1:56:f4:44:28:64:91:65:17:ac:72:3d:3f:b5:
39:39:44:c1:1b:98:f5:5d:ed:aa:f5:5a:91:ec:81:c1:5a:d9:
c6:60:c4:d3:54:ef:16:ca:38:33:88:6f:bb:35:da:e3:0f:66:
8c:da:39:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:22:20 2025 by rpki-client