Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
File: ES1lq7x-8AUScohER5KrhvsVwu4.mft (raw, json)
Hash identifier: RhjvL4mBYOPfw3YPwQBDJF7TZbqKxAgzhXtJnBn81A4=
Subject key identifier: DA:82:65:52:0D:8A:EA:EC:62:2D:0D:96:AB:E6:C7:87:DD:7C:A1:37
Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee
Certificate serial: 019E20919317C23550D37F947A07624EF876
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
Manifest number: 0A8A
Signing time: Wed 13 May 2026 09:01:11 +0000
Manifest this update: Wed 13 May 2026 09:01:11 +0000
Manifest next update: Thu 14 May 2026 09:01:11 +0000
Files and hashes: 1: ES1lq7x-8AUScohER5KrhvsVwu4.crl (hash: OUXbxxAxmYXa65MgGhH46A4wyAAXl0HxFzxMJDFCLWY=)
2: NyqJ3HcC-3DqTRjPEZHaf1vVpmk.roa (hash: kzMbI7FhKbCR9OfECdQk1NAYRQo9Ic9dt4s+QetZXtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 09:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:93:17:c2:35:50:d3:7f:94:7a:07:62:4e:f8:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee
Validity
Not Before: May 13 09:01:11 2026 GMT
Not After : May 14 09:01:11 2026 GMT
Subject: CN=da8265520d8aeaec622d0d96abe6c787dd7ca137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:97:a8:27:88:db:d5:c7:02:a4:03:ba:27:ec:
18:f6:07:b6:59:1a:2f:26:68:91:86:ba:1e:f6:23:
13:9e:5a:ac:2c:8d:1f:e2:54:57:60:63:b4:cc:48:
ad:a4:ab:7b:46:db:d4:63:4b:5b:32:42:6e:75:26:
ae:60:bc:89:51:73:09:2b:49:91:ad:de:3c:9b:34:
46:51:2c:0d:38:c7:50:dc:13:a6:60:57:a8:cb:d6:
af:56:06:b4:24:e0:a4:96:b2:30:02:e9:f0:d7:59:
ab:74:f6:9b:c9:36:e1:fd:61:32:c9:9b:7b:48:a9:
60:1d:b2:af:96:d7:d4:b7:2d:d4:f3:b7:71:36:68:
07:12:cd:54:e7:52:20:73:95:1e:60:3b:c1:1e:e0:
31:a7:a9:da:49:47:0f:ab:fe:12:82:1c:43:91:8f:
97:6d:b5:79:96:a2:d9:21:f9:84:c0:51:63:9a:e7:
30:2b:83:63:33:85:2e:7f:02:22:ac:53:91:65:44:
77:b0:5f:6a:80:a8:ea:db:6d:ad:64:0f:ef:36:e6:
9c:db:64:c9:d9:d7:f1:ec:6b:5c:0b:29:0a:db:46:
01:93:c9:42:ee:65:00:b9:66:10:8c:a5:3a:87:4d:
f7:2e:15:b7:60:44:fe:29:8b:71:dd:3f:46:6e:d3:
16:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:82:65:52:0D:8A:EA:EC:62:2D:0D:96:AB:E6:C7:87:DD:7C:A1:37
X509v3 Authority Key Identifier:
keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:a5:95:e1:19:c3:79:4e:a4:1f:df:af:5a:99:18:c6:b7:f6:
9a:b4:14:e2:67:a8:65:42:16:a9:8a:b5:cf:55:3e:1b:22:b1:
24:4a:c9:c5:d3:a3:b5:23:b7:8c:ba:21:01:f6:f0:3c:6f:5b:
25:00:d9:df:e5:e4:58:77:23:2a:e3:e8:f3:a4:38:32:86:ea:
02:5c:88:6e:6c:a7:9c:0a:03:f6:f4:df:f9:54:c7:f4:fa:8a:
f5:12:47:de:e6:59:a2:5b:e2:bd:f0:8e:33:1a:03:4c:d3:af:
a8:ac:73:a8:c3:37:57:23:65:a8:ca:88:9b:2b:e1:a5:32:6f:
15:f4:cc:2d:e3:95:34:40:4f:3d:d0:12:28:63:aa:7a:97:ec:
ac:2c:70:cc:60:98:7a:44:19:8e:7e:8e:7e:5b:4e:2e:7c:2a:
3f:79:73:56:37:98:67:f2:1e:7e:18:9a:8e:a0:ee:d1:a4:d7:
cc:0e:4e:be:e4:d9:3f:7f:e8:a3:7b:a6:8f:bc:d8:ef:6b:03:
e1:22:d3:f3:fe:4e:79:16:71:01:d6:02:ac:b4:a1:17:70:c2:
2c:0d:e4:a4:51:0b:c7:1d:0e:97:c0:f4:4d:c7:56:98:ac:45:
b0:43:f7:a4:38:9f:5c:8f:b9:6c:2d:fd:0e:48:4c:70:42:85:
96:4e:30:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:02:31 2026 by rpki-client