Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
File: ES1lq7x-8AUScohER5KrhvsVwu4.mft (raw, json)
Hash identifier: ph/6PcKHB+h8T+Qmd3WNb6u5LCUjuLB+FhgwHqBalno=
Subject key identifier: 4A:FC:0E:EF:5A:1B:C8:21:59:24:C9:DA:F6:EA:F6:99:85:E1:72:F8
Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee
Certificate serial: 0199FC589ABA10CB839DEDC9310C8A41CA46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
Manifest number: 0864
Signing time: Sun 19 Oct 2025 12:01:29 +0000
Manifest this update: Sun 19 Oct 2025 12:01:29 +0000
Manifest next update: Mon 20 Oct 2025 12:01:29 +0000
Files and hashes: 1: ES1lq7x-8AUScohER5KrhvsVwu4.crl (hash: IiJEF/4U+4Dmw1+PfeICy5niO4NQ6lhpICiS3CdHD/M=)
2: pWMenEyK3oj7AZ6h81KI2eooBIo.roa (hash: 6KZd57Ad66QVQkNRU3497fAssJrDtYq8EPVr4qqDMKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:9a:ba:10:cb:83:9d:ed:c9:31:0c:8a:41:ca:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee
Validity
Not Before: Oct 19 12:01:29 2025 GMT
Not After : Oct 20 12:01:29 2025 GMT
Subject: CN=4afc0eef5a1bc8215924c9daf6eaf69985e172f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:0c:49:c3:cc:96:57:c9:53:33:f6:02:35:be:
87:15:5f:37:c3:ab:9d:52:28:9a:9b:8b:e5:c5:71:
1f:b2:a3:8f:55:92:21:29:f4:40:a6:54:c0:c2:44:
79:5c:3d:9e:be:de:4c:99:e9:81:ba:90:64:bf:58:
ef:33:60:6a:8e:87:97:03:cf:c7:8e:0e:e3:32:93:
d6:07:94:33:04:8d:72:6e:aa:73:de:66:ab:bd:7c:
5c:d1:d5:fa:20:02:72:7e:f2:80:28:31:5c:ba:e3:
82:c2:96:a4:66:70:c7:6c:36:3b:16:b0:a0:24:2e:
d1:f9:8f:1d:da:f7:0f:b8:f4:49:9c:8f:23:11:70:
c7:40:4d:63:b3:10:c9:e6:1d:0c:91:68:6f:ef:fe:
3a:9a:03:6f:f8:45:a0:1a:77:c9:29:50:02:19:23:
1e:44:8a:f5:d2:41:ea:64:a9:37:cf:02:b6:b5:4b:
ed:2b:ac:1a:a3:c2:51:6b:64:c9:f1:3d:8c:b9:69:
d9:e3:66:ce:ec:7e:7b:5e:50:76:9c:35:56:8e:b3:
0a:fe:05:c8:db:22:9a:2c:70:89:85:36:97:d9:ec:
d3:00:01:90:0b:eb:f3:0e:dd:22:df:33:1a:c9:f0:
0b:48:4c:1c:5a:dc:64:97:fd:a1:d2:80:04:2f:dd:
a5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:FC:0E:EF:5A:1B:C8:21:59:24:C9:DA:F6:EA:F6:99:85:E1:72:F8
X509v3 Authority Key Identifier:
keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:99:99:f6:9c:c3:f1:fa:7d:16:85:74:05:25:17:87:86:40:
c7:da:49:df:3d:1f:eb:1d:1f:f5:04:e0:3d:36:af:d0:ec:29:
2d:c9:b4:e5:d7:ab:c1:b6:61:10:61:84:67:04:d8:ec:15:5a:
18:de:34:0b:43:c2:02:fe:08:ca:ff:3d:d8:6d:20:e8:5c:2d:
73:11:2c:73:3d:79:f1:93:86:0b:7a:83:e9:c6:f6:ed:43:0e:
0e:4f:19:86:6c:43:60:20:71:1d:8f:21:ae:c3:43:01:99:7c:
05:e3:a9:b2:83:dc:72:fa:7f:81:87:4f:82:ff:ae:b0:f9:f3:
ee:db:53:be:59:96:ad:6e:2d:d0:df:48:f0:d9:b4:bb:47:0e:
c9:a0:8e:fb:17:75:15:37:d5:ef:d6:96:8b:93:25:a5:68:71:
77:f3:b0:6e:4a:ea:5a:d1:17:56:13:13:b1:8f:53:c0:01:0c:
f0:a9:b8:e0:d9:95:79:6b:24:4f:63:2f:3c:63:4d:49:39:7e:
51:a9:a8:16:d0:bb:d8:db:51:3a:83:24:3d:7a:78:0c:8e:84:
9c:f4:06:0c:a0:f0:33:ea:b0:7f:93:37:80:d8:d3:d4:03:8e:
80:51:d5:cd:0b:c5:39:c9:7f:68:aa:80:fe:18:41:44:97:ea:
eb:c4:da:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:02:58 2025 by rpki-client