Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
File: ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft (raw, json)
Hash identifier: +AJI/a+gKMlVXJvHDC52u1OvAMA+EAUt/w/C8gxl2wc=
Subject key identifier: 74:C5:D8:B1:30:F6:52:29:B1:12:5D:42:77:42:80:9F:15:10:30:0B
Authority key identifier: 11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
Certificate issuer: /CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Certificate serial: 019747E7809DB5D6ADA117FA23B6718A599A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
Manifest number: 0453
Signing time: Sat 07 Jun 2025 01:00:43 +0000
Manifest this update: Sat 07 Jun 2025 01:00:43 +0000
Manifest next update: Sun 08 Jun 2025 01:00:43 +0000
Files and hashes: 1: 1-WsRdLTfdTsVKrL2CIRMmrgbopM.roa (hash: /fbcJU0cKGryVcZvtSX4RD7kNCeOfa1xibBR/Nj3P7Q=)
2: ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl (hash: dCsmsCUaj9MCRpEFGwIYqHSzfaqOxw+zLCj3yehB1Z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:80:9d:b5:d6:ad:a1:17:fa:23:b6:71:8a:59:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Validity
Not Before: Jun 7 01:00:43 2025 GMT
Not After : Jun 8 01:00:43 2025 GMT
Subject: CN=74c5d8b130f65229b1125d427742809f1510300b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d9:cf:8e:dc:5e:53:26:9f:a4:61:09:0a:05:
a8:71:34:eb:1a:62:6a:68:99:c3:47:67:cb:a0:87:
88:30:cf:ad:f5:77:4a:aa:4e:98:77:ab:ca:fa:39:
19:e3:15:07:63:b1:3d:a9:b0:ad:6c:85:7b:d6:9e:
aa:07:68:52:06:1a:d8:dc:eb:bd:bb:b8:15:27:08:
91:e0:f2:a1:e5:6b:95:e9:00:d1:9b:fa:4f:97:c6:
63:8a:b7:06:c7:40:63:8b:21:98:fe:1a:34:14:86:
7f:71:97:ea:e7:6c:34:4e:e3:31:ca:46:a3:06:22:
ce:54:17:e7:f8:00:35:4d:ee:ba:33:c9:dd:d2:2f:
49:9a:b9:dc:3c:52:1b:46:6b:b8:1b:30:b7:4e:ca:
ff:ff:97:0a:5e:97:0e:46:7d:63:67:67:06:6c:6e:
a0:8e:f5:0e:a4:f3:2a:cf:29:c4:ea:c9:9a:a8:95:
bf:87:ae:5e:2f:fa:9e:8d:a3:5a:5c:58:fc:fe:0d:
bd:d6:33:5c:f9:71:8d:cc:7b:6e:b5:70:55:42:cf:
0f:0a:d6:f8:c6:34:8e:b9:da:ed:1e:50:08:56:15:
91:7f:8e:8a:03:1b:f0:50:3f:27:46:75:90:fb:3d:
97:b6:72:b9:64:63:4d:7a:6d:b2:9f:19:a9:22:66:
f1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C5:D8:B1:30:F6:52:29:B1:12:5D:42:77:42:80:9F:15:10:30:0B
X509v3 Authority Key Identifier:
keyid:11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:4b:25:b2:e8:80:be:eb:e0:be:45:b0:cd:61:2c:f0:a0:20:
48:07:f5:aa:f7:c8:0e:7f:0f:3a:37:8f:a7:46:50:5e:4f:77:
b2:aa:f2:23:61:ad:f1:b0:d6:84:ba:ac:27:91:3d:c2:b1:14:
4d:c9:83:2a:00:94:14:60:5f:f4:4a:15:ed:d4:09:54:28:09:
56:39:21:d6:27:68:5a:52:ec:75:d5:63:3e:05:f0:e9:4b:a9:
e9:92:8f:b7:72:57:c1:43:a6:d8:38:6c:be:3b:0f:17:e1:cb:
e6:f3:81:dc:67:e1:c1:70:9e:a7:91:71:ab:2c:40:9b:3c:a6:
81:ff:39:16:f3:f5:30:86:3e:0f:59:f4:b0:8f:1e:78:d9:a3:
63:29:7b:c7:ec:d7:62:c0:c7:15:47:25:98:9c:c9:0c:34:31:
33:57:c4:a1:b8:52:22:91:29:ea:c4:a0:81:e3:9f:c0:d7:90:
f4:d5:86:67:3c:5b:dc:eb:51:79:cc:00:69:5a:96:5c:0d:cd:
83:8e:f8:3b:1f:e9:c5:61:cc:1f:b7:c4:ba:7b:f3:f6:8a:c2:
fb:62:67:1a:aa:90:bc:f0:e4:93:0f:27:95:48:03:70:7b:dc:
95:c1:13:a6:35:9b:c6:2d:19:3d:64:aa:3e:60:a6:50:33:15:
3c:5f:a1:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:15:36 2025 by rpki-client