Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
File: ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft (raw, json)
Hash identifier: K+N81hErrMhGNqNZcumeFfDUxJUxhVoa8uL719T1xk8=
Subject key identifier: 9A:51:55:7A:61:C0:8D:1A:1A:7B:4A:07:D6:77:78:61:EC:E4:17:99
Authority key identifier: 11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
Certificate issuer: /CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Certificate serial: 019922FA99565A1DC4B908F6A241F41E56BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
Manifest number: 0549
Signing time: Sun 07 Sep 2025 07:01:12 +0000
Manifest this update: Sun 07 Sep 2025 07:01:12 +0000
Manifest next update: Mon 08 Sep 2025 07:01:12 +0000
Files and hashes: 1: 1-WsRdLTfdTsVKrL2CIRMmrgbopM.roa (hash: /fbcJU0cKGryVcZvtSX4RD7kNCeOfa1xibBR/Nj3P7Q=)
2: ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl (hash: ObYZL7jse3I92YBKZmGoMefIwLAFOUuUSAsxamDxiiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:99:56:5a:1d:c4:b9:08:f6:a2:41:f4:1e:56:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Validity
Not Before: Sep 7 07:01:12 2025 GMT
Not After : Sep 8 07:01:12 2025 GMT
Subject: CN=9a51557a61c08d1a1a7b4a07d6777861ece41799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ad:55:2e:fb:0a:c4:b7:de:73:62:77:e8:da:
4c:6a:c2:34:e2:9b:83:64:4c:a5:14:f5:2e:97:5b:
ae:f8:73:1e:b1:26:77:57:88:9e:d0:ef:c4:87:f8:
c9:84:98:58:11:a4:6b:90:ef:72:cb:bf:ce:64:09:
57:9d:81:93:1a:ad:c4:5b:49:e6:ba:55:e0:56:4c:
db:63:44:20:11:b7:98:90:94:31:ec:62:fb:84:79:
b2:4a:4d:00:e8:a5:83:b6:3e:75:87:e3:59:f3:cb:
e6:5d:70:39:69:6f:86:02:2c:d0:85:8e:49:e8:54:
27:48:d7:85:53:46:aa:c5:af:95:1d:f2:7b:57:2b:
9a:69:d4:73:19:ed:2b:5e:20:97:65:a8:89:69:45:
72:aa:6e:06:aa:b3:22:e6:a8:27:9d:50:6a:3c:63:
51:ab:21:80:f4:40:f7:98:1f:81:7d:ea:b4:0c:a3:
e4:76:be:18:01:e6:ed:99:d2:d4:b0:7b:78:b6:96:
9a:fe:54:b0:85:fe:63:89:cf:03:03:43:45:03:76:
09:0b:73:29:6c:15:e9:1f:04:d1:91:1d:48:bd:a5:
d8:b3:dd:75:19:eb:10:41:91:9a:fc:89:f0:1c:37:
65:b9:5a:48:da:2a:49:28:9f:20:f1:cd:91:5b:69:
7f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:51:55:7A:61:C0:8D:1A:1A:7B:4A:07:D6:77:78:61:EC:E4:17:99
X509v3 Authority Key Identifier:
keyid:11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:60:72:8f:80:aa:30:1e:10:fe:ab:0c:5a:e2:f2:db:eb:fe:
25:e3:ac:69:52:d5:36:c0:69:86:31:d6:ad:20:a9:d2:cf:d2:
ba:a2:7f:24:ab:03:ca:43:12:f5:98:e9:b0:29:22:0a:10:21:
09:a8:6a:34:03:2f:9c:1f:86:91:13:19:88:73:71:a0:b6:31:
dc:23:65:d9:27:af:b5:11:65:ed:4d:76:49:8f:5f:32:9d:d3:
3d:4f:1b:85:66:7a:1c:32:74:91:f1:6f:b6:18:60:ef:54:b2:
57:ad:8c:4f:0c:a4:95:16:54:fc:0d:af:0a:57:ab:fe:3a:df:
c9:17:58:36:36:65:1c:06:a7:72:1f:78:96:25:68:b5:7c:e4:
c5:3e:ea:a7:1f:41:8d:18:e0:a2:8a:41:c3:1c:e3:84:ec:27:
d2:44:4b:5b:1e:da:2a:e1:35:4a:c7:a7:0a:3c:0c:58:82:f7:
3f:af:98:b2:fb:db:d1:55:22:85:35:41:91:2e:85:50:c5:d5:
ce:7e:a0:35:da:6e:fa:40:70:62:78:66:a3:be:eb:e8:bf:87:
75:26:40:9b:df:b2:2e:8c:88:80:3a:34:63:10:89:7f:6b:f8:
8b:d1:90:8a:73:3a:7e:fc:62:ac:52:d6:38:5f:ae:1b:82:d0:
54:55:37:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:35:34 2025 by rpki-client