Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
File: ESCgzgE-LVKm_zVKJwiUu5mORUc.mft (raw, json)
Hash identifier: yk58mn2PIoKnIkED1TzjgSD+2zQHOjXEqaL2uPVC+g4=
Subject key identifier: FF:B1:DF:26:1B:E9:6D:5B:E7:C8:F6:39:E3:BF:3A:22:2B:53:D7:32
Authority key identifier: 11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47
Certificate issuer: /CN=1120a0ce013e2d52a6ff354a270894bb998e4547
Certificate serial: 019A00A2E9C3D581393E6E5EB8BDB86EFD7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
Manifest number: 16E9
Signing time: Mon 20 Oct 2025 08:01:07 +0000
Manifest this update: Mon 20 Oct 2025 08:01:07 +0000
Manifest next update: Tue 21 Oct 2025 08:01:07 +0000
Files and hashes: 1: 4kEhevkpP_AXSHtDbQt_y5XXD_U.roa (hash: Utfr4kFbDvk1+qjjuuuYnoLkGoHhJpPo3BK4RGIg74g=)
2: ESCgzgE-LVKm_zVKJwiUu5mORUc.crl (hash: 2eqRXtWjZcMRhb+YDpELRf3pniXElL+cSegC5wAEh2s=)
3: VFGtTmctOrCjqkuRTfIPjlhNsbU.roa (hash: Kx2OzOjQfSX7IzHAKC1pKf9P1rkGaVbawrDwIeTytCo=)
4: hPKrgzhYrZ1-hIZdPIo3sHpuSd4.roa (hash: E3NJlfBqIWJ89UYs9nMw+LOY3dmFw01LCnketh8FRY0=)
5: jx1FgPOkBbayLbn8i9fFX-3vhJI.roa (hash: du1QA1Pa5BxqPJI19sJCDEas0RaG543HI6Un8BqtN7g=)
6: lauLTK6HRr7436pAd14mrAaE3vU.roa (hash: ahn5yKzybexoFBgNe3W5HKkjK7F19TopqaCzFWkZQgs=)
7: xVwjRhSfq67xc9Qi_wrSVn11vY0.roa (hash: iJyeTnFvoMMSPwtJkLmVhK7+FVvlX6Jx0lnFlM/s3fE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 08:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:a2:e9:c3:d5:81:39:3e:6e:5e:b8:bd:b8:6e:fd:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1120a0ce013e2d52a6ff354a270894bb998e4547
Validity
Not Before: Oct 20 08:01:07 2025 GMT
Not After : Oct 21 08:01:07 2025 GMT
Subject: CN=ffb1df261be96d5be7c8f639e3bf3a222b53d732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f4:67:5b:1f:66:76:fa:dc:35:11:7d:f2:ce:
4d:ba:02:7a:8d:dd:8f:7b:c0:b9:43:27:f8:f1:47:
5d:dc:3b:2f:e4:38:1a:31:03:80:fb:5e:9a:54:ef:
48:46:6d:80:ba:d8:2a:f6:70:16:9b:99:1a:3e:b3:
71:7f:14:47:ea:cd:38:07:87:70:66:9f:92:ef:d1:
23:89:36:0a:1a:a0:93:80:0c:29:46:2d:f4:d5:f9:
39:1c:66:5a:9b:1a:b4:17:7b:50:87:7d:f3:f6:f6:
b3:b7:de:af:0f:08:fd:3f:75:87:b0:84:e9:27:76:
64:0e:72:14:71:be:77:bc:ab:a4:4d:f9:41:64:57:
7d:80:77:71:a4:67:bb:03:df:31:8a:fd:fe:00:ef:
81:8f:34:37:5d:4d:9c:1a:06:2b:30:be:54:59:19:
24:5c:65:2c:22:fa:11:6c:ff:a3:5b:7b:1a:b9:78:
81:58:cd:97:05:2d:30:1e:54:ce:60:84:86:6e:5c:
fe:2a:e0:ca:5f:e5:2c:1e:b5:8a:7c:8e:34:b8:e3:
c5:d4:ca:08:19:03:4a:43:52:50:45:35:71:08:58:
17:0f:e2:ed:68:62:c9:ff:5a:03:c3:a3:dd:a5:56:
3f:1c:f7:7d:51:de:5a:36:0f:59:4f:ae:a9:f2:42:
20:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B1:DF:26:1B:E9:6D:5B:E7:C8:F6:39:E3:BF:3A:22:2B:53:D7:32
X509v3 Authority Key Identifier:
keyid:11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:4d:13:d9:1d:44:d6:8f:38:d8:a2:06:42:ca:8b:03:7c:94:
db:60:1c:6d:67:a6:f8:a0:4b:3d:56:4f:3d:63:78:3c:4e:5d:
ee:db:58:70:a9:78:77:25:03:66:04:74:f4:c7:92:6d:76:c8:
b2:b4:4f:8c:c5:e1:8e:62:59:75:c3:bf:bf:77:24:22:e5:e0:
40:71:9e:31:d3:d7:5e:71:17:b9:a4:88:4d:74:c1:d7:1a:33:
0d:58:58:6f:7a:b7:9e:a9:01:33:20:fa:2e:c0:0c:29:53:71:
17:dc:d7:aa:4c:40:fb:aa:fc:34:4e:96:4d:4c:a3:bf:08:7a:
20:6a:06:63:e9:bb:3f:e6:01:26:19:65:fb:f3:60:cc:ac:91:
04:05:ee:00:a1:a0:61:17:6b:36:a6:22:ba:17:7a:6a:4c:90:
60:44:9e:1e:f5:ac:eb:cc:b0:e4:c7:67:55:6a:3b:54:7a:18:
32:cd:4d:c3:b4:26:f5:c6:e7:f9:48:4c:b4:e3:6e:14:b2:51:
72:d4:6a:92:ab:41:fc:80:a1:7e:c1:22:98:f3:52:26:de:82:
83:d6:03:36:ee:c0:6d:b5:fe:e2:ff:6d:e0:37:db:29:c9:fc:
8d:df:1a:19:31:0f:68:c2:a5:80:b5:40:dc:ad:5b:c2:6c:0c:
1b:09:3f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:03:50 2025 by rpki-client