Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
File: ESCgzgE-LVKm_zVKJwiUu5mORUc.mft (raw, json)
Hash identifier: lEDYNz5bQZ5o/TNSFDp+kPUApXwBe5xCWBvKv4onbwo=
Subject key identifier: 2C:42:A4:E9:3A:AA:07:95:C1:33:3C:1D:F8:BE:B1:FB:25:ED:B7:43
Authority key identifier: 11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47
Certificate issuer: /CN=1120a0ce013e2d52a6ff354a270894bb998e4547
Certificate serial: 019D38D2B9FBC61D9EFE9718F7AE42E80C49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
Manifest number: 1894
Signing time: Sun 29 Mar 2026 09:00:27 +0000
Manifest this update: Sun 29 Mar 2026 09:00:27 +0000
Manifest next update: Mon 30 Mar 2026 09:00:27 +0000
Files and hashes: 1: ESCgzgE-LVKm_zVKJwiUu5mORUc.crl (hash: GE21EJUgjt5HASpWS7U+Lssj633PN9riV5qzO8ERr1g=)
2: Nj-fcrd8btYTmooIT07USGH4uhc.roa (hash: NGae1BAct6VWVRLG8OfFbqQcDMzJnoL00dhPvysFzMY=)
3: dV-H29alZEFLImGmyiY7hQJaEAY.roa (hash: Li61GxGOSJxUgraJk65DXVq0NLMB+4WQGr7Nxv/T31Q=)
4: e-tZ1DdZl0dxPJy0N9Yn-0Al0M8.roa (hash: QAdbievfGnFmg15O+j0D44UXxw3G9rYuADuFC3J6DdQ=)
5: kNeO88W6WiZjVCqS0huGRYDNIkU.roa (hash: lTC2ffNYxbrVzusWfHz2XumlwYx6P/xuLd8Z8WVhDpk=)
6: tqA8MnPED0zVZqFPU0EtU7Uh-p8.roa (hash: nbXmQvCUG27Q3g4mguFw6ecZllhpCxpa9WaI9lGnt70=)
7: uMoLLTIIp3goMEn7y4z_relYCj0.roa (hash: OkL4CzvIc+/+beHGUC2g9z5v1OG6NY0LtX6M7jVvI9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:b9:fb:c6:1d:9e:fe:97:18:f7:ae:42:e8:0c:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1120a0ce013e2d52a6ff354a270894bb998e4547
Validity
Not Before: Mar 29 09:00:27 2026 GMT
Not After : Mar 30 09:00:27 2026 GMT
Subject: CN=2c42a4e93aaa0795c1333c1df8beb1fb25edb743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:08:c7:41:ac:b6:ae:02:9b:73:36:8e:78:4e:
fa:0c:a5:18:08:9d:06:f7:4e:54:42:47:1f:21:6d:
5b:9c:11:01:73:7a:fc:ce:bf:af:c0:dd:c9:6b:f9:
c9:41:b5:61:ba:be:28:af:d6:fa:80:93:1e:6b:4e:
55:05:f7:69:85:92:a3:72:23:55:d2:c8:b3:6a:fa:
7a:ba:d9:7d:15:14:71:22:27:53:92:91:28:d5:01:
ac:b7:33:2d:ea:1b:05:c4:3a:d0:61:e3:9a:d0:fc:
4f:ec:5e:b7:f5:7e:15:a6:21:e4:8b:1c:69:07:2a:
83:21:b0:e2:4a:88:c4:98:90:50:a8:e9:5c:8d:33:
5f:9f:54:90:5d:21:e1:db:f8:6d:a8:a1:ec:02:b0:
3f:33:ca:03:cd:3b:df:91:fb:6c:0b:37:5b:19:45:
70:8a:c6:2b:8b:a6:b2:70:7a:2b:0b:ae:3e:23:13:
bc:4a:8c:da:c3:ae:98:6d:e1:19:cf:87:7e:10:da:
a6:65:e2:f1:e5:6b:12:aa:6c:64:d0:5b:c6:bf:35:
05:fc:fd:3e:1f:d2:9f:7a:9d:ce:f1:80:59:de:9c:
bd:97:e4:50:b1:6f:dc:6d:78:ca:b5:c9:fe:f0:2f:
8e:b5:88:bc:3b:b2:69:9d:45:41:71:b6:0f:c8:ca:
62:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:42:A4:E9:3A:AA:07:95:C1:33:3C:1D:F8:BE:B1:FB:25:ED:B7:43
X509v3 Authority Key Identifier:
keyid:11:20:A0:CE:01:3E:2D:52:A6:FF:35:4A:27:08:94:BB:99:8E:45:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESCgzgE-LVKm_zVKJwiUu5mORUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/421498-28d3-4376-b625-31af3e294671/1/ESCgzgE-LVKm_zVKJwiUu5mORUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:a9:4c:a9:98:c9:ce:5a:32:e4:1b:98:69:27:9f:8a:84:96:
5f:ef:48:18:bc:e6:36:ab:d3:c0:cf:dd:b5:ee:74:27:54:06:
1b:f3:33:83:f7:8a:b2:9c:c5:c4:1c:48:6c:43:34:42:4d:06:
c9:13:5f:0b:9e:7c:20:53:87:46:f8:1a:4d:6b:41:12:fd:5e:
5d:ac:7f:b1:21:ab:cb:72:9c:5b:99:e4:97:f8:5a:81:17:26:
0d:05:00:7a:5b:88:7e:3a:6b:06:f9:36:1f:21:5a:41:e2:9d:
bb:7e:06:88:30:56:d5:a9:74:b3:a9:4d:21:ed:42:b5:8e:75:
1e:77:c2:a0:95:6d:2b:00:63:b6:29:f5:53:52:40:64:fb:39:
57:67:88:08:5b:4e:c6:f5:d4:6b:bb:83:bc:2e:41:04:04:e7:
31:8e:10:2e:c4:1e:d1:ff:f5:96:ee:b4:19:21:56:60:9f:c4:
b8:90:2b:46:e4:8e:f9:0e:95:ae:a6:6f:55:38:1b:8f:9c:77:
4b:15:63:e2:e2:90:b5:5b:6f:c5:23:4a:85:e2:77:f6:24:89:
a6:f4:3a:3a:d0:2c:5e:fe:3e:8b:ca:3c:73:8c:f4:e2:f3:cc:
89:c7:d8:3c:40:4d:69:ab:ba:4e:b4:23:01:ca:b7:da:c5:d1:
15:c6:f2:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:52 2026 by rpki-client