Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
File: EsShfSBma32NKx_-GKRoevkmIY8.mft (raw, json)
Hash identifier: n1ZtLkpApJH0ojOVf2eSyv5iXaLYeIjr42enVx3hfb4=
Subject key identifier: B8:3B:78:D7:67:B9:71:19:8C:8C:35:DE:98:3E:BE:30:62:52:D0:0B
Authority key identifier: 12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
Certificate issuer: /CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Certificate serial: 01992330ED9DA8446D1781505721C859F898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 08:00:33 +0000
Manifest this update: Sun 07 Sep 2025 08:00:33 +0000
Manifest next update: Mon 08 Sep 2025 08:00:33 +0000
Files and hashes: 1: EsShfSBma32NKx_-GKRoevkmIY8.crl (hash: oAO+T/5Ubl7Avx6fgUZEK+mbCs4VmTfGbmjViG2Ljf4=)
2: nfi8L76Q0CcXdXMuyopjIwMNN1s.roa (hash: yyBzF5vSH0UZ1Eb70mzyyMArzuUjMy9cXtif0oEgNm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:ed:9d:a8:44:6d:17:81:50:57:21:c8:59:f8:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Validity
Not Before: Sep 7 08:00:33 2025 GMT
Not After : Sep 8 08:00:33 2025 GMT
Subject: CN=b83b78d767b971198c8c35de983ebe306252d00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:06:8a:64:0b:4a:46:a8:ab:2e:c1:18:cf:5c:
d0:6c:fe:a2:2e:4d:d9:65:6f:7b:82:cc:71:26:15:
14:53:df:77:68:0f:62:19:25:6d:9c:99:b7:25:bb:
40:ef:a5:e9:48:e8:1f:79:f1:4f:35:21:ec:4d:d2:
d8:0f:63:0e:de:50:fe:a3:c4:0e:36:13:37:c0:f2:
65:0d:73:23:d0:23:34:bd:8f:e6:3a:bd:7f:9b:b9:
27:4d:f6:12:6b:2a:68:6c:fd:76:e9:6d:8d:19:50:
35:29:6a:07:c8:13:d3:9a:9a:d0:1b:a8:3e:5a:9b:
6d:b6:c8:9a:8b:53:94:c6:8d:f9:3b:25:f3:1a:99:
9b:83:c4:44:88:68:e1:d3:55:47:a9:44:79:9d:86:
74:75:98:56:9f:8b:f7:df:80:9f:00:a2:9c:46:6f:
95:00:34:47:88:f8:d5:cb:94:2a:a4:55:c9:fd:3f:
9a:53:d1:44:d0:47:a6:19:b1:b0:7b:cf:85:4f:b6:
60:1c:83:51:de:fb:81:8f:d3:4b:11:3f:43:ab:d0:
36:dd:6c:7e:9a:49:45:7e:af:6c:5d:e3:ce:61:81:
70:92:1f:a5:16:06:25:50:8a:cc:fb:fd:4e:51:cd:
33:f9:52:10:01:c6:24:36:a1:6f:aa:8e:42:8b:90:
bf:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3B:78:D7:67:B9:71:19:8C:8C:35:DE:98:3E:BE:30:62:52:D0:0B
X509v3 Authority Key Identifier:
keyid:12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:fd:f7:01:e5:8a:a7:eb:bc:38:be:2f:90:f0:27:40:e2:0f:
1d:94:5f:11:c4:af:3a:cc:32:4f:a7:da:87:f6:44:fc:95:fb:
2a:c9:1c:fc:4f:86:ae:e1:b8:f8:42:bb:71:4a:55:16:2c:92:
55:1a:01:13:48:9d:2d:ac:86:5e:9e:d3:35:7f:43:92:8e:ab:
5f:43:33:63:92:e1:4e:a4:d1:8a:cb:bb:6e:0a:9f:7d:f7:63:
74:04:33:1d:cf:ff:3d:a0:18:af:3d:41:ce:b0:fa:55:98:82:
d6:4d:11:19:50:c8:e9:bc:34:bd:b3:6f:32:4f:3c:4a:77:30:
d0:11:7f:85:43:28:ee:aa:6e:c1:1d:c9:a4:0c:bd:6f:e7:07:
5c:84:d1:58:ae:72:ba:7b:e7:eb:00:13:cd:c0:be:63:57:67:
5f:2c:2c:82:57:a4:68:9d:65:d1:0b:36:22:d3:24:d4:5b:89:
32:2b:42:f5:ee:24:0e:8b:3a:3a:69:a0:b5:54:f0:43:53:1d:
94:c6:90:8a:2c:b3:0a:88:b1:0b:41:3f:44:1a:3f:c4:c0:2a:
15:f1:93:49:a9:f6:05:62:dd:c8:41:0e:09:2a:ad:bd:85:f9:
61:7c:7d:02:b5:9f:ca:40:f5:44:bb:29:ab:5f:fd:46:2e:b9:
ab:69:a6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:38:09 2025 by rpki-client