Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
File: ESmtAUBy3mYXQ4-xr75BotvcgRw.mft (raw, json)
Hash identifier: DDU+aLxW6BeCi7//b7ZtiYD6WSDk5LwQ4snbFl9Kj/c=
Subject key identifier: 5A:72:4A:94:59:F7:CD:C2:EE:77:C7:D2:75:11:5F:EC:D4:59:9D:EB
Authority key identifier: 11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
Certificate issuer: /CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Certificate serial: 019A533F36BE8AA7252A73D3309733877B3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
Manifest number: 0EBC
Signing time: Wed 05 Nov 2025 09:00:42 +0000
Manifest this update: Wed 05 Nov 2025 09:00:42 +0000
Manifest next update: Thu 06 Nov 2025 09:00:42 +0000
Files and hashes: 1: ESmtAUBy3mYXQ4-xr75BotvcgRw.crl (hash: NjBMlwnGD6KjN0YBlAcN8AU9K3Nfk2ycKAxxGxLBy08=)
2: lTwE90XrCNGA5eJTFjnSjOK1bSM.roa (hash: /sO0aTlcuRH7YD2SVxbEfIzYX6MelmZ8Ycirgk+wG1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:3f:36:be:8a:a7:25:2a:73:d3:30:97:33:87:7b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Validity
Not Before: Nov 5 09:00:42 2025 GMT
Not After : Nov 6 09:00:42 2025 GMT
Subject: CN=5a724a9459f7cdc2ee77c7d275115fecd4599deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b5:a7:df:e6:d1:70:07:60:7a:c1:98:ee:be:
85:5a:50:ba:a8:c5:6a:2d:f4:cc:56:f0:fc:a4:00:
79:ac:37:fa:7e:3e:c9:cd:20:b9:f9:f3:aa:be:61:
e5:b2:c7:04:76:c9:56:ab:67:a5:f2:bd:23:b2:86:
34:cd:7a:36:09:79:d8:06:25:4c:6a:49:6f:49:d3:
20:70:c0:fa:58:85:5c:cf:be:48:8c:ea:51:e3:c7:
ea:64:39:81:0c:b8:9d:67:d5:25:51:dd:2c:21:e2:
38:5e:9e:87:cb:c2:e2:27:bb:c4:f0:8a:31:b1:c0:
c3:e4:ed:40:4b:a4:e1:5d:97:4c:79:38:37:72:4d:
c8:8d:e7:0b:9e:4c:4d:1c:97:6f:7c:31:9e:01:79:
47:d1:4a:73:dd:2a:4d:26:87:5f:4f:cc:d9:db:6e:
71:57:1f:d5:0f:d5:95:17:9b:4d:d0:1a:9d:8b:bb:
e7:db:8b:10:4a:ec:a9:03:11:7b:89:6a:49:30:ce:
91:64:d3:80:e7:03:35:ae:77:e9:c0:67:3b:e2:88:
60:12:24:5c:65:9f:ef:0e:aa:39:c0:86:ea:e9:16:
76:93:94:f9:45:3a:eb:bc:62:6a:e0:75:1a:8d:83:
46:87:0a:54:dc:33:5f:dd:8a:1a:c8:57:9e:5b:0e:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:72:4A:94:59:F7:CD:C2:EE:77:C7:D2:75:11:5F:EC:D4:59:9D:EB
X509v3 Authority Key Identifier:
keyid:11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:93:4d:2a:a9:00:d2:b6:58:0e:4b:b8:b0:e0:33:7c:71:a4:
e8:ae:bc:3f:bd:b8:b3:b7:85:40:8e:d1:fe:b0:4d:44:1a:67:
ee:3e:bf:09:b4:ab:c6:6f:4b:a0:c8:e2:1d:6c:bc:06:55:9c:
a2:aa:d8:fb:5a:23:35:f4:e1:f9:9d:a6:9b:ea:e4:30:06:04:
d1:8a:30:ba:41:ed:71:bb:37:cf:f1:58:ad:61:9e:66:1b:2b:
e1:73:0e:c1:91:84:93:01:85:c1:ed:19:74:1d:0d:77:bf:23:
4e:04:03:94:a6:8d:08:c4:25:fe:90:5b:31:7d:53:30:39:51:
af:18:a5:47:8b:a8:b3:61:cd:f0:a7:4c:86:64:87:48:07:b2:
38:e5:24:66:c1:e3:f3:39:9b:9c:87:da:11:12:21:ea:ed:90:
5e:b6:cd:a9:be:60:c1:bf:78:6e:5d:cf:88:cc:c1:19:b3:87:
5d:d7:d0:8c:c9:6a:06:09:e6:bc:ec:ad:81:1f:3a:3a:f6:b1:
b5:24:9f:e1:d0:4b:99:e2:dd:3f:da:09:a3:25:6d:78:e0:1d:
15:6e:55:6d:7e:2a:c1:c5:00:f4:d9:d4:fa:5b:6c:5d:ad:4f:
00:7e:43:78:11:d3:55:4d:c0:d3:d5:b4:4a:4f:6a:15:00:01:
b9:b5:73:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:01:26 2025 by rpki-client