Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
File: ESmtAUBy3mYXQ4-xr75BotvcgRw.mft (raw, json)
Hash identifier: 7TRgYH6lK+C7dZGTE5LFgJCDIasAaFpoKHsycgH/4VU=
Subject key identifier: 1C:06:A0:BF:78:E8:2E:5B:76:3D:DD:87:DF:43:B7:75:03:45:70:F8
Authority key identifier: 11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
Certificate issuer: /CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Certificate serial: 0198744FEDB2EA1BD531AB369BD679ABF826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
Manifest number: 0DC4
Signing time: Mon 04 Aug 2025 09:00:51 +0000
Manifest this update: Mon 04 Aug 2025 09:00:51 +0000
Manifest next update: Tue 05 Aug 2025 09:00:51 +0000
Files and hashes: 1: ESmtAUBy3mYXQ4-xr75BotvcgRw.crl (hash: AdWqJEGAQ+nHF/Bf8HANpiVZUUynDLnKusI229Hrr9Y=)
2: lTwE90XrCNGA5eJTFjnSjOK1bSM.roa (hash: /sO0aTlcuRH7YD2SVxbEfIzYX6MelmZ8Ycirgk+wG1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:ed:b2:ea:1b:d5:31:ab:36:9b:d6:79:ab:f8:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Validity
Not Before: Aug 4 09:00:51 2025 GMT
Not After : Aug 5 09:00:51 2025 GMT
Subject: CN=1c06a0bf78e82e5b763ddd87df43b775034570f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:83:48:9e:41:a3:0b:64:89:ca:d1:9e:28:e1:
02:fd:e5:b1:5b:98:23:ff:49:5d:6e:ab:a6:ba:67:
42:6d:3f:98:cc:3d:65:b0:d3:11:fd:61:0b:52:82:
59:35:43:bf:e7:a3:7b:7a:c4:31:7f:5a:79:c6:91:
c1:2b:3e:0f:25:b8:74:19:a4:88:1c:bd:2b:99:ed:
57:dd:1d:88:0a:e2:25:a5:a2:c3:21:79:a4:3c:d7:
b1:81:c9:ab:4a:fc:18:28:6f:8f:2c:b1:4f:67:3e:
17:26:fe:a6:85:9a:37:21:59:7c:70:e3:b8:4d:61:
30:c3:d7:1e:a8:05:0c:ee:0c:b1:da:48:b3:44:2b:
d0:ac:4d:84:9c:5d:c6:3c:4f:f6:ea:7b:d1:e9:77:
1b:8a:d9:93:54:12:2d:8e:d5:a4:35:e2:20:de:06:
5b:62:f4:9b:c0:6a:98:16:ed:61:0b:e7:cb:b4:df:
36:da:2e:88:0d:a9:8c:0e:9e:41:0e:97:c3:92:89:
2c:35:02:29:53:f9:85:a9:6f:bc:16:e3:48:5a:25:
99:55:42:03:38:53:ea:6c:f5:64:e9:7d:40:f8:24:
5e:82:f4:23:13:1e:5f:26:1e:b6:af:7a:73:0c:9b:
96:30:00:4a:e7:b3:8c:4c:ed:b4:d9:c5:f8:b4:02:
a7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:06:A0:BF:78:E8:2E:5B:76:3D:DD:87:DF:43:B7:75:03:45:70:F8
X509v3 Authority Key Identifier:
keyid:11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:4b:67:d0:4a:46:2d:41:47:22:95:d8:80:f9:7a:a8:b6:d8:
dd:0e:6c:3c:20:0e:3b:37:60:be:ff:5f:6f:04:38:f1:42:a9:
81:09:74:fa:9a:a6:86:92:38:cf:d9:f7:f9:b0:c1:04:3b:33:
e2:a7:cd:48:be:33:d3:b2:9d:5e:61:f7:93:ad:a1:3b:8d:33:
e7:26:22:c5:e1:e9:70:b5:1b:57:40:90:ad:f0:45:21:74:36:
34:54:41:14:88:69:fd:41:68:12:73:d9:09:9c:02:d7:4f:a3:
5a:60:f3:a7:4e:16:52:1d:50:da:3f:a9:87:ec:25:e4:8d:2d:
8d:e1:24:73:ed:47:b8:a3:ee:07:5e:d5:f3:b9:0e:61:f5:cc:
b6:d0:e5:2d:ed:b9:df:b7:95:7b:b3:7b:31:d2:52:dc:eb:cb:
e6:e4:d4:a3:17:78:7d:32:cd:66:01:19:6d:0e:62:a0:6d:9c:
c9:c7:fd:96:e6:44:e2:28:ba:66:21:de:b0:a4:52:0d:83:26:
8f:94:aa:fd:a5:74:7b:3f:e1:b9:28:c0:60:9f:40:94:1c:ae:
57:f6:1b:75:56:69:1f:a1:0b:a4:fb:33:b7:d5:51:78:d8:73:
22:07:34:1b:92:f6:3b:14:c3:0e:71:03:7b:6b:2b:7f:d7:89:
97:d0:b2:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:18:26 2025 by rpki-client