Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
File: ESmtAUBy3mYXQ4-xr75BotvcgRw.mft (raw, json)
Hash identifier: PdJSwh6D04FrSHjFl2O9BjVS2lrb8VmsWLCPkOQLJEo=
Subject key identifier: 9C:39:B5:91:C0:99:DC:21:20:E9:06:C7:28:DA:CE:16:B9:17:78:09
Authority key identifier: 11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
Certificate issuer: /CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Certificate serial: 01967868EAF0DA9952DD6B1DA80CD04407E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
Manifest number: 0CBD
Signing time: Sun 27 Apr 2025 18:01:03 +0000
Manifest this update: Sun 27 Apr 2025 18:01:03 +0000
Manifest next update: Mon 28 Apr 2025 18:01:03 +0000
Files and hashes: 1: ESmtAUBy3mYXQ4-xr75BotvcgRw.crl (hash: Ahaes6Z5eTxeoq5v4+okfGp991K/FXLE8Dlmrl4J6nE=)
2: lTwE90XrCNGA5eJTFjnSjOK1bSM.roa (hash: /sO0aTlcuRH7YD2SVxbEfIzYX6MelmZ8Ycirgk+wG1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:ea:f0:da:99:52:dd:6b:1d:a8:0c:d0:44:07:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Validity
Not Before: Apr 27 18:01:03 2025 GMT
Not After : Apr 28 18:01:03 2025 GMT
Subject: CN=9c39b591c099dc2120e906c728dace16b9177809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5d:8f:89:ae:5e:db:ea:79:07:45:65:3b:31:
c6:5a:90:78:0c:93:1b:a1:25:22:74:af:af:d3:52:
8f:e7:3c:66:98:44:fe:23:2f:10:08:ff:0a:43:84:
1b:2f:ce:bc:0c:be:72:50:4f:88:b1:d7:14:3b:24:
5e:b5:38:b6:50:17:fe:21:df:01:6f:05:7e:75:fa:
3e:d7:68:09:1c:7d:3c:3f:8b:91:5f:99:14:bf:41:
1c:1d:6b:b4:50:8a:ce:4c:b1:a7:c4:c2:a7:a5:75:
98:0e:8e:da:c2:6f:63:ab:38:43:b9:ed:10:c2:ed:
20:9a:27:b7:cf:6b:47:7e:42:47:1f:e1:4a:d4:6c:
d5:75:59:65:58:29:29:47:f0:18:ad:9b:c4:a8:b4:
46:93:b6:ce:44:be:1a:d2:52:9c:d8:6e:a1:ea:ff:
02:d3:93:0c:99:1d:07:99:41:49:d1:50:66:c9:a6:
08:35:eb:72:5b:48:d5:1b:e3:ba:18:93:ab:0f:b4:
c3:af:43:95:8c:68:1e:44:91:d1:42:91:7e:48:3c:
78:f1:dd:44:f9:66:5d:58:b7:74:64:3e:d1:d3:76:
d3:3e:43:e9:9c:56:ad:af:e3:d1:b6:29:4d:b8:8b:
30:93:61:5b:0e:dc:1b:12:25:dd:b5:b6:2d:28:6a:
57:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:39:B5:91:C0:99:DC:21:20:E9:06:C7:28:DA:CE:16:B9:17:78:09
X509v3 Authority Key Identifier:
keyid:11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:10:4b:7f:bf:14:03:3b:2a:a7:51:83:6e:18:29:cb:7a:ff:
21:84:bb:7d:9e:01:62:4f:f3:6e:01:cc:46:4e:8f:59:4c:c5:
c9:61:29:2f:55:c5:0c:2a:31:85:6c:ec:29:25:a6:76:7a:09:
20:47:30:5f:df:82:ba:39:a5:21:84:05:c7:dd:d1:c4:b2:c5:
bc:00:66:c2:76:cb:af:a5:b3:2a:50:ce:10:d4:70:48:0f:8a:
b3:54:ee:27:8d:cd:c1:65:54:58:99:77:86:3c:2b:f0:7b:7d:
6e:02:fb:bc:0d:ea:a4:32:0e:7a:55:95:8c:43:d5:a2:16:68:
ee:18:ac:24:27:86:c3:21:13:10:a8:fb:8e:da:60:c3:c7:96:
49:72:49:81:73:0a:78:08:b2:ac:f7:88:4b:88:9d:2f:c2:94:
76:46:dd:19:13:b6:a8:48:23:04:8c:af:fa:64:b7:c4:8b:01:
23:98:d8:29:c6:1e:e5:92:c7:99:5d:ff:4e:ae:ab:c2:a2:78:
a2:b6:ba:3d:ff:b8:ad:d0:bf:2c:d1:44:02:44:df:14:92:04:
f9:05:69:b1:5b:5d:ad:80:4b:25:91:25:c3:00:20:a6:98:42:
80:59:a5:19:4f:d1:ae:a4:c1:5a:03:0c:4e:0a:2c:d6:29:aa:
7c:e6:c2:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ4aOrw2plS3WsdqAzQRAfiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMjlhZDAxNDA3MmRlNjYxNzQzOGZiMWFmYmU0MWEyZGJk
YzgxMWMwHhcNMjUwNDI3MTgwMTAzWhcNMjUwNDI4MTgwMTAzWjAzMTEwLwYDVQQD
Eyg5YzM5YjU5MWMwOTlkYzIxMjBlOTA2YzcyOGRhY2UxNmI5MTc3ODA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuF2Pia5e2+p5B0VlOzHGWpB4DJMb
oSUidK+v01KP5zxmmET+Iy8QCP8KQ4QbL868DL5yUE+IsdcUOyRetTi2UBf+Id8B
bwV+dfo+12gJHH08P4uRX5kUv0EcHWu0UIrOTLGnxMKnpXWYDo7awm9jqzhDue0Q
wu0gmie3z2tHfkJHH+FK1GzVdVllWCkpR/AYrZvEqLRGk7bORL4a0lKc2G6h6v8C
05MMmR0HmUFJ0VBmyaYINetyW0jVG+O6GJOrD7TDr0OVjGgeRJHRQpF+SDx48d1E
+WZdWLd0ZD7R03bTPkPpnFatr+PRtilNuIswk2FbDtwbEiXdtbYtKGpXiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJw5tZHAmdwhIOkGxyjazha5F3gJMB8GA1UdIwQY
MBaAFBEprQFAct5mF0OPsa++QaLb3IEcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVNtdEFVQnkzbVlYUTQteHI3NUJvdHZjZ1J3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83ZTE5ODktNGIxZS00ZjMzLWJkMzIt
YWM4ODE0OTdlMGEyLzEvRVNtdEFVQnkzbVlYUTQteHI3NUJvdHZjZ1J3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC83ZTE5ODktNGIxZS00ZjMzLWJkMzItYWM4ODE0OTdlMGEy
LzEvRVNtdEFVQnkzbVlYUTQteHI3NUJvdHZjZ1J3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZBBLf78U
Azsqp1GDbhgpy3r/IYS7fZ4BYk/zbgHMRk6PWUzFyWEpL1XFDCoxhWzsKSWmdnoJ
IEcwX9+CujmlIYQFx93RxLLFvABmwnbLr6WzKlDOENRwSA+Ks1TuJ43NwWVUWJl3
hjwr8Ht9bgL7vA3qpDIOelWVjEPVohZo7hisJCeGwyETEKj7jtpgw8eWSXJJgXMK
eAiyrPeIS4idL8KUdkbdGRO2qEgjBIyv+mS3xIsBI5jYKcYe5ZLHmV3/Tq6rwqJ4
ora6Pf+4rdC/LNFEAkTfFJIE+QVpsVtdrYBLJZElwwAgpphCgFmlGU/RrqTBWgMM
Tgos1imqfObCWg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 22:54:44 2025 by rpki-client