Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
File: ErmEbY911kX_YwjOAwCHopfms1k.mft (raw, json)
Hash identifier: bcwxWTpVs6i0LUzsXo1GBDGc9uQONOKzxF1zMwhGO6A=
Subject key identifier: 04:F4:EC:B3:20:9D:28:6D:05:8D:1F:37:2E:D3:70:B5:00:75:07:6D
Authority key identifier: 12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
Certificate issuer: /CN=12b9846d8f75d645ff6308ce030087a297e6b359
Certificate serial: 01977941B0206BDDA4BA1FE26F2A0429B140
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
Manifest number: 13B6
Signing time: Mon 16 Jun 2025 15:00:37 +0000
Manifest this update: Mon 16 Jun 2025 15:00:37 +0000
Manifest next update: Tue 17 Jun 2025 15:00:37 +0000
Files and hashes: 1: ErmEbY911kX_YwjOAwCHopfms1k.crl (hash: eGHpro/QRuEas+deZUy4egX4rSfVaTTiKKd0YCELLuw=)
2: Z6p3Mb3Xuxofy2Z3p3uuAgYevv0.roa (hash: SQn+3rhGu53usOi2Tvr4qfF9FQezTzxP7fAqpbwWcZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 15:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:41:b0:20:6b:dd:a4:ba:1f:e2:6f:2a:04:29:b1:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b9846d8f75d645ff6308ce030087a297e6b359
Validity
Not Before: Jun 16 15:00:37 2025 GMT
Not After : Jun 17 15:00:37 2025 GMT
Subject: CN=04f4ecb3209d286d058d1f372ed370b50075076d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:63:14:fb:50:3d:21:7e:b4:ea:6c:7d:3f:
b0:00:68:fc:c5:03:1f:12:df:b6:f2:27:12:fe:79:
3b:64:ae:12:c2:61:99:a3:15:4f:93:94:1c:7a:6d:
95:64:30:d0:7d:45:57:14:6e:40:51:9b:5d:72:07:
68:67:33:a2:64:3d:4b:8e:93:8c:62:71:24:51:bf:
aa:55:4f:e6:3b:3e:16:6b:17:01:f2:d9:d6:73:68:
b9:78:29:0d:5a:ff:9b:60:2e:e1:71:37:81:e9:bf:
7a:bf:64:05:b4:f6:5d:b7:24:4b:82:6d:1a:54:d5:
d6:2d:4f:dc:2e:92:b3:39:f1:af:e4:5c:db:47:9d:
a2:04:a8:b9:22:bf:a2:c8:d9:37:6f:80:76:d0:82:
22:f6:d8:41:c4:07:36:a6:0e:7a:2e:81:c8:b4:e3:
23:ac:1f:cd:9f:ee:ea:be:32:e1:db:c2:3e:ca:5a:
ff:52:ad:a0:0e:7b:b4:1b:33:da:b8:10:d1:04:8b:
8a:52:7e:87:d5:33:c0:4b:3f:05:0d:d9:a4:06:ac:
41:07:ee:7c:4f:67:7a:36:eb:95:f7:a5:6b:86:3f:
de:9d:2e:87:2e:ee:4f:8c:cc:79:11:20:6a:84:fc:
4d:3c:31:fb:34:d0:a0:4a:54:de:ac:5e:33:71:f3:
e9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F4:EC:B3:20:9D:28:6D:05:8D:1F:37:2E:D3:70:B5:00:75:07:6D
X509v3 Authority Key Identifier:
keyid:12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:4d:a8:e9:8f:5c:b6:08:80:ee:c8:57:0f:95:7e:e1:b8:d0:
a3:6a:c5:63:a3:92:71:a6:78:6f:04:3b:e0:f1:22:31:d1:2f:
fa:64:06:d0:70:30:a7:12:e9:a2:35:3c:89:5d:9f:7b:06:4f:
7b:b6:b1:13:1d:b1:48:12:82:c3:3b:c8:fa:63:0c:a2:ee:b3:
de:29:b1:f5:00:31:45:99:db:0b:06:9a:7e:50:76:98:26:81:
7c:61:9b:a2:44:d0:ce:71:c9:ee:c1:0f:e9:3c:a4:72:6d:1b:
66:ca:3e:d2:53:1d:ad:79:95:c1:92:ce:b9:97:6f:22:4c:35:
4d:14:8f:62:71:90:f4:d2:8a:f3:07:4b:7c:03:50:dc:cd:3d:
72:2f:fd:da:41:33:81:b2:8c:2d:b9:41:61:d8:66:e2:6b:e5:
3e:d4:b1:e8:ab:d5:57:55:74:ec:cd:f1:b5:4d:7e:ce:1b:5e:
d0:ac:85:50:a6:48:9c:14:9e:29:ff:db:29:a1:d7:f0:d0:6c:
68:31:8a:b9:b5:08:11:d5:11:03:00:19:f7:2a:4e:a7:83:4f:
4b:e0:9a:d2:40:5b:7f:90:76:a3:5b:f3:f3:20:61:0b:a6:8e:
3e:12:3e:05:91:7c:00:3b:00:83:71:60:8b:9b:19:a4:1b:28:
74:a6:63:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 01:16:06 2025 by rpki-client