Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
File: ErmEbY911kX_YwjOAwCHopfms1k.mft (raw, json)
Hash identifier: EYIOsP33p4PVfdYmI5B6v0ALDNNkzp+sf9ZDL5n2sCo=
Subject key identifier: 3D:AF:BD:B5:51:6B:40:0A:71:BC:24:5B:14:5B:CB:B5:23:29:F2:86
Authority key identifier: 12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
Certificate issuer: /CN=12b9846d8f75d645ff6308ce030087a297e6b359
Certificate serial: 01968210A395E623B72DA999E19319BC9A06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
Manifest number: 1336
Signing time: Tue 29 Apr 2025 15:00:50 +0000
Manifest this update: Tue 29 Apr 2025 15:00:50 +0000
Manifest next update: Wed 30 Apr 2025 15:00:50 +0000
Files and hashes: 1: ErmEbY911kX_YwjOAwCHopfms1k.crl (hash: e5lF4/N/DegNvvx2JDZTYjmXv3WbpeNFAJqjIuZtCXU=)
2: Z6p3Mb3Xuxofy2Z3p3uuAgYevv0.roa (hash: SQn+3rhGu53usOi2Tvr4qfF9FQezTzxP7fAqpbwWcZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:10:a3:95:e6:23:b7:2d:a9:99:e1:93:19:bc:9a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b9846d8f75d645ff6308ce030087a297e6b359
Validity
Not Before: Apr 29 15:00:50 2025 GMT
Not After : Apr 30 15:00:50 2025 GMT
Subject: CN=3dafbdb5516b400a71bc245b145bcbb52329f286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:80:c6:6c:b8:5e:08:67:8a:6b:89:ed:18:0e:
6f:c4:1b:b2:77:c0:5c:52:98:67:b1:dc:d6:7c:3b:
9b:c2:28:c3:2d:51:29:78:28:db:b7:6d:6c:50:e6:
d3:f7:22:b8:c6:c7:ce:ab:5c:6a:a8:f3:7c:5b:94:
d1:02:3c:6c:dc:53:81:2b:00:9a:c3:6e:8e:85:88:
86:0b:d3:78:b7:98:a6:37:e4:c1:56:6b:d9:41:df:
15:17:7e:3f:08:bc:c3:8f:e5:9a:97:01:21:7a:37:
78:89:18:cd:80:31:74:33:c9:89:cb:0e:8e:bd:5f:
39:20:d3:55:da:73:01:0d:0f:b4:97:a9:32:8e:44:
86:e5:d1:4f:47:44:36:91:16:b1:1c:71:64:03:4e:
91:eb:d1:8c:b4:53:0d:46:94:17:b4:4f:e7:14:a3:
e3:b5:f8:d2:37:00:c5:41:da:d5:af:1d:64:52:26:
73:04:1d:2c:ad:0d:b7:64:a0:6f:9c:40:d9:42:b0:
81:c5:4d:be:e8:1d:48:eb:f3:f1:a0:ab:2d:4b:f5:
7b:53:33:1b:10:f1:db:fb:e9:0d:fb:ed:43:12:e1:
23:f8:a4:f7:11:53:67:d1:22:1f:ce:54:0d:e7:06:
a5:49:d7:44:02:82:64:80:8d:44:fe:d7:d2:94:36:
04:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:AF:BD:B5:51:6B:40:0A:71:BC:24:5B:14:5B:CB:B5:23:29:F2:86
X509v3 Authority Key Identifier:
keyid:12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:db:58:33:b3:be:61:ca:69:91:9b:96:c6:9b:fe:56:86:29:
a8:97:eb:0c:7b:b4:03:15:83:ad:6f:1f:5b:e9:e0:fb:1a:ed:
97:90:cb:db:f0:ef:c5:48:0c:66:04:2b:0f:1c:53:47:dd:52:
81:80:e1:8a:e7:45:50:10:9d:36:a1:90:65:ed:bd:95:2f:73:
30:91:7c:ba:4e:90:ea:4b:ba:9a:cb:4f:09:04:bf:6f:8c:07:
68:dc:85:a5:0f:04:51:ee:ac:72:ad:82:5d:db:ce:2b:39:74:
47:c5:24:b0:14:38:d2:d3:2b:1b:c6:0c:b7:43:7e:d8:92:da:
55:5b:fd:7b:e8:2b:b7:94:39:4c:28:9f:f4:08:08:98:78:25:
26:18:02:37:b7:01:39:c6:d4:b6:28:ab:14:40:a1:ce:d3:3b:
c1:9e:4e:84:ce:77:cd:61:7a:1e:6c:f0:59:ea:1c:d6:f0:81:
f0:fa:c1:af:35:68:32:50:9f:b8:6c:64:c4:26:16:87:58:e5:
bb:05:e1:f9:ee:09:6f:f5:9e:fb:8a:06:3c:87:ee:e3:47:14:
2d:0b:bb:3a:ba:22:ba:06:b9:8e:67:c4:d2:c3:e7:e9:a3:d0:
0a:e3:73:17:de:14:80:b4:e8:6e:be:56:d3:e8:19:05:84:00:
00:32:82:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaCEKOV5iO3LamZ4ZMZvJoGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyYjk4NDZkOGY3NWQ2NDVmZjYzMDhjZTAzMDA4N2EyOTdl
NmIzNTkwHhcNMjUwNDI5MTUwMDUwWhcNMjUwNDMwMTUwMDUwWjAzMTEwLwYDVQQD
EygzZGFmYmRiNTUxNmI0MDBhNzFiYzI0NWIxNDViY2JiNTIzMjlmMjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4DGbLheCGeKa4ntGA5vxBuyd8Bc
UphnsdzWfDubwijDLVEpeCjbt21sUObT9yK4xsfOq1xqqPN8W5TRAjxs3FOBKwCa
w26OhYiGC9N4t5imN+TBVmvZQd8VF34/CLzDj+WalwEhejd4iRjNgDF0M8mJyw6O
vV85INNV2nMBDQ+0l6kyjkSG5dFPR0Q2kRaxHHFkA06R69GMtFMNRpQXtE/nFKPj
tfjSNwDFQdrVrx1kUiZzBB0srQ23ZKBvnEDZQrCBxU2+6B1I6/PxoKstS/V7UzMb
EPHb++kN++1DEuEj+KT3EVNn0SIfzlQN5walSddEAoJkgI1E/tfSlDYESQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD2vvbVRa0AKcbwkWxRby7UjKfKGMB8GA1UdIwQY
MBaAFBK5hG2PddZF/2MIzgMAh6KX5rNZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMzhmN2QtNTliYi00ODI1LWI2YmYt
Nzg4NTE5MzJiMjdmLzEvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMzhmN2QtNTliYi00ODI1LWI2YmYtNzg4NTE5MzJiMjdm
LzEvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC9tYM7O+
YcppkZuWxpv+VoYpqJfrDHu0AxWDrW8fW+ng+xrtl5DL2/DvxUgMZgQrDxxTR91S
gYDhiudFUBCdNqGQZe29lS9zMJF8uk6Q6ku6mstPCQS/b4wHaNyFpQ8EUe6scq2C
XdvOKzl0R8UksBQ40tMrG8YMt0N+2JLaVVv9e+grt5Q5TCif9AgImHglJhgCN7cB
OcbUtiirFEChztM7wZ5OhM53zWF6HmzwWeoc1vCB8PrBrzVoMlCfuGxkxCYWh1jl
uwXh+e4Jb/We+4oGPIfu40cULQu7Oroiuga5jmfE0sPn6aPQCuNzF94UgLTobr5W
0+gZBYQAADKC1A==
-----END CERTIFICATE-----
Generated at Tue Apr 29 19:34:26 2025 by rpki-client