
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
File: ErmEbY911kX_YwjOAwCHopfms1k.mft (raw, json)
Hash identifier: qoCTUDb/0euwDe6n4fqmj1/bHm9A7XvAuvP7b3CEcGM=
Subject key identifier: 09:EC:5B:1E:9E:DE:32:C8:91:33:DD:CE:D6:01:77:E4:98:9D:D6:4E
Authority key identifier: 12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
Certificate issuer: /CN=12b9846d8f75d645ff6308ce030087a297e6b359
Certificate serial: 019887A036B27A20B418799B6566862ABB55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
Manifest number: 1442
Signing time: Fri 08 Aug 2025 03:01:20 +0000
Manifest this update: Fri 08 Aug 2025 03:01:20 +0000
Manifest next update: Sat 09 Aug 2025 03:01:20 +0000
Files and hashes: 1: ErmEbY911kX_YwjOAwCHopfms1k.crl (hash: VkrbeyBYf/B1bq4JAjd/c5ohjuKj+qGssfZsA/mnzOQ=)
2: Z6p3Mb3Xuxofy2Z3p3uuAgYevv0.roa (hash: SQn+3rhGu53usOi2Tvr4qfF9FQezTzxP7fAqpbwWcZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 03:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:a0:36:b2:7a:20:b4:18:79:9b:65:66:86:2a:bb:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b9846d8f75d645ff6308ce030087a297e6b359
Validity
Not Before: Aug 8 03:01:20 2025 GMT
Not After : Aug 9 03:01:20 2025 GMT
Subject: CN=09ec5b1e9ede32c89133ddced60177e4989dd64e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:71:f4:be:03:7a:cf:5c:5b:07:f0:3b:56:62:
72:27:80:b7:a9:3f:76:14:8d:93:60:6c:d5:66:e2:
52:7c:3e:dc:f9:c4:3c:0c:47:82:b1:03:d8:81:0f:
e9:49:bb:9e:b3:3b:47:20:b7:8c:5b:10:47:70:1b:
9b:f1:5f:5d:d1:6c:c8:0d:3a:cd:eb:95:13:ee:05:
e4:b8:e8:3c:80:17:a7:ae:20:7b:8b:f2:d0:cd:35:
74:83:30:d4:de:cd:71:24:68:7f:78:07:47:65:d8:
c3:5c:7b:33:a2:7f:c9:e6:e5:88:1f:88:35:aa:83:
03:78:be:8d:41:63:29:26:0a:77:8e:e7:4f:95:94:
a3:f1:0d:b6:88:dd:d1:64:15:52:a2:04:54:0c:9c:
53:64:8f:19:74:d5:c4:32:73:61:41:44:25:a3:1e:
f6:21:a2:74:ed:47:96:83:ed:a6:68:85:a5:9e:b6:
d4:9b:27:85:75:04:87:23:6e:46:0b:e5:f5:25:78:
b2:54:e2:a5:3c:7c:24:10:ca:19:f8:c7:12:6e:58:
a2:b4:19:11:7a:c9:9e:d6:ab:35:13:f0:00:92:c3:
58:ee:08:9c:8f:ed:ea:45:c8:f2:cd:80:75:34:44:
6a:af:b6:92:30:8d:a1:d5:0e:7d:78:f4:cb:d0:cc:
84:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EC:5B:1E:9E:DE:32:C8:91:33:DD:CE:D6:01:77:E4:98:9D:D6:4E
X509v3 Authority Key Identifier:
keyid:12:B9:84:6D:8F:75:D6:45:FF:63:08:CE:03:00:87:A2:97:E6:B3:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErmEbY911kX_YwjOAwCHopfms1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/038f7d-59bb-4825-b6bf-78851932b27f/1/ErmEbY911kX_YwjOAwCHopfms1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e9:6f:d7:f7:84:0b:d6:06:2a:74:47:f9:48:95:1f:94:73:
56:75:eb:6a:cb:32:dd:ad:70:58:64:88:e1:dc:bf:3d:d3:67:
e4:ed:8d:61:57:5a:ee:fe:ba:c5:7b:05:5f:99:e6:05:2c:67:
44:f1:69:36:94:23:db:26:0b:e6:24:38:a1:3a:ee:bd:af:e8:
41:4c:5a:83:49:00:a6:cf:db:aa:88:7e:a2:ae:07:d0:01:b5:
76:39:8f:ee:2e:8c:a9:4c:5b:6f:dd:58:cf:95:72:28:4f:15:
59:f0:c8:40:3b:ab:af:14:12:07:46:c1:7f:3f:79:99:72:05:
f1:24:b1:ad:ca:55:c8:b5:b0:c5:ae:be:a6:d6:e7:7c:90:7a:
d3:97:b6:52:ee:f7:5e:6a:cd:b6:83:71:f2:62:9c:94:96:e2:
c4:80:ca:cd:53:a2:3d:44:09:a6:4a:eb:fa:dc:45:8e:56:79:
fd:a2:46:4c:1a:c4:61:ed:16:f8:4e:ea:74:aa:b1:07:96:06:
4c:b5:e7:35:89:20:09:f4:92:f1:30:b6:c5:27:02:e4:47:ca:
aa:da:71:c4:53:f0:92:a9:bb:b5:43:b0:45:3b:ae:aa:4a:07:
eb:04:80:4b:32:8f:0f:df:5d:82:9a:cb:48:06:25:ae:3e:10:
e4:ad:9d:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiHoDayeiC0GHmbZWaGKrtVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyYjk4NDZkOGY3NWQ2NDVmZjYzMDhjZTAzMDA4N2EyOTdl
NmIzNTkwHhcNMjUwODA4MDMwMTIwWhcNMjUwODA5MDMwMTIwWjAzMTEwLwYDVQQD
EygwOWVjNWIxZTllZGUzMmM4OTEzM2RkY2VkNjAxNzdlNDk4OWRkNjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXH0vgN6z1xbB/A7VmJyJ4C3qT92
FI2TYGzVZuJSfD7c+cQ8DEeCsQPYgQ/pSbuesztHILeMWxBHcBub8V9d0WzIDTrN
65UT7gXkuOg8gBenriB7i/LQzTV0gzDU3s1xJGh/eAdHZdjDXHszon/J5uWIH4g1
qoMDeL6NQWMpJgp3judPlZSj8Q22iN3RZBVSogRUDJxTZI8ZdNXEMnNhQUQlox72
IaJ07UeWg+2maIWlnrbUmyeFdQSHI25GC+X1JXiyVOKlPHwkEMoZ+McSbliitBkR
esme1qs1E/AAksNY7gicj+3qRcjyzYB1NERqr7aSMI2h1Q59ePTL0MyE5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAnsWx6e3jLIkTPdztYBd+SYndZOMB8GA1UdIwQY
MBaAFBK5hG2PddZF/2MIzgMAh6KX5rNZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMzhmN2QtNTliYi00ODI1LWI2YmYt
Nzg4NTE5MzJiMjdmLzEvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMzhmN2QtNTliYi00ODI1LWI2YmYtNzg4NTE5MzJiMjdm
LzEvRXJtRWJZOTExa1hfWXdqT0F3Q0hvcGZtczFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXelv1/eE
C9YGKnRH+UiVH5RzVnXrassy3a1wWGSI4dy/PdNn5O2NYVda7v66xXsFX5nmBSxn
RPFpNpQj2yYL5iQ4oTruva/oQUxag0kAps/bqoh+oq4H0AG1djmP7i6MqUxbb91Y
z5VyKE8VWfDIQDurrxQSB0bBfz95mXIF8SSxrcpVyLWwxa6+ptbnfJB605e2Uu73
XmrNtoNx8mKclJbixIDKzVOiPUQJpkrr+txFjlZ5/aJGTBrEYe0W+E7qdKqxB5YG
TLXnNYkgCfSS8TC2xScC5EfKqtpxxFPwkqm7tUOwRTuuqkoH6wSASzKPD99dgprL
SAYlrj4Q5K2dsw==
-----END CERTIFICATE-----
Generated at Fri Aug 8 12:53:30 2025 by rpki-client