Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: 80oKV4gvQLAgNMtx4nfvH82EJ8MR4h83H9nUp72yvZI=
Subject key identifier: 1A:EC:69:19:86:C5:3A:3F:35:3F:31:88:53:3C:1C:4B:50:50:29:AB
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 01987373FD86626D265E0CCFA41EBB392F7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 08DE
Signing time: Mon 04 Aug 2025 05:00:38 +0000
Manifest this update: Mon 04 Aug 2025 05:00:38 +0000
Manifest next update: Tue 05 Aug 2025 05:00:38 +0000
Files and hashes: 1: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (hash: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: SBXoUAI4//vGHvrrWrTNNqAn0YCPlpg7uEBfUwgO1y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:73:fd:86:62:6d:26:5e:0c:cf:a4:1e:bb:39:2f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Aug 4 05:00:38 2025 GMT
Not After : Aug 5 05:00:38 2025 GMT
Subject: CN=1aec691986c53a3f353f3188533c1c4b505029ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:42:ae:9e:e2:78:58:a4:a1:91:f6:e9:94:e7:
45:8f:84:81:d3:33:63:64:48:6f:e2:cb:3e:d3:ac:
15:88:40:d6:22:57:e1:4e:f1:76:dc:b2:b2:68:41:
cd:0a:af:89:00:cc:63:58:ac:54:07:b3:d8:05:05:
e6:1e:44:54:8a:02:29:86:08:16:e4:86:0c:01:50:
47:a0:73:45:96:36:43:85:0d:b6:5b:ec:7f:b5:22:
ca:ae:bb:a3:00:69:0d:64:4d:13:0d:ed:d5:4f:33:
f9:fb:b9:b6:63:24:29:e2:9d:3b:3f:c4:d4:28:5e:
18:16:d9:a4:df:8a:0f:54:e7:57:bf:98:ec:3e:e6:
54:a9:01:25:4b:43:72:ef:a2:2e:f6:c0:80:4a:9b:
f9:e5:02:c6:43:a2:38:e8:f1:88:fd:25:7b:bf:47:
e8:66:39:b1:38:f1:f7:d2:81:cf:d0:24:20:d3:01:
07:5b:1d:3e:09:46:af:d3:0c:81:3d:29:b6:bd:06:
85:68:a0:aa:63:6d:39:be:12:2d:a6:48:04:c8:5b:
d2:b8:52:c3:5c:0c:5d:c5:54:f1:ce:be:d2:9b:3f:
53:a9:11:60:9f:87:0a:bc:6c:15:ac:6a:48:43:d0:
18:f1:e8:41:3d:47:11:b3:22:5a:7e:96:ff:c3:fb:
49:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:EC:69:19:86:C5:3A:3F:35:3F:31:88:53:3C:1C:4B:50:50:29:AB
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:b2:05:84:de:e8:98:c3:dc:97:e0:1a:33:d3:b1:13:9a:23:
8f:72:90:a9:f8:ec:41:e4:08:48:c1:5d:68:80:61:0f:ef:f0:
4a:ff:ae:08:bf:f8:53:a8:fe:e0:eb:8d:e4:68:be:97:0e:9c:
cf:82:f5:5b:2a:bb:25:9d:97:8e:18:75:37:33:35:98:84:56:
99:23:db:31:f9:43:dd:12:d0:58:f5:65:f5:36:44:e3:93:db:
da:05:5d:86:d9:e8:fc:40:97:68:41:5a:94:0f:b1:2e:a3:67:
c9:b2:bc:ca:d4:3b:1a:ae:65:fa:cf:a0:22:1c:d3:19:28:cd:
92:44:f0:01:53:32:7e:60:55:29:8c:9f:87:a7:f3:ab:8e:0f:
55:35:72:28:d7:41:2f:b0:62:63:36:c2:e1:f4:96:ee:57:44:
9c:7a:43:51:ce:3b:22:7e:1d:d5:8d:5c:e9:7e:6e:1a:fb:34:
e0:f9:3c:4b:ce:71:28:28:55:da:38:73:87:f1:2f:c2:80:13:
9f:7e:dd:c4:0b:6b:35:81:e0:99:84:2a:97:6d:c5:13:f7:27:
d0:c9:68:a3:9e:52:6b:51:7c:64:ec:7a:60:57:67:10:84:da:
54:cc:f6:9d:51:46:b3:8a:db:6b:cc:3e:56:3b:a3:1a:fb:4f:
bd:b2:d5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:22:21 2025 by rpki-client