Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: 2fDkKAdKMrAi66B2n7Agfh4qm8hENxe23aBndtn0Jeg=
Subject key identifier: 60:14:C1:5F:C9:AE:57:B2:73:A9:82:E2:46:25:86:D7:10:AA:44:D7
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019A5187DF214D055FCE502980BEAEA32C37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1116
Signing time: Wed 05 Nov 2025 01:00:50 +0000
Manifest this update: Wed 05 Nov 2025 01:00:50 +0000
Manifest next update: Thu 06 Nov 2025 01:00:50 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: QYnec2qJtePdiAYT1JWK/Q1CxlOjZBw44BEY4A2o1Lw=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:df:21:4d:05:5f:ce:50:29:80:be:ae:a3:2c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Nov 5 01:00:50 2025 GMT
Not After : Nov 6 01:00:50 2025 GMT
Subject: CN=6014c15fc9ae57b273a982e2462586d710aa44d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:30:77:58:d3:a7:f0:e3:f5:5e:46:6b:3e:
e4:69:83:26:15:c6:25:82:d9:91:81:6c:55:c4:c4:
90:78:15:db:91:27:1d:44:b3:9d:b7:16:61:90:12:
cf:f8:59:b6:32:44:6f:13:dc:c9:25:ca:08:b2:cf:
8b:9a:80:4d:8e:e5:d5:a6:e2:31:66:ff:c9:fc:c8:
52:2d:35:a1:95:76:4f:9c:e0:ea:22:c6:b0:c1:4f:
0e:19:dc:26:cf:3d:6a:f9:eb:76:c2:ee:40:3b:51:
c5:3d:67:46:8d:94:93:29:fc:dc:42:21:60:d3:8e:
a8:4c:0f:b1:30:bb:b9:30:57:b4:5e:b0:c7:e2:2b:
b4:d1:0a:d4:61:97:4e:30:6c:cb:81:47:3f:6f:87:
36:9f:ed:6f:a5:5a:71:d5:7c:7d:b4:32:8f:18:1f:
6c:6b:6a:61:07:92:69:ba:ee:e1:c6:a9:77:f9:b4:
7a:99:9c:9c:fb:c2:f9:b2:36:68:84:c3:9f:37:09:
32:6a:52:88:98:f3:65:19:03:e7:e5:e2:08:da:fa:
54:eb:dc:d1:ac:cc:b8:5f:5a:d7:0d:72:2e:d6:cd:
86:dc:ae:cc:5e:3e:36:93:22:ec:63:d1:f0:87:1b:
0c:8a:6d:fd:f3:41:0b:0f:34:64:2b:08:cc:b6:e5:
12:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:14:C1:5F:C9:AE:57:B2:73:A9:82:E2:46:25:86:D7:10:AA:44:D7
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:7b:65:3b:65:6b:67:63:4a:25:66:95:7f:af:07:32:f0:2a:
e5:b5:e9:4d:73:6a:f9:78:a6:61:d3:57:87:aa:b0:a3:16:98:
c3:09:47:59:ea:a1:89:7f:53:10:7b:37:2f:24:f2:3b:52:69:
ef:2d:32:5e:92:eb:41:29:f9:36:e3:0f:9b:22:0a:49:25:89:
a7:d1:85:df:89:ce:7a:9d:65:36:4b:04:4c:a9:b1:f0:39:b6:
56:00:30:15:70:48:d9:d2:cb:cf:8b:81:b4:29:d8:d9:6b:d3:
16:08:7d:34:7b:84:ec:5a:19:6e:64:09:d7:41:fd:35:bb:7d:
66:41:a6:06:5a:72:83:b5:d2:80:45:17:3c:f5:36:f3:1c:d6:
06:48:c8:f5:c1:31:de:15:ef:c6:d3:0c:e6:2e:ee:01:e4:1c:
ff:c1:eb:26:93:24:6e:18:fa:8f:f3:95:63:f0:e7:1f:bd:74:
6a:44:c4:1e:81:98:fc:6d:53:96:c6:1a:f6:9e:28:05:13:9a:
9f:3e:3c:2a:86:86:6a:2e:07:4f:79:e7:8b:5e:0d:b0:94:a7:
7e:ea:54:d6:89:cb:7f:7a:3b:40:aa:6c:22:16:3f:b5:44:d1:
09:44:33:ec:02:08:42:ca:43:5d:1b:7f:85:2b:71:ac:ea:14:
bb:00:6a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:18:23 2025 by rpki-client