Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
File: PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft (raw, json)
Hash identifier: l9Csds1sFtjrTAirXXe/E6/92LhRyp4f/yI2lBf5qo0=
Subject key identifier: F3:E4:9F:15:90:BD:9F:E9:0A:45:A1:17:4E:33:AD:93:AF:CD:D8:9E
Authority key identifier: 3D:82:F1:FC:E0:08:BC:C7:25:DD:BB:E7:06:74:51:DD:82:05:93:07
Certificate issuer: /CN=3d82f1fce008bcc725ddbbe7067451dd82059307
Certificate serial: 0199FF59A65AE0AB13B604A21241B8C30B23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
Manifest number: 0136
Signing time: Mon 20 Oct 2025 02:01:29 +0000
Manifest this update: Mon 20 Oct 2025 02:01:29 +0000
Manifest next update: Tue 21 Oct 2025 02:01:29 +0000
Files and hashes: 1: PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl (hash: cHQT0K6uoBC1/4a6AjWNaU8W8TgfvqxoH3QXKaUftmw=)
2: TonV6li5yUkoZ-CnaxO8HKBagJ8.roa (hash: XnEwLGsQ6FECYx0FnlaZRoMgPrGS5ObC7JCUywQQ//c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:59:a6:5a:e0:ab:13:b6:04:a2:12:41:b8:c3:0b:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d82f1fce008bcc725ddbbe7067451dd82059307
Validity
Not Before: Oct 20 02:01:29 2025 GMT
Not After : Oct 21 02:01:29 2025 GMT
Subject: CN=f3e49f1590bd9fe90a45a1174e33ad93afcdd89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1a:33:a3:4a:95:92:d9:f8:4f:a6:8c:80:27:
1f:fb:cc:b3:b3:ec:ca:8a:2e:4e:1b:bd:78:b4:c8:
96:ab:fa:3f:48:15:1f:a9:4e:c4:ef:0b:24:bd:27:
da:6f:31:3f:d1:8e:e4:d1:ca:1c:1d:6d:9d:c9:73:
b5:e7:84:68:6f:d2:5b:ed:b2:42:21:3e:47:a3:f6:
45:e7:ad:77:10:26:33:0f:ac:0d:d0:e1:e1:c4:a9:
5b:41:f3:53:0c:55:f9:c1:eb:84:58:a4:42:7e:5c:
49:ad:e7:1c:da:03:06:d4:b2:18:3b:c0:67:91:3b:
e4:22:8b:53:62:cc:f0:c3:73:10:82:8f:c4:35:d9:
cb:0a:ce:10:69:5c:2a:1c:10:c4:12:cd:a6:92:73:
79:a4:04:ad:bd:3a:0f:e3:73:8c:c4:26:d1:b2:96:
ca:5b:87:6b:6f:ff:02:70:70:32:1a:0a:34:09:c5:
f8:ae:d9:63:59:98:32:28:01:de:c5:2e:64:0b:a2:
ba:1f:0d:80:16:43:32:56:df:e1:f8:ca:de:86:21:
2f:c8:31:7a:75:41:ed:7d:2c:29:c7:9d:ae:a1:a5:
cd:93:e9:fc:27:f6:9d:d2:b1:f9:3f:bf:1a:ca:23:
2b:21:b2:20:09:5d:e6:7d:c4:c6:55:3a:9c:c8:21:
f4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E4:9F:15:90:BD:9F:E9:0A:45:A1:17:4E:33:AD:93:AF:CD:D8:9E
X509v3 Authority Key Identifier:
keyid:3D:82:F1:FC:E0:08:BC:C7:25:DD:BB:E7:06:74:51:DD:82:05:93:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:ab:b7:cf:35:d5:0a:7e:e5:55:9e:59:43:35:4d:71:3a:73:
7b:e2:61:05:ba:77:a1:24:ca:b5:2a:ad:0d:ed:07:69:a8:5f:
94:c7:e6:48:34:47:44:09:7e:2c:55:d0:29:c7:18:0d:00:76:
8f:a4:5c:34:1f:d6:c7:8c:5f:85:26:19:51:7d:08:21:e3:fb:
5d:bd:30:7c:2f:1b:81:b5:e0:91:94:6a:45:e6:29:28:6b:6c:
d9:fc:3a:4a:a6:02:c5:01:10:fd:da:e7:78:e5:f6:5f:e1:d0:
bb:8b:3d:cd:77:c0:0a:3b:79:da:61:e1:51:ce:f2:26:c7:df:
ba:4b:5d:21:23:86:42:9c:89:0b:b9:44:0b:bf:49:bc:18:16:
88:11:78:77:9d:e1:72:91:9d:04:13:82:bb:75:2c:07:5c:cb:
56:dc:1f:7f:c3:52:a7:5e:2b:74:8b:a5:90:0d:ed:8f:08:46:
8e:73:d7:28:70:27:a4:8b:3f:7e:73:3b:9b:4f:0c:84:6f:bb:
20:c6:c7:fd:52:7d:10:5a:c3:87:62:cb:6d:d5:8a:c2:28:67:
f1:c9:58:31:c1:6f:5a:be:2a:e9:60:ca:09:1d:d7:ff:d4:cd:
78:d8:5a:aa:26:d1:3b:d0:43:10:40:bf:18:59:f5:fc:cc:06:
0e:f4:6b:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/WaZa4KsTtgSiEkG4wwsjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkODJmMWZjZTAwOGJjYzcyNWRkYmJlNzA2NzQ1MWRkODIw
NTkzMDcwHhcNMjUxMDIwMDIwMTI5WhcNMjUxMDIxMDIwMTI5WjAzMTEwLwYDVQQD
EyhmM2U0OWYxNTkwYmQ5ZmU5MGE0NWExMTc0ZTMzYWQ5M2FmY2RkODllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjBozo0qVktn4T6aMgCcf+8yzs+zK
ii5OG714tMiWq/o/SBUfqU7E7wskvSfabzE/0Y7k0cocHW2dyXO154Rob9Jb7bJC
IT5Ho/ZF5613ECYzD6wN0OHhxKlbQfNTDFX5weuEWKRCflxJrecc2gMG1LIYO8Bn
kTvkIotTYszww3MQgo/ENdnLCs4QaVwqHBDEEs2mknN5pAStvToP43OMxCbRspbK
W4drb/8CcHAyGgo0CcX4rtljWZgyKAHexS5kC6K6Hw2AFkMyVt/h+MrehiEvyDF6
dUHtfSwpx52uoaXNk+n8J/ad0rH5P78ayiMrIbIgCV3mfcTGVTqcyCH08wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPPknxWQvZ/pCkWhF04zrZOvzdieMB8GA1UdIwQY
MBaAFD2C8fzgCLzHJd275wZ0Ud2CBZMHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlMeF9PQUl2TWNsM2J2bkJuUlIzWUlGa3djLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi85YzRhNzctMGM3ZS00OTRjLWEyMzEt
YmYxZTk5YzBjZjNmLzEvUFlMeF9PQUl2TWNsM2J2bkJuUlIzWUlGa3djLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi85YzRhNzctMGM3ZS00OTRjLWEyMzEtYmYxZTk5YzBjZjNm
LzEvUFlMeF9PQUl2TWNsM2J2bkJuUlIzWUlGa3djLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe6u3zzXV
Cn7lVZ5ZQzVNcTpze+JhBbp3oSTKtSqtDe0HaahflMfmSDRHRAl+LFXQKccYDQB2
j6RcNB/Wx4xfhSYZUX0IIeP7Xb0wfC8bgbXgkZRqReYpKGts2fw6SqYCxQEQ/drn
eOX2X+HQu4s9zXfACjt52mHhUc7yJsffuktdISOGQpyJC7lEC79JvBgWiBF4d53h
cpGdBBOCu3UsB1zLVtwff8NSp14rdIulkA3tjwhGjnPXKHAnpIs/fnM7m08MhG+7
IMbH/VJ9EFrDh2LLbdWKwihn8clYMcFvWr4q6WDKCR3X/9TNeNhaqibRO9BDEEC/
GFn1/MwGDvRriQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 05:59:30 2025 by rpki-client