Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: OfzKW+1GLvWF8JgfyhQX2oVl9sel6dEcWQtFmXVY/zg=
Subject key identifier: CF:85:F0:06:14:F0:64:EA:E5:7A:D6:41:2B:A1:CF:D5:44:7B:4D:2B
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 0197B8211F38F35D8D87A941EE52D4FCFE2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 087D
Signing time: Sat 28 Jun 2025 20:01:07 +0000
Manifest this update: Sat 28 Jun 2025 20:01:07 +0000
Manifest next update: Sun 29 Jun 2025 20:01:07 +0000
Files and hashes: 1: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (hash: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: cksc0S/PdH1IrsxDQC/Yy22bS/abIji91h0YuSuAVZM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:1f:38:f3:5d:8d:87:a9:41:ee:52:d4:fc:fe:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Jun 28 20:01:07 2025 GMT
Not After : Jun 29 20:01:07 2025 GMT
Subject: CN=cf85f00614f064eae57ad6412ba1cfd5447b4d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:cb:8c:eb:a2:37:76:18:26:9a:3a:10:53:51:
55:40:ed:e7:89:c3:6d:77:43:26:c3:40:f8:71:e9:
87:d8:a4:e7:73:ec:9f:1a:c5:d1:64:c3:5e:97:a0:
78:10:77:85:40:37:69:6c:87:1e:98:f8:a2:cd:45:
52:bd:bb:91:de:7f:3c:d8:23:9b:9a:62:11:31:38:
dd:6e:dc:d4:1b:23:f9:d0:c1:d3:d4:0e:6f:20:26:
bd:b2:54:45:89:17:0c:76:0b:ca:52:8b:53:42:33:
56:7c:45:29:35:88:d6:94:f7:8a:f5:28:a4:5f:e9:
d9:bf:27:cb:5c:73:98:ec:c8:ec:e3:19:08:e6:42:
e2:8f:59:ee:94:3c:2e:9d:a4:36:42:01:6c:12:17:
69:a0:b7:0f:ab:72:8f:d7:64:00:a5:ec:21:bf:c7:
d7:58:04:fa:94:1a:9b:b1:a1:8c:c2:d7:83:4f:85:
d2:74:75:4c:a5:6a:94:90:86:7b:4e:0f:d6:d0:27:
c1:3e:17:2c:63:6b:c8:a0:9e:2f:8e:a3:63:68:31:
78:18:0b:f0:18:1e:36:70:b9:29:e7:cd:20:ab:e8:
c5:5f:28:cc:a1:59:27:b8:4d:08:33:75:4e:11:7a:
a0:ac:22:8c:72:05:37:12:f7:b3:56:b0:6c:bc:75:
b4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:85:F0:06:14:F0:64:EA:E5:7A:D6:41:2B:A1:CF:D5:44:7B:4D:2B
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:67:a6:7e:29:25:39:f9:c2:cd:aa:47:6b:cc:f6:29:05:65:
c0:e7:72:53:39:9c:06:94:6d:82:71:2e:dc:e9:33:4c:90:b0:
81:87:8e:d7:5e:16:22:96:bf:e2:86:9f:b5:9c:3b:a2:95:22:
84:da:e9:58:f7:ba:87:bf:ec:1c:d0:73:96:d0:7b:06:e9:b6:
e7:0d:48:ff:30:fd:db:af:12:31:36:c8:6c:43:ba:40:af:09:
fc:96:0b:a8:e4:69:1a:d8:a2:e9:7d:07:fb:82:a8:75:2d:3a:
b3:aa:93:fe:49:42:7b:c2:42:fa:f0:a9:1e:c5:5b:d7:0d:41:
3c:1b:91:6b:7a:5e:3c:2b:d0:16:b3:25:d1:cc:28:ff:6a:db:
50:40:38:97:f1:b0:2e:d7:21:91:8e:b1:7c:2f:f0:97:65:a3:
7b:ad:93:3b:cc:ce:3d:b9:ff:26:94:e2:9e:ee:d7:4c:68:22:
7d:d7:2a:56:e0:2f:86:72:e4:8d:52:ce:bc:be:fe:12:1e:50:
1c:36:3d:a2:e3:14:1f:ac:d5:0f:e1:b5:26:02:3a:43:c7:70:
f5:d1:1e:0c:c3:91:a6:39:dc:c6:37:cd:d5:a9:1b:39:e7:4c:
21:10:24:6e:c6:c1:56:67:1a:f1:da:a8:72:a5:97:c3:71:be:
e7:1d:a7:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4IR84812Nh6lB7lLU/P4qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkODk3YmQ4YzZkZjFjYjcxNDEwZmUxOTRiZWQ3MzlhMmY4
YTY3NzMwHhcNMjUwNjI4MjAwMTA3WhcNMjUwNjI5MjAwMTA3WjAzMTEwLwYDVQQD
EyhjZjg1ZjAwNjE0ZjA2NGVhZTU3YWQ2NDEyYmExY2ZkNTQ0N2I0ZDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsuM66I3dhgmmjoQU1FVQO3nicNt
d0Mmw0D4cemH2KTnc+yfGsXRZMNel6B4EHeFQDdpbIcemPiizUVSvbuR3n882COb
mmIRMTjdbtzUGyP50MHT1A5vICa9slRFiRcMdgvKUotTQjNWfEUpNYjWlPeK9Sik
X+nZvyfLXHOY7Mjs4xkI5kLij1nulDwunaQ2QgFsEhdpoLcPq3KP12QApewhv8fX
WAT6lBqbsaGMwteDT4XSdHVMpWqUkIZ7Tg/W0CfBPhcsY2vIoJ4vjqNjaDF4GAvw
GB42cLkp580gq+jFXyjMoVknuE0IM3VOEXqgrCKMcgU3EvezVrBsvHW0DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM+F8AYU8GTq5XrWQSuhz9VEe00rMB8GA1UdIwQY
MBaAFD2Je9jG3xy3FBD+GUvtc5ovimdzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzkt
ZjlmOTIxNTBjZDM5LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi81NDcxZjgtYzkzOC00MGNjLWIxMzktZjlmOTIxNTBjZDM5
LzEvUFlsNzJNYmZITGNVRVA0WlMtMXptaS1LWjNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhGemfikl
OfnCzapHa8z2KQVlwOdyUzmcBpRtgnEu3OkzTJCwgYeO114WIpa/4oaftZw7opUi
hNrpWPe6h7/sHNBzltB7Bum25w1I/zD9268SMTbIbEO6QK8J/JYLqORpGtii6X0H
+4KodS06s6qT/klCe8JC+vCpHsVb1w1BPBuRa3pePCvQFrMl0cwo/2rbUEA4l/Gw
LtchkY6xfC/wl2Wje62TO8zOPbn/JpTinu7XTGgifdcqVuAvhnLkjVLOvL7+Eh5Q
HDY9ouMUH6zVD+G1JgI6Q8dw9dEeDMORpjncxjfN1akbOedMIRAkbsbBVmca8dqo
cqWXw3G+5x2n9w==
-----END CERTIFICATE-----
Generated at Sun Jun 29 01:44:36 2025 by rpki-client