Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: DsrSLPmibOph7pxlbbSWnqgFZlcQo0QBH/EdW2a/kiM=
Subject key identifier: 2C:C6:F3:BC:E9:A8:64:EE:24:34:44:8A:D1:ED:C8:6F:D8:95:E0:9C
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 0199FD6B52A58F72B64E04380520076788F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 09AA
Signing time: Sun 19 Oct 2025 17:01:33 +0000
Manifest this update: Sun 19 Oct 2025 17:01:33 +0000
Manifest next update: Mon 20 Oct 2025 17:01:33 +0000
Files and hashes: 1: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (hash: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: zQJpTjvELTFJhB7BpdpK8Esf6Lzv4txWKapGYL7F/p8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6b:52:a5:8f:72:b6:4e:04:38:05:20:07:67:88:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Oct 19 17:01:33 2025 GMT
Not After : Oct 20 17:01:33 2025 GMT
Subject: CN=2cc6f3bce9a864ee2434448ad1edc86fd895e09c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:08:be:a6:78:f9:36:5d:90:23:66:0f:94:0e:
ad:b0:c7:8f:f4:1d:f6:7b:ce:71:7c:64:78:ba:6c:
3a:a3:c5:b0:c9:e2:2c:b6:0a:b2:97:c0:73:b2:d9:
1e:91:62:63:32:78:9a:bf:77:17:83:22:b1:ac:f9:
13:65:7b:a8:88:e0:6c:92:01:db:0c:4f:fe:71:de:
3b:c1:9c:c0:53:d3:ec:c5:f8:e6:8f:18:e4:e5:5d:
2f:f5:49:a9:2a:87:54:ec:89:11:f1:ff:aa:0f:d5:
87:98:58:4f:05:d4:f9:bf:f3:f0:e6:9f:2b:61:e9:
57:c5:64:3b:e7:dd:f6:58:89:4c:7b:60:f0:d5:2b:
f1:ac:52:80:aa:a6:76:12:ce:87:47:44:db:38:7b:
bf:d7:49:f3:d1:5a:4d:61:1e:fd:09:8a:b9:3e:12:
23:db:14:05:c7:34:65:ec:db:b8:f3:b2:3c:9e:5f:
19:a6:c2:bd:28:33:56:cc:ae:2a:2f:77:31:0a:63:
f5:d6:f0:25:18:40:e9:db:a5:d3:68:95:90:c4:ad:
55:60:74:ad:03:ce:da:23:ff:1e:08:44:be:33:13:
bd:d7:aa:fb:05:aa:4a:71:10:56:d7:6d:67:5e:18:
10:d5:65:41:01:ed:03:7f:40:c0:dd:c6:2f:b7:c4:
8d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C6:F3:BC:E9:A8:64:EE:24:34:44:8A:D1:ED:C8:6F:D8:95:E0:9C
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:18:b2:02:34:50:37:4c:d7:39:ee:ef:ff:d3:98:60:3f:fd:
bd:45:19:71:01:8d:ed:76:ca:bd:29:8a:c1:32:bb:77:00:85:
8a:88:80:d2:e0:e1:b9:35:e6:72:24:cc:5d:57:63:fd:16:b1:
68:75:98:66:49:16:bb:0a:08:f2:7f:e6:2c:8f:dd:fb:a5:48:
15:8f:44:1f:f1:ed:69:51:e8:9e:58:fa:4c:30:3b:54:ca:52:
e1:e6:29:82:91:1b:4b:62:93:5b:44:b3:bf:67:66:ed:26:15:
76:41:36:9a:50:59:77:0c:6a:ca:3a:39:28:98:b6:49:a8:0e:
fd:f8:ac:af:a1:c5:1b:86:d0:f0:d6:4b:de:47:be:19:40:3e:
77:58:9a:f3:9c:10:98:68:1f:7f:c7:19:24:3a:13:d4:ad:31:
83:94:70:8e:dd:95:40:e5:3f:32:23:0b:a3:61:29:64:ca:f9:
85:74:7a:c9:7e:c1:3e:29:6d:f5:d1:e1:cb:3b:4f:a5:af:96:
b8:30:41:3d:85:b8:32:ce:9f:ff:2e:33:48:0d:80:dc:f9:4b:
43:2e:c2:69:22:20:1b:3d:6c:cd:cc:1f:ae:cd:6b:98:de:3b:
92:8a:ea:46:4f:1e:10:5e:3a:d9:ea:aa:51:bd:ba:4c:94:a7:
c6:7d:3f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:25:51 2025 by rpki-client