Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: 0iJkuh4D8h5EjXc4lgT/RZw63MWXGz2siGBiKiSahXE=
Subject key identifier: 0F:19:16:69:AD:8B:8F:A9:A6:9E:F7:A0:EB:26:12:57:9E:33:F2:EA
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 0198D5F13EE9105C3FCF20595576F8A4CFF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0911
Signing time: Sat 23 Aug 2025 08:00:13 +0000
Manifest this update: Sat 23 Aug 2025 08:00:13 +0000
Manifest next update: Sun 24 Aug 2025 08:00:13 +0000
Files and hashes: 1: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (hash: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: QbFz/LE5NukaFoCT6e0tZztn1t9zse9Mz+Yf+zkZ3yE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:3e:e9:10:5c:3f:cf:20:59:55:76:f8:a4:cf:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Aug 23 08:00:13 2025 GMT
Not After : Aug 24 08:00:13 2025 GMT
Subject: CN=0f191669ad8b8fa9a69ef7a0eb2612579e33f2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:70:2f:35:45:5e:8c:1a:d5:95:45:08:ab:55:
43:4b:17:ea:65:1d:b9:b5:a2:fd:66:d9:ed:e7:20:
0a:19:ee:f2:c2:67:17:9c:bb:8f:7a:61:02:a4:42:
94:b2:58:9e:1f:7e:6d:c1:f5:b5:3c:d9:86:59:7a:
7d:2a:fd:48:86:f3:f6:b8:09:19:3f:eb:a5:6d:57:
5e:7a:4c:8b:c0:59:7e:bc:fd:35:db:c1:cc:d6:4f:
e3:0b:34:37:6f:8b:79:48:26:e4:8c:dd:b8:53:ac:
10:37:63:40:5e:7d:ef:ff:f5:d2:e8:89:18:ea:b0:
68:1f:05:33:b1:cd:9b:09:c6:79:f6:07:a0:18:8c:
95:80:15:be:30:d0:5a:ba:96:a1:11:a1:a4:23:2a:
98:a6:5e:ad:e7:0d:05:50:61:55:bf:6a:b8:f4:22:
0e:05:aa:d7:cb:ce:78:b5:f3:e0:52:19:4b:33:eb:
95:ef:82:0c:b5:51:8a:d7:fb:37:96:74:61:b6:d6:
15:aa:0c:bf:f9:ab:07:23:9d:40:1c:ac:fd:84:b4:
55:b2:9c:92:08:02:69:1b:d2:63:23:64:af:33:81:
7d:b6:63:99:3c:85:36:31:8e:74:3f:27:a3:0b:b6:
e9:b8:31:96:4a:b8:17:64:18:9d:d3:d7:b2:9b:51:
f2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:19:16:69:AD:8B:8F:A9:A6:9E:F7:A0:EB:26:12:57:9E:33:F2:EA
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:0d:5d:4f:3c:7e:69:27:55:24:96:de:ac:81:29:8a:96:3a:
1e:4b:f7:22:1f:16:f8:66:fa:64:5a:f4:de:24:b4:aa:c5:23:
f5:fb:69:2c:37:d4:32:d9:d5:76:ff:72:e3:70:d3:7e:48:8a:
a3:3e:d4:d7:00:bf:f3:44:76:61:5d:14:49:dc:61:0c:49:28:
be:af:ba:e6:28:60:e6:f6:f8:a5:d1:7b:21:ba:71:28:66:99:
7a:21:0f:e9:19:8f:de:fa:bf:66:20:7a:cb:13:59:7c:6b:0e:
67:ae:3e:4a:6b:32:1b:1e:99:db:cd:22:d9:9f:e0:d8:97:da:
b7:bc:14:7d:70:ea:6b:fa:a2:61:1e:ad:d9:b0:7a:7a:77:62:
16:6a:29:c7:bf:4d:5d:9c:ed:f7:01:5e:af:24:1f:10:7b:85:
f4:ef:69:26:a1:ca:1e:2e:95:b6:a3:41:2e:1e:e2:7a:fd:53:
b1:8d:bd:85:2d:6d:ba:c6:0c:06:39:74:06:da:6f:e3:88:2b:
35:13:da:9c:90:38:8d:06:de:54:a3:12:18:bb:7e:95:3f:61:
b6:bf:20:e5:83:19:10:12:2b:50:32:bf:38:3b:ca:d4:0b:f5:
8f:d9:c7:fc:31:75:57:01:21:ce:14:ed:7d:c3:2a:0e:bc:ef:
91:4b:64:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:10:24 2025 by rpki-client