Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
File: PFlVXsIygmx91tmpJrU2AoN5SfY.mft (raw, json)
Hash identifier: WxoRbWLmGSru/UkmY3SejBD0E1nzYibA1ZW69pB8D2U=
Subject key identifier: 4F:25:4F:98:D8:8F:42:45:BB:5D:74:4A:81:B8:CD:29:76:56:F6:39
Authority key identifier: 3C:59:55:5E:C2:32:82:6C:7D:D6:D9:A9:26:B5:36:02:83:79:49:F6
Certificate issuer: /CN=3c59555ec232826c7dd6d9a926b53602837949f6
Certificate serial: 0198D5F15531C25ED3E034180C90C5C421E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
Manifest number: 01FE
Signing time: Sat 23 Aug 2025 08:00:19 +0000
Manifest this update: Sat 23 Aug 2025 08:00:19 +0000
Manifest next update: Sun 24 Aug 2025 08:00:19 +0000
Files and hashes: 1: PFlVXsIygmx91tmpJrU2AoN5SfY.crl (hash: xF6X2EuVrst7vwC+i3pcZPow7aW9OJkhzxEYow33GgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:55:31:c2:5e:d3:e0:34:18:0c:90:c5:c4:21:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c59555ec232826c7dd6d9a926b53602837949f6
Validity
Not Before: Aug 23 08:00:19 2025 GMT
Not After : Aug 24 08:00:19 2025 GMT
Subject: CN=4f254f98d88f4245bb5d744a81b8cd297656f639
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:82:eb:9c:8d:47:f1:f2:5a:8e:a6:73:23:75:
c5:43:56:d4:66:ac:aa:54:91:f9:f4:c9:11:83:61:
a1:2a:a0:5d:5b:a9:a7:05:50:c2:b0:3c:af:5e:b9:
f8:87:16:d7:c0:12:70:37:6f:42:4f:32:2d:b2:a2:
2e:71:1f:7c:27:84:dc:7f:b3:2d:65:e7:81:c4:6e:
74:d0:36:13:0c:f8:0d:b7:13:7c:5c:0f:94:7e:66:
2a:07:2f:a9:23:49:7d:32:cc:93:e5:2a:42:57:ca:
26:58:dc:84:7d:d2:82:8f:59:bd:3c:af:6c:17:47:
77:77:7c:ec:ed:ba:c7:74:3a:b1:6a:15:dc:58:0f:
bc:65:85:ab:97:e5:35:99:a9:29:13:c0:45:f4:b1:
d1:22:65:d1:cb:a1:75:1d:8f:5e:5f:26:47:27:29:
0f:c2:7c:ce:07:c5:fa:74:80:ef:cb:6b:11:f9:48:
fb:f5:e7:12:3a:a8:3b:da:80:ba:57:fa:7d:e4:9c:
0f:72:f1:f5:43:5e:1d:4b:03:02:e2:01:ea:3f:ba:
28:42:42:bc:7d:08:6a:db:04:df:48:01:7f:27:ed:
7f:5d:71:ef:4e:5a:b6:ac:61:9c:8e:34:05:f9:ce:
6c:cc:79:76:a4:b2:0e:52:a0:19:f0:6f:bc:dc:89:
e1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:25:4F:98:D8:8F:42:45:BB:5D:74:4A:81:B8:CD:29:76:56:F6:39
X509v3 Authority Key Identifier:
keyid:3C:59:55:5E:C2:32:82:6C:7D:D6:D9:A9:26:B5:36:02:83:79:49:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PFlVXsIygmx91tmpJrU2AoN5SfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ba9404-78f3-4935-9e2e-95b1373c5399/1/PFlVXsIygmx91tmpJrU2AoN5SfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:f4:7f:85:11:51:bb:7e:72:85:82:a0:b8:17:62:b1:e9:20:
b3:1c:7d:27:46:ee:74:20:c1:22:df:36:4c:11:74:a9:a6:de:
21:8e:47:de:34:8b:4c:a4:8e:f8:96:44:ba:bd:b7:ce:22:e7:
f4:94:7c:18:47:02:bd:f0:56:5c:af:b2:f8:0d:15:3f:9b:09:
16:a8:a5:a2:a6:8a:7c:58:81:32:f9:fd:cd:27:2c:8d:e7:6c:
74:e5:45:b8:b4:b0:7b:f0:e7:62:11:69:61:9d:b2:3c:d8:39:
42:f5:d3:00:7c:37:32:ac:99:78:cc:a5:5a:5f:cf:e0:b0:4f:
36:6f:79:e9:4f:b6:13:2f:ea:8d:00:ad:70:55:7c:d4:8a:7f:
5f:9e:0b:3c:3d:02:ff:c6:02:61:d1:24:f1:2d:ef:02:15:d6:
f3:d9:39:ab:96:a3:99:ce:22:52:0b:10:ba:fc:50:4c:13:ab:
8d:e6:a4:b5:ca:0f:a6:66:80:59:70:dc:b2:e8:24:ba:42:c9:
56:ab:82:e0:f7:1b:70:a8:ad:25:5d:3c:34:a1:94:bf:f8:ae:
17:bb:2b:08:5f:46:31:68:31:c4:e2:1f:db:79:66:98:8c:26:
4a:44:89:ae:a8:9e:f7:ec:1b:89:fa:41:1d:8f:3e:db:0c:cd:
63:04:79:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:24:45 2025 by rpki-client