Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
File: PsY-XbBDXC0-dKayitPZww1qjO4.mft (raw, json)
Hash identifier: TFCgQR3QuBUOrZFkJbVQu1xX2Ki4ngJQvGRQ7kBH0a8=
Subject key identifier: 7A:13:15:BB:F1:A6:FA:BF:EF:D5:60:3F:A2:87:CE:42:27:7B:4F:F4
Authority key identifier: 3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
Certificate issuer: /CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Certificate serial: 0198D6600391638D5D39FA24A40BE45DDD01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
Manifest number: 0E59
Signing time: Sat 23 Aug 2025 10:01:13 +0000
Manifest this update: Sat 23 Aug 2025 10:01:13 +0000
Manifest next update: Sun 24 Aug 2025 10:01:13 +0000
Files and hashes: 1: GSEh8gIZdCBsRKOnb9fKkFOFuZk.roa (hash: u2uTEL6Ts0fKYl8Es1LELd2Ambr6iVn6vwhJ7qDD50c=)
2: PsY-XbBDXC0-dKayitPZww1qjO4.crl (hash: ulGYcsTKfBWgnEqd295z406Um/8Oj6goCw8K4aJyD2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:03:91:63:8d:5d:39:fa:24:a4:0b:e4:5d:dd:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ec63e5db0435c2d3e74a6b28ad3d9c30d6a8cee
Validity
Not Before: Aug 23 10:01:13 2025 GMT
Not After : Aug 24 10:01:13 2025 GMT
Subject: CN=7a1315bbf1a6fabfefd5603fa287ce42277b4ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c9:f0:4f:53:95:eb:ea:44:8d:3a:0e:48:d7:
e9:8e:b9:dd:8d:60:78:ec:c1:f9:09:e0:3c:10:55:
bd:71:ae:c7:22:08:2e:e0:17:a5:3a:4c:69:ba:4b:
ee:01:c0:af:3e:1e:de:30:1a:d0:f3:c5:ed:76:16:
5f:27:ed:03:1d:10:be:27:cc:1d:88:0c:c0:34:74:
da:0f:f9:33:e0:db:0f:42:bb:3e:71:6b:22:93:b6:
a5:0d:ff:b5:3d:03:d0:94:37:ee:4f:c6:b3:0a:30:
cc:c7:ac:2f:eb:e9:64:4e:fa:3a:2e:53:7f:e7:61:
82:f4:33:af:83:18:5d:48:9a:dc:9c:6b:13:13:5b:
1c:ba:7e:de:32:a8:dc:4a:d5:0e:de:17:01:14:64:
8b:49:67:33:97:71:22:de:7d:49:ea:fb:21:9f:e1:
2c:6f:fb:e8:fc:0b:f5:32:1f:82:82:c9:7f:3c:fc:
a8:78:f9:22:20:9e:8c:9b:1b:ce:7b:9f:7e:fd:cf:
ad:65:70:c9:27:bf:1c:1b:ae:83:21:d1:d9:5b:b6:
ec:f2:39:bd:e1:f8:b6:6b:2c:71:04:d2:ca:47:27:
e0:d5:32:83:8b:8a:15:32:48:ab:49:02:f5:2a:26:
48:d8:6c:10:23:60:a2:73:0e:39:a7:a3:1c:99:06:
ef:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:13:15:BB:F1:A6:FA:BF:EF:D5:60:3F:A2:87:CE:42:27:7B:4F:F4
X509v3 Authority Key Identifier:
keyid:3E:C6:3E:5D:B0:43:5C:2D:3E:74:A6:B2:8A:D3:D9:C3:0D:6A:8C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsY-XbBDXC0-dKayitPZww1qjO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/46d943-8cbd-41a2-b9f2-52058f8a9a1a/1/PsY-XbBDXC0-dKayitPZww1qjO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:76:42:4e:d5:66:75:52:54:2e:e9:80:6a:ed:ab:70:8a:2f:
dc:dc:b3:4a:5a:1c:88:42:bf:ad:bc:27:d3:04:a2:fe:23:c8:
b2:3a:83:3c:81:44:9b:1c:e2:0c:c2:fd:df:9b:a3:75:b0:8a:
c7:40:3f:d0:51:54:d7:6f:3c:e1:87:1d:e4:8b:fa:21:75:65:
2c:ef:0a:53:94:1a:5e:44:37:2a:dd:56:7f:17:ce:9f:96:b5:
4f:99:59:4d:e0:b5:44:0f:0e:6b:b8:06:fa:64:c6:fd:47:45:
62:51:cc:7a:74:88:f2:a2:fd:a9:ab:3c:3a:53:28:73:7f:62:
d0:07:7e:89:0c:93:4f:df:ff:77:c2:24:c9:92:8d:dd:5b:f5:
e1:8f:34:63:16:0b:30:19:1c:b0:e7:51:1b:f8:ba:0d:93:87:
7a:f9:d7:b0:c2:ff:15:36:8f:ee:cb:3f:df:66:49:53:6d:40:
ea:56:a8:2b:19:a3:ad:74:c8:86:a0:22:bb:25:d6:a0:41:c9:
aa:04:75:25:5f:0d:b1:db:20:ee:a4:31:45:25:a3:e6:81:a5:
9c:9a:ad:07:d9:83:62:af:7f:db:04:79:73:04:55:7e:fa:f2:
9b:fd:37:51:a8:30:93:6f:b6:83:e1:5d:7a:9a:aa:7c:7b:cc:
04:a8:d5:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYAORY41dOfokpAvkXd0BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYzYzZTVkYjA0MzVjMmQzZTc0YTZiMjhhZDNkOWMzMGQ2
YThjZWUwHhcNMjUwODIzMTAwMTEzWhcNMjUwODI0MTAwMTEzWjAzMTEwLwYDVQQD
Eyg3YTEzMTViYmYxYTZmYWJmZWZkNTYwM2ZhMjg3Y2U0MjI3N2I0ZmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMnwT1OV6+pEjToOSNfpjrndjWB4
7MH5CeA8EFW9ca7HIggu4BelOkxpukvuAcCvPh7eMBrQ88XtdhZfJ+0DHRC+J8wd
iAzANHTaD/kz4NsPQrs+cWsik7alDf+1PQPQlDfuT8azCjDMx6wv6+lkTvo6LlN/
52GC9DOvgxhdSJrcnGsTE1scun7eMqjcStUO3hcBFGSLSWczl3Ei3n1J6vshn+Es
b/vo/Av1Mh+Cgsl/PPyoePkiIJ6MmxvOe59+/c+tZXDJJ78cG66DIdHZW7bs8jm9
4fi2ayxxBNLKRyfg1TKDi4oVMkirSQL1KiZI2GwQI2Cicw45p6McmQbvkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHoTFbvxpvq/79VgP6KHzkIne0/0MB8GA1UdIwQY
MBaAFD7GPl2wQ1wtPnSmsorT2cMNaozuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS80NmQ5NDMtOGNiZC00MWEyLWI5ZjIt
NTIwNThmOGE5YTFhLzEvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS80NmQ5NDMtOGNiZC00MWEyLWI5ZjItNTIwNThmOGE5YTFh
LzEvUHNZLVhiQkRYQzAtZEtheWl0UFp3dzFxak80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAynZCTtVm
dVJULumAau2rcIov3NyzSlociEK/rbwn0wSi/iPIsjqDPIFEmxziDML935ujdbCK
x0A/0FFU12884Ycd5Iv6IXVlLO8KU5QaXkQ3Kt1WfxfOn5a1T5lZTeC1RA8Oa7gG
+mTG/UdFYlHMenSI8qL9qas8OlMoc39i0Ad+iQyTT9//d8IkyZKN3Vv14Y80YxYL
MBkcsOdRG/i6DZOHevnXsML/FTaP7ss/32ZJU21A6laoKxmjrXTIhqAiuyXWoEHJ
qgR1JV8Nsdsg7qQxRSWj5oGlnJqtB9mDYq9/2wR5cwRVfvrym/03Uagwk2+2g+Fd
epqqfHvMBKjVTw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:32:32 2025 by rpki-client