Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: q+S4btqDNd88+iir9cIRcnbz4jg1V9vmR2NmsZ0nG4E=
Subject key identifier: C8:F4:8B:E6:B8:67:DF:78:5E:CB:A8:A0:AE:76:70:46:06:BA:01:22
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 0197B74551BEE2EF084EF84A8EE56FE77539
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 0FBD
Signing time: Sat 28 Jun 2025 16:01:02 +0000
Manifest this update: Sat 28 Jun 2025 16:01:02 +0000
Manifest next update: Sun 29 Jun 2025 16:01:02 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: E/i1j6r82u7H7z5QbaZV9izgXRDrJ6a8nWkJbW1q9Gk=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:51:be:e2:ef:08:4e:f8:4a:8e:e5:6f:e7:75:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Jun 28 16:01:02 2025 GMT
Not After : Jun 29 16:01:02 2025 GMT
Subject: CN=c8f48be6b867df785ecba8a0ae76704606ba0122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0d:3f:3a:48:57:cf:3f:1e:ec:39:0c:f1:22:
c8:3d:ea:9a:02:45:98:1d:b8:55:0d:eb:fb:99:5f:
36:3f:4f:2d:0c:58:59:dd:4f:ab:f0:cf:fe:57:90:
52:22:41:1c:89:d0:f8:d4:d0:50:34:a6:e6:f8:3d:
dd:14:eb:30:7d:ac:b7:78:e8:4d:92:4f:bb:12:2a:
24:f5:1a:73:37:e7:be:a4:e5:5a:de:78:59:c3:98:
6e:61:f1:78:43:49:45:59:99:8f:73:5f:b1:5d:aa:
23:a7:e4:db:81:4e:c7:6a:3f:ec:4f:45:af:19:82:
83:25:48:ed:dc:99:5a:fb:e5:14:42:f4:81:75:4e:
54:55:6f:37:75:52:1a:07:d7:58:b2:4d:93:27:38:
64:69:3b:6a:b6:4b:0f:98:eb:df:98:8c:01:2b:93:
45:b9:f6:5a:41:2b:f8:09:67:87:28:ff:5b:fc:16:
f5:ee:5b:0a:f3:7c:b0:b7:74:49:ba:da:71:dc:f5:
fa:ca:5b:28:dd:b6:27:aa:67:0d:de:07:69:14:c5:
57:53:8a:4b:fa:e5:59:b5:e4:72:70:8f:8a:11:f4:
44:60:d9:2f:bf:57:42:37:0b:8c:e6:91:76:7f:2c:
48:13:3a:23:46:8b:e9:61:b4:54:bb:ef:91:02:03:
f6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F4:8B:E6:B8:67:DF:78:5E:CB:A8:A0:AE:76:70:46:06:BA:01:22
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ec:93:9d:07:2b:26:82:1f:8a:17:dc:88:a3:23:9a:fb:20:
f4:e2:b8:3b:8d:38:97:20:7e:27:60:27:00:e7:e3:2e:c1:86:
79:9b:5e:08:64:44:a3:bf:eb:e6:32:76:c4:00:43:58:4a:8f:
49:00:be:cc:0a:6b:c8:27:8f:49:ab:d6:de:16:d4:b0:cd:7b:
25:98:1a:ab:ff:9b:32:50:a2:65:ff:5c:cc:c5:c3:42:a7:f6:
59:73:2d:11:99:44:e7:25:36:43:80:89:cf:13:ee:7c:22:83:
67:b4:81:e6:07:7e:2e:48:2e:61:e9:e1:ea:ee:bf:b8:77:10:
65:fa:20:8d:3b:d0:d6:9a:5b:68:5b:3a:3b:23:d5:01:b4:62:
37:d7:8d:8f:e9:f5:82:c0:d1:6a:86:d8:63:99:74:25:c0:93:
98:c1:d8:ec:11:0d:0e:12:ce:25:78:6b:4a:1f:82:ba:75:79:
a8:2f:77:b6:04:44:37:0a:7e:af:da:66:db:e0:46:ec:17:7f:
b6:8a:a9:a0:bd:60:6f:ed:8b:64:ed:87:b5:44:c4:75:ef:42:
a1:8e:0d:5f:4c:e9:59:28:b5:40:4e:1f:d2:0a:6c:f3:bc:2f:
49:9e:d2:8b:1c:82:60:95:ba:41:6b:c2:a1:31:3e:2e:62:55:
f9:4b:38:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:12:52 2025 by rpki-client