
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: +CdYrZxKsh8KsGISGBbFk/G6taTZu0P8erPt20Fi8qc=
Subject key identifier: 50:72:75:84:32:0D:A9:3E:35:2B:E5:7F:FA:97:3A:59:CF:40:28:5D
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 0199FC8F6FEEEBF888C64BF248BC0499221C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 10EA
Signing time: Sun 19 Oct 2025 13:01:22 +0000
Manifest this update: Sun 19 Oct 2025 13:01:22 +0000
Manifest next update: Mon 20 Oct 2025 13:01:22 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: FduyhNj31tLbM7XexWAkAztW8FeLTGHhEUVpvgMPueE=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:6f:ee:eb:f8:88:c6:4b:f2:48:bc:04:99:22:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Oct 19 13:01:22 2025 GMT
Not After : Oct 20 13:01:22 2025 GMT
Subject: CN=50727584320da93e352be57ffa973a59cf40285d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2b:bf:fe:34:e6:c5:ef:12:c1:00:a1:1d:c7:
18:de:e8:bb:35:e3:4d:af:d4:5e:d4:fa:ae:56:ec:
b6:cc:8c:e7:2a:8f:a3:8f:ee:98:4a:d3:72:39:d0:
0c:ab:e2:83:c5:af:ac:44:94:70:6e:33:2c:f4:ab:
af:5d:17:62:82:98:5e:f3:3f:68:8b:2f:93:c6:36:
db:cf:b2:c2:f7:16:e7:bc:78:d5:f1:01:14:a3:61:
e9:a2:18:31:1c:21:b4:66:39:6a:a8:b1:08:0f:a9:
62:ce:4b:0c:80:e6:ec:3a:e3:91:52:b3:39:95:71:
f2:5a:97:d2:45:b4:c1:01:c1:91:49:6a:c7:3c:78:
39:d7:bb:7c:a5:82:34:ab:37:3c:60:bb:d1:a5:bb:
6d:64:4e:b8:31:54:be:99:53:f9:69:e4:aa:9d:09:
ac:35:56:d7:02:96:56:3b:b2:26:7a:1e:79:4e:e9:
d8:89:12:e6:3e:ba:b4:47:37:34:35:79:91:9d:40:
ab:b6:6d:d3:a9:be:14:ae:87:53:a7:69:de:76:9e:
7f:71:c7:f2:c4:a2:43:df:3c:4f:c8:10:86:a0:55:
cb:79:ca:4d:c0:df:e9:ae:c9:0d:f1:c8:de:cd:5c:
fc:ce:e4:ea:51:cd:d7:7f:1e:91:9a:85:89:05:79:
27:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:72:75:84:32:0D:A9:3E:35:2B:E5:7F:FA:97:3A:59:CF:40:28:5D
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:5e:1f:24:90:15:69:b2:70:48:d7:9f:5e:6b:9e:92:ad:0f:
fc:db:ae:61:c2:66:31:3f:0b:d8:47:1d:e2:8a:68:f2:71:5b:
64:52:63:e9:68:66:e5:be:de:8c:9e:44:eb:90:e2:8a:f0:6a:
ce:2b:b8:88:5d:d4:26:e2:82:52:b9:84:c4:f1:83:58:cc:27:
26:bf:43:19:e6:35:ae:bc:31:35:22:77:2f:3f:b6:d7:5b:8d:
3d:dd:5c:39:17:e8:8e:eb:81:b6:70:6e:25:4f:e9:ad:81:df:
bc:5f:f0:4f:29:7d:1b:3b:aa:f5:62:48:32:fe:20:53:9b:b8:
d0:b2:4f:45:84:85:fb:27:0c:70:1f:51:fa:c1:71:9d:44:78:
84:84:e5:12:38:48:f4:fc:44:31:e5:23:91:11:c0:f6:1b:4e:
88:1d:dd:4c:42:f0:5c:73:8d:7c:e3:52:58:da:4c:26:88:93:
23:d2:18:63:ac:0b:02:f5:3b:c8:64:b5:5c:55:5c:ba:34:ed:
30:69:67:e6:ea:da:c1:ef:e5:92:4a:73:2a:87:81:53:98:7b:
25:fa:75:fc:f9:c7:8c:26:0f:4d:67:e4:02:29:7a:1d:df:a0:
80:2a:26:c3:59:63:67:97:9f:52:7e:af:13:02:16:ac:05:f0:
16:5b:da:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:13:01 2025 by rpki-client