Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: G1H3rj9KPgtsUNqfpkS9RzYDKzkcohXOiA5W7tjl860=
Subject key identifier: 9C:8F:38:FB:89:34:17:24:10:17:5C:CB:41:94:E8:D0:E9:64:6C:42
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 0198D51561E3DC0182DC8A7911BEC4708A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1051
Signing time: Sat 23 Aug 2025 04:00:04 +0000
Manifest this update: Sat 23 Aug 2025 04:00:04 +0000
Manifest next update: Sun 24 Aug 2025 04:00:04 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: j8V+jeZcqkK86idT0xedGKRncnfPbWtdhriJWZklsII=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:61:e3:dc:01:82:dc:8a:79:11:be:c4:70:8a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Aug 23 04:00:04 2025 GMT
Not After : Aug 24 04:00:04 2025 GMT
Subject: CN=9c8f38fb8934172410175ccb4194e8d0e9646c42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9f:b6:ce:60:ad:a8:87:21:b0:bb:3d:4c:97:
9d:23:f2:0b:d2:0c:41:2a:59:e4:dd:99:22:06:ba:
3f:33:ac:53:c6:9f:65:e6:62:86:48:92:75:59:bf:
e4:c7:2e:37:a1:fc:72:12:b5:aa:8e:be:e3:80:b0:
dc:69:3f:2c:57:c9:ac:51:7e:0a:52:fa:d4:78:bb:
32:16:42:44:87:5a:4a:f6:f2:1f:41:ad:c3:d2:34:
bc:c1:87:35:32:1a:0a:25:b6:e0:a0:a5:92:51:88:
29:5c:42:37:15:12:14:39:34:89:c9:3b:68:5b:fc:
74:2c:70:aa:48:09:c3:7c:74:75:5d:5a:44:a0:fb:
69:a6:f4:42:08:40:cf:ca:c8:cd:9c:32:75:64:1a:
c6:d3:97:ff:79:4c:be:1d:eb:ee:34:f2:f9:c7:3e:
26:34:ad:ae:7b:cf:a3:93:4e:a7:fe:e9:89:d7:dd:
0f:5a:bb:f5:e6:a9:e0:a1:d0:68:eb:51:19:36:34:
b5:2c:8b:0a:b9:02:e7:3d:90:4d:91:05:d3:9d:15:
1b:84:66:f5:77:bd:3c:38:f2:b0:c4:50:9e:71:94:
62:20:59:93:17:df:82:78:70:8d:fe:7d:88:4b:af:
94:95:38:03:af:92:3c:d5:12:2c:c0:3b:9c:04:c1:
1a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8F:38:FB:89:34:17:24:10:17:5C:CB:41:94:E8:D0:E9:64:6C:42
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:90:e6:68:0b:fc:e6:5e:10:0e:30:5a:ef:e3:e8:ea:c6:a1:
73:a7:9c:44:df:6c:94:49:be:03:84:68:3a:27:92:2b:84:ef:
9e:d6:52:58:24:87:e9:b5:d8:d7:54:7b:aa:2c:d4:f4:aa:6e:
6f:0f:c9:b2:73:fc:51:2f:c5:11:d6:6c:40:e3:b7:dc:cd:39:
bd:f3:12:04:29:7c:fb:29:24:02:d8:54:17:37:b1:72:99:aa:
e8:48:aa:a3:0b:3a:33:5a:88:6f:c3:c7:38:2f:54:d6:18:79:
1e:38:fe:e9:6e:ce:85:68:05:03:2d:86:55:5d:60:91:ad:4e:
b1:f4:fc:e4:cc:f5:0a:f9:ef:13:57:c4:e2:c8:b9:0c:57:d3:
fe:90:09:95:05:36:84:6b:bd:88:9b:8c:11:88:3a:7b:f7:95:
4e:57:e6:48:67:58:8d:9d:e9:19:5d:00:e3:8f:39:46:6c:db:
71:c9:9d:b0:2f:f1:83:7f:d7:d3:ca:d1:85:59:91:44:0f:43:
cf:46:88:41:c7:da:48:ca:2f:6b:2e:cf:c2:f4:f7:25:d4:43:
e8:59:b3:b9:8c:bf:8f:8c:01:0f:6d:0f:9a:ca:d2:76:a0:02:
b7:dd:6f:62:92:bc:08:48:7a:ac:71:48:f1:01:3e:08:1a:1f:
22:9d:eb:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:29:19 2025 by rpki-client