Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: y64QxB60Kb6h6YieMXdDIx1OtyjQ06xi0xpYDRkytb8=
Subject key identifier: 8E:31:B0:4F:DD:1A:A0:53:35:55:15:D2:62:AB:C5:0F:2D:DB:23:89
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 0198D5BBCBC7EEBCFE7F4181EF54A10BDB2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 087D
Signing time: Sat 23 Aug 2025 07:01:51 +0000
Manifest this update: Sat 23 Aug 2025 07:01:51 +0000
Manifest next update: Sun 24 Aug 2025 07:01:51 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: M2HlSoA5m2Sq5Yb3isurFcCNuLCzEKpmHPHw57CtiyQ=)
2: GMddGlwOUgIDge3f8eQvwQ1gYQ0.roa (hash: QAV4lTR4VFMsoAaetMGZqb1bPsXXa7Ze2H+bxF4CIzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:cb:c7:ee:bc:fe:7f:41:81:ef:54:a1:0b:db:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Aug 23 07:01:51 2025 GMT
Not After : Aug 24 07:01:51 2025 GMT
Subject: CN=8e31b04fdd1aa053355515d262abc50f2ddb2389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6b:7f:45:fe:ae:3e:ba:72:ad:5c:90:4f:bf:
ba:dd:f4:93:fe:d5:3c:60:e8:5d:f7:f6:62:73:90:
6d:ac:2d:27:21:39:81:7f:96:16:6b:d9:32:1d:e5:
b7:e6:80:c0:06:25:de:3e:dd:88:3b:39:6a:fd:a2:
07:8a:56:2e:5d:76:0f:77:7f:87:12:5c:87:5e:4d:
e4:86:f9:f9:56:62:4d:f9:89:82:eb:c5:62:c8:88:
0d:5d:6d:95:e8:0c:b1:7c:c3:b9:83:38:fc:36:54:
a4:4b:c4:16:13:6e:10:10:7c:32:87:ee:8b:ab:27:
d7:b5:05:fc:ec:45:0f:d9:18:f6:dd:37:2a:94:93:
e8:38:af:e4:17:a5:7f:a2:a4:38:1e:99:90:e8:40:
4d:23:a3:73:00:39:50:3c:66:df:28:88:05:4a:50:
09:43:f9:ae:6c:e4:07:63:c4:b8:4f:80:4b:08:5d:
8f:e2:17:b1:24:ef:33:61:f2:2b:ec:b6:85:84:04:
84:b8:4a:ff:ce:9a:48:5a:13:79:b0:8c:cb:8a:2c:
f3:d8:45:60:9d:19:bf:1d:a0:ea:92:5a:40:b8:b3:
40:9b:4e:f9:d5:f4:7d:c9:92:72:69:ad:a9:75:f9:
af:dd:d5:ce:94:b4:a2:01:73:b5:f5:16:fd:9e:37:
b8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:31:B0:4F:DD:1A:A0:53:35:55:15:D2:62:AB:C5:0F:2D:DB:23:89
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:cf:dc:30:e6:f9:e6:1f:ea:f7:d1:67:61:85:d3:72:68:42:
6b:eb:52:5a:a1:b7:4c:34:4f:cf:9c:a3:8b:1a:71:a4:7f:34:
93:58:a5:07:84:b4:af:a1:8e:3d:6d:5f:d2:9c:01:27:82:c6:
e6:36:bb:84:2b:59:ec:6f:12:57:47:f1:c3:b9:a4:a7:fd:e3:
d9:b7:70:55:94:5c:6a:14:e9:f2:b9:f6:cc:28:c5:f7:d4:4f:
dc:4e:5a:79:84:81:03:30:28:db:72:1d:22:a3:a9:2b:21:28:
2c:33:b7:85:3c:6b:15:4e:be:62:f1:4d:2b:55:2c:f5:c4:9f:
78:b3:01:7d:35:66:da:de:95:73:a5:72:79:c9:11:ea:8b:e9:
43:22:88:d8:b6:ef:a1:4b:96:56:c2:57:bc:44:2e:f5:87:7d:
40:5d:1b:55:82:bb:35:ec:0f:03:6f:0e:f3:38:10:16:5a:9c:
38:28:7a:77:a7:72:fb:72:8b:61:a0:35:04:0f:cd:4b:ee:b4:
1b:bd:cf:3e:28:6e:89:57:ff:2f:ac:45:fc:73:77:70:7a:ec:
a4:32:21:00:04:39:89:6b:bf:da:0e:b9:1f:19:fc:a5:68:cf:
52:b3:fa:50:23:db:7d:c0:60:6b:b9:3a:e9:f6:c4:16:9c:13:
25:0a:55:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:22 2025 by rpki-client