Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: MJVX8/G8PDRQIT2VzN+MiJnGu6lwqOKU8RNGU2jzG9c=
Subject key identifier: D9:ED:09:66:68:2E:68:4C:FC:40:F1:BD:6F:40:B4:EB:E5:2E:73:67
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 01984A09AEA07D03A1C714CA3E326BC4E1F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1009
Signing time: Sun 27 Jul 2025 04:00:05 +0000
Manifest this update: Sun 27 Jul 2025 04:00:05 +0000
Manifest next update: Mon 28 Jul 2025 04:00:05 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: FvAMETJ/4ooZ6gmAf6stxDvKLMNzAmL80I3jT2NEilo=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 04:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:09:ae:a0:7d:03:a1:c7:14:ca:3e:32:6b:c4:e1:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Jul 27 04:00:05 2025 GMT
Not After : Jul 28 04:00:05 2025 GMT
Subject: CN=d9ed0966682e684cfc40f1bd6f40b4ebe52e7367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:66:f1:03:1f:e6:42:8f:9a:6a:c3:eb:51:9e:
a2:cf:74:b1:64:e5:ec:a5:82:8e:01:b8:e3:e9:f1:
17:de:41:37:b2:cf:b2:ab:bc:3c:75:03:4c:b1:3d:
33:98:34:c0:a4:13:09:05:4c:61:c5:f2:9d:a1:a7:
87:d8:75:ce:72:75:a1:71:2d:69:60:3e:b2:3b:38:
1b:43:fd:12:7c:3a:ca:aa:c9:0e:2c:de:39:72:73:
18:44:b1:5e:f7:f5:9f:8b:fa:fd:ef:2c:88:3a:8e:
4b:09:85:c6:e2:fa:90:88:ab:fe:fc:c7:34:59:3a:
d9:f8:60:71:42:fa:d5:77:45:89:8a:08:2c:c2:5b:
92:b5:8c:a1:1b:bf:c3:34:14:f2:06:46:5e:6d:11:
b4:59:ba:21:c7:86:0f:8b:53:c4:10:95:73:33:4d:
19:fa:59:c4:43:09:f3:a4:ef:d2:4a:69:8a:7c:11:
d8:fa:b6:df:8b:ec:b9:f1:0d:a1:cb:40:bf:56:27:
23:fd:c2:0b:c4:38:9d:89:d8:0a:b8:8d:61:d9:4f:
89:d8:d7:f0:84:ff:1d:3e:cf:bf:f9:f0:bc:af:83:
3b:1a:d1:01:26:8c:12:48:c5:08:c6:72:65:90:00:
ad:c8:41:32:26:61:16:de:6b:f4:c7:c0:db:f3:c4:
89:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:ED:09:66:68:2E:68:4C:FC:40:F1:BD:6F:40:B4:EB:E5:2E:73:67
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e9:0b:81:99:10:18:1f:fb:ee:26:14:1c:52:75:ff:fc:99:
60:55:a6:6f:f1:e4:22:44:4e:a0:b3:4c:38:a4:67:60:ce:0f:
a4:8f:48:d5:63:47:84:b1:dd:7d:77:50:4c:4f:bb:45:6b:70:
ac:ff:8f:47:e3:65:76:15:b7:02:1e:61:3d:a5:68:74:04:ae:
b2:e4:d3:3d:8d:24:34:af:27:56:4f:eb:94:0d:ed:fe:3a:d1:
ce:e6:fb:cd:ec:2d:fb:6b:92:d5:9c:52:aa:a8:d9:7b:8c:bc:
19:34:aa:e0:d5:89:8a:12:5b:8e:69:09:18:7a:5b:94:fc:a1:
5a:aa:cb:12:84:98:0d:a9:88:d5:0e:e1:c9:dc:27:1c:08:4e:
88:fb:f0:2b:50:39:e1:27:92:99:59:c7:f6:84:e4:50:de:dc:
0d:95:8c:1e:af:20:c1:4d:ca:cd:8e:fc:fb:8a:a3:e5:63:d8:
f4:40:04:ec:8c:68:3c:7e:0d:0a:11:fe:eb:2f:f9:87:3d:3d:
f7:99:4b:05:05:9b:ca:98:89:e3:c7:5a:a4:88:0d:61:ca:4b:
df:2e:77:5b:7f:21:a5:ab:75:b5:83:be:af:07:1d:d4:69:e7:
7e:db:9a:14:5f:cd:3c:96:98:a4:ad:0b:6b:c9:b3:13:3c:a6:
49:a9:7f:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKCa6gfQOhxxTKPjJrxOHwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOGE1NTNlMDVmMDMxOWJmNDUyZmEyMDZjMTRjY2RhODcz
MDQ2NTQwHhcNMjUwNzI3MDQwMDA1WhcNMjUwNzI4MDQwMDA1WjAzMTEwLwYDVQQD
EyhkOWVkMDk2NjY4MmU2ODRjZmM0MGYxYmQ2ZjQwYjRlYmU1MmU3MzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWbxAx/mQo+aasPrUZ6iz3SxZOXs
pYKOAbjj6fEX3kE3ss+yq7w8dQNMsT0zmDTApBMJBUxhxfKdoaeH2HXOcnWhcS1p
YD6yOzgbQ/0SfDrKqskOLN45cnMYRLFe9/Wfi/r97yyIOo5LCYXG4vqQiKv+/Mc0
WTrZ+GBxQvrVd0WJiggswluStYyhG7/DNBTyBkZebRG0Wbohx4YPi1PEEJVzM00Z
+lnEQwnzpO/SSmmKfBHY+rbfi+y58Q2hy0C/Vicj/cILxDididgKuI1h2U+J2Nfw
hP8dPs+/+fC8r4M7GtEBJowSSMUIxnJlkACtyEEyJmEW3mv0x8Db88SJTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNntCWZoLmhM/EDxvW9AtOvlLnNnMB8GA1UdIwQY
MBaAFD2KVT4F8DGb9FL6IGwUzNqHMEZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1Mjct
MGZiNDgyM2Y1Yjg3LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1MjctMGZiNDgyM2Y1Yjg3
LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlekLgZkQ
GB/77iYUHFJ1//yZYFWmb/HkIkROoLNMOKRnYM4PpI9I1WNHhLHdfXdQTE+7RWtw
rP+PR+NldhW3Ah5hPaVodASusuTTPY0kNK8nVk/rlA3t/jrRzub7zewt+2uS1ZxS
qqjZe4y8GTSq4NWJihJbjmkJGHpblPyhWqrLEoSYDamI1Q7hydwnHAhOiPvwK1A5
4SeSmVnH9oTkUN7cDZWMHq8gwU3KzY78+4qj5WPY9EAE7IxoPH4NChH+6y/5hz09
95lLBQWbypiJ48dapIgNYcpL3y53W38hpat1tYO+rwcd1GnnftuaFF/NPJaYpK0L
a8mzEzymSal/MQ==
-----END CERTIFICATE-----
Generated at Sun Jul 27 13:34:36 2025 by rpki-client