Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
File: PYr-wXpBs52_aQE-yhZ732Oqhl0.mft (raw, json)
Hash identifier: 1zn2DIpsnmBALBbAEhQ4OKMv9HyDkQK8ioumqpxfb4I=
Subject key identifier: 42:24:DF:88:FD:65:11:5A:83:0B:4F:60:D5:F5:A4:21:BD:15:0E:B7
Authority key identifier: 3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D
Certificate issuer: /CN=3d8afec17a41b39dbf69013eca167bdf63aa865d
Certificate serial: 019A71B83969652470F89FFE84E975BAC699
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
Manifest number: 081E
Signing time: Tue 11 Nov 2025 07:01:30 +0000
Manifest this update: Tue 11 Nov 2025 07:01:30 +0000
Manifest next update: Wed 12 Nov 2025 07:01:30 +0000
Files and hashes: 1: PYr-wXpBs52_aQE-yhZ732Oqhl0.crl (hash: X1KJmzl3sZbp1Dwjy0wfowsVTzJSyS/6lpROv5Wd794=)
2: jrw3uqdkA6aKRrYyLdhJsdQJmwE.roa (hash: E/ICIdLuVq2VYN9ruBUIoxT9BQwq5xAlmJn8kVZHVXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:39:69:65:24:70:f8:9f:fe:84:e9:75:ba:c6:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8afec17a41b39dbf69013eca167bdf63aa865d
Validity
Not Before: Nov 11 07:01:30 2025 GMT
Not After : Nov 12 07:01:30 2025 GMT
Subject: CN=4224df88fd65115a830b4f60d5f5a421bd150eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f7:cb:fe:6c:33:32:62:59:61:5c:a6:0c:8a:
bb:a7:77:20:51:62:33:96:31:2e:65:de:f6:bb:6e:
a3:f1:f8:4c:e3:11:41:24:67:4e:0e:ea:c8:7e:89:
70:15:2a:4a:1b:4d:e8:bf:3d:56:b8:60:c5:5b:6a:
7e:4e:fb:35:fd:a0:ef:90:fc:6f:86:c1:17:f8:54:
88:94:f3:53:9c:4f:3f:44:53:9c:90:9c:a6:fa:c5:
ae:ad:25:e1:6e:52:3e:19:ed:bd:44:6f:54:59:70:
90:20:a2:18:44:a0:c2:77:2d:45:4a:39:10:ba:80:
c9:22:c1:73:79:ae:9b:dd:d8:21:b1:f2:8a:12:9f:
7a:8a:21:a9:49:97:ef:11:a4:a0:ba:74:cd:4f:c2:
9a:d4:04:df:9f:b9:51:83:c3:d3:ad:93:aa:f7:44:
93:ec:79:08:46:2b:83:e6:b5:e9:62:c8:c9:c4:a3:
57:41:3f:b3:89:78:56:96:2b:24:f7:1b:75:53:cb:
ee:aa:7a:b5:29:1a:fd:d4:ff:ae:ba:e6:fc:dc:6f:
58:a0:bd:fd:d8:da:48:54:a8:0b:33:27:06:b7:e0:
df:43:07:05:cb:b8:8b:7a:91:c6:33:b3:2c:ab:cb:
b2:f4:bb:c6:d0:d2:cf:05:be:e2:b6:4b:48:ef:0d:
af:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:24:DF:88:FD:65:11:5A:83:0B:4F:60:D5:F5:A4:21:BD:15:0E:B7
X509v3 Authority Key Identifier:
keyid:3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:26:65:91:72:bc:ab:bb:87:5f:1f:8b:a1:3b:92:af:e6:f2:
0e:03:54:74:03:7e:d6:16:5d:58:cc:c4:bb:db:f5:79:7f:cf:
31:24:80:4d:03:cf:dd:fe:ee:b7:d8:72:60:f1:fa:f3:8f:c9:
5c:be:f9:76:27:b2:05:3a:cc:92:3a:f7:51:a3:57:93:61:4b:
8d:60:17:4d:70:e1:be:ec:29:80:75:a3:c5:61:43:ad:0b:a9:
9e:35:d7:fb:06:82:45:14:16:af:a1:09:62:9e:e0:3b:da:d4:
60:6e:d4:6b:f3:e3:f6:f6:ac:ad:8a:db:36:aa:54:70:72:48:
e8:7d:eb:1e:88:73:47:21:72:10:11:8b:3e:ef:6d:88:cb:44:
d5:40:9e:b6:4a:6a:7d:24:69:13:65:00:59:a2:a0:fc:b6:d2:
37:77:e7:d0:97:80:12:8c:91:d1:e4:7f:ee:de:c2:7b:f6:9d:
7d:73:d6:30:93:1d:14:5e:91:ec:d5:32:fc:96:19:93:51:5a:
39:27:60:49:3d:62:29:e6:ba:09:f3:fe:5d:f6:ff:6d:0f:96:
56:5e:64:74:60:a7:f9:1d:ba:13:96:f9:48:f9:6a:8d:4b:ba:
2a:47:93:d2:4b:bf:d0:a7:90:97:71:7c:58:45:e0:68:58:89:
cb:55:d3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:09 2025 by rpki-client