Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
File: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft (raw, json)
Hash identifier: gzMlzvBHr7ISfGYdbIp7tv+osE573f/+LX/BzNziXzg=
Subject key identifier: 7C:D5:74:11:0D:30:6E:9D:3B:8F:96:95:71:11:51:A9:7C:74:C1:3F
Authority key identifier: 3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
Certificate issuer: /CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Certificate serial: 01974BFB67BBE4663BB76113597A616C7666
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
Manifest number: 0845
Signing time: Sat 07 Jun 2025 20:00:56 +0000
Manifest this update: Sat 07 Jun 2025 20:00:56 +0000
Manifest next update: Sun 08 Jun 2025 20:00:56 +0000
Files and hashes: 1: JD1ZF1XWLuEfY_xZK_HiSB-W5Sc.roa (hash: tU/SgRvLeOcLILG1M49HHg6nzxCmwlwyRSULttNgB8k=)
2: PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl (hash: 6WZaEg8No347jF3uB5nzK89XzpN6n0VDRIIoH2sQ0ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:67:bb:e4:66:3b:b7:61:13:59:7a:61:6c:76:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d897bd8c6df1cb71410fe194bed739a2f8a6773
Validity
Not Before: Jun 7 20:00:56 2025 GMT
Not After : Jun 8 20:00:56 2025 GMT
Subject: CN=7cd574110d306e9d3b8f9695711151a97c74c13f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bd:69:84:42:87:cb:65:ee:db:f9:ee:ea:35:
65:07:05:35:4b:94:77:2f:b0:fe:a8:89:3f:6f:07:
b2:5b:0d:8c:4c:58:26:00:c0:22:81:a5:df:8f:c8:
c5:48:86:95:3c:87:e1:a7:16:d8:17:c3:12:e5:49:
29:91:06:5d:bb:62:06:ae:bc:0a:e2:3d:26:93:5d:
52:00:d1:e4:35:dd:fe:d0:60:c6:aa:0e:db:3f:b0:
50:6c:87:f3:1c:87:cd:8c:21:48:fa:77:1a:05:d0:
0e:31:e6:59:5b:0c:a6:5b:5f:82:2f:d8:68:a1:be:
44:1d:12:1f:bb:9e:36:04:a6:52:64:88:30:c8:e8:
b5:38:2b:98:b6:26:f2:ff:7c:41:82:41:f6:57:67:
ed:7f:e0:90:f2:5f:e3:17:c6:e4:d5:18:ab:fe:9e:
50:63:3b:bc:75:40:61:a7:e4:6f:3a:27:2d:e6:91:
3f:df:81:c9:52:26:19:63:cc:0a:a9:47:85:25:c8:
c6:1a:04:41:9a:b7:b5:eb:dc:a5:a8:7b:91:1a:ac:
cc:d8:55:90:01:e2:8f:dc:26:0b:9e:c5:45:ec:2d:
01:e3:f5:28:dc:3d:14:70:ea:e5:3a:a2:c4:a8:13:
b2:5f:04:ff:d3:fa:dc:90:89:1e:18:d5:84:c0:01:
49:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D5:74:11:0D:30:6E:9D:3B:8F:96:95:71:11:51:A9:7C:74:C1:3F
X509v3 Authority Key Identifier:
keyid:3D:89:7B:D8:C6:DF:1C:B7:14:10:FE:19:4B:ED:73:9A:2F:8A:67:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5471f8-c938-40cc-b139-f9f92150cd39/1/PYl72MbfHLcUEP4ZS-1zmi-KZ3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:d8:da:5d:1b:5c:6b:d3:20:cc:98:49:25:35:f6:90:44:5d:
ec:3e:47:30:c2:90:3b:1d:8c:55:d2:53:e2:a0:f5:26:d5:4e:
87:f1:90:e5:e6:6a:81:57:69:59:3f:ed:24:9d:cb:89:3a:b6:
77:15:36:ba:d9:3a:da:f1:9c:55:ee:f5:98:21:29:6b:2b:79:
7c:6c:02:46:12:d3:7f:9c:a5:5a:41:8f:02:7f:d1:29:71:61:
b6:58:2f:4b:f3:b5:b4:53:4c:dd:35:8d:fc:35:c5:ae:46:82:
bc:34:76:e3:0a:28:b5:19:e3:ef:16:4a:de:8d:62:62:95:5b:
99:75:4b:0b:5b:14:38:79:34:ed:0f:bd:a6:44:aa:ff:c0:1c:
80:47:49:da:47:fd:d2:c0:11:7e:cb:eb:9a:42:c7:2a:70:8c:
5b:87:14:6d:92:95:15:8a:99:a9:fb:f5:b4:2d:42:cb:eb:16:
82:1c:8d:fb:4c:7a:65:c8:cd:0a:f5:92:af:88:05:9a:66:56:
41:07:48:00:ec:fd:e8:d5:fb:1f:07:db:9b:07:eb:9c:c1:d3:
2e:63:ef:18:6f:eb:0e:de:02:76:f5:2a:aa:99:ac:e6:ab:8a:
b2:61:dc:46:9c:b5:db:77:02:90:2e:f6:48:30:01:3d:f1:2a:
61:56:e8:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:25:26 2025 by rpki-client