Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
File: PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft (raw, json)
Hash identifier: dYl8NEwRG/ZBVz+H+4Qa+0LPh8pv/mN55BDbCfeXGP8=
Subject key identifier: 34:C7:A0:2D:9A:4C:74:53:66:C3:E2:75:37:A6:D4:BD:9B:D4:22:8A
Authority key identifier: 3F:21:77:A3:E8:6C:83:9C:FD:19:3D:BB:46:ED:A8:08:7D:82:14:1A
Certificate issuer: /CN=3f2177a3e86c839cfd193dbb46eda8087d82141a
Certificate serial: 019921B208C239E2B71FF77CD9F107EAF174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PyF3o-hsg5z9GT27Ru2oCH2CFBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
Manifest number: 135F
Signing time: Sun 07 Sep 2025 01:02:19 +0000
Manifest this update: Sun 07 Sep 2025 01:02:19 +0000
Manifest next update: Mon 08 Sep 2025 01:02:19 +0000
Files and hashes: 1: PyF3o-hsg5z9GT27Ru2oCH2CFBo.crl (hash: w89HVryQdqT0s8WALkvyGjze/OGxTYL5JFr1YOwdm8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
rsync://rpki.ripe.net/repository/DEFAULT/PyF3o-hsg5z9GT27Ru2oCH2CFBo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:08:c2:39:e2:b7:1f:f7:7c:d9:f1:07:ea:f1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f2177a3e86c839cfd193dbb46eda8087d82141a
Validity
Not Before: Sep 7 01:02:19 2025 GMT
Not After : Sep 8 01:02:19 2025 GMT
Subject: CN=34c7a02d9a4c745366c3e27537a6d4bd9bd4228a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:7c:88:4c:70:3a:a1:9c:3a:59:ec:44:a9:
3a:52:6b:d7:96:c6:7b:a5:6a:8c:dc:4d:c0:21:34:
b8:10:02:c9:8d:c5:9b:27:17:b3:85:cf:91:58:de:
cb:fb:48:01:1a:2f:20:d2:8f:c3:c4:55:03:c7:db:
b5:ab:0d:c5:a0:96:49:75:c2:17:f3:06:1b:61:26:
da:d3:94:d3:d7:8a:fd:dc:ec:c5:bf:7c:36:e1:70:
c9:2d:22:6d:6d:6e:7d:55:6e:54:11:3d:d2:84:57:
76:cf:09:f6:a1:1b:17:e1:da:13:98:c5:de:93:ef:
39:fe:6d:33:d1:4a:73:47:e7:55:2d:a7:71:a7:31:
6a:16:cc:52:2d:34:ef:2e:e2:bc:eb:18:84:75:04:
d6:df:df:28:27:52:11:96:6d:db:9d:69:a8:58:db:
86:49:1d:02:f9:dd:c7:aa:07:41:68:2d:fd:dd:1a:
f4:7d:7d:87:c8:db:9b:ed:d5:61:54:cf:c4:b1:51:
29:c4:ed:80:92:85:d0:65:8f:4a:53:54:46:66:8a:
4a:16:6d:b5:13:42:85:57:41:9e:ef:6b:72:b3:02:
30:e3:3c:8c:8f:fd:2a:7a:65:ba:83:bb:9c:e4:75:
4c:67:f8:90:2f:76:2b:1d:a8:bf:55:eb:d5:68:12:
39:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C7:A0:2D:9A:4C:74:53:66:C3:E2:75:37:A6:D4:BD:9B:D4:22:8A
X509v3 Authority Key Identifier:
keyid:3F:21:77:A3:E8:6C:83:9C:FD:19:3D:BB:46:ED:A8:08:7D:82:14:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PyF3o-hsg5z9GT27Ru2oCH2CFBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2cf926-810e-411e-bd5b-161e513ebdc2/1/PyF3o-hsg5z9GT27Ru2oCH2CFBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f1:d6:e3:3a:12:90:38:1b:ed:f2:bc:d9:4d:d6:9c:b4:d4:
b3:95:a3:84:63:35:04:3b:32:22:59:ed:73:31:85:3c:50:a6:
3a:86:4a:38:b3:36:60:a7:43:81:1a:ea:75:b0:86:12:2c:7c:
57:e4:9c:bb:c6:df:f7:5f:13:6d:31:4c:2f:a6:00:17:5d:6f:
fc:34:fc:9c:52:dd:51:f2:60:43:22:f9:e0:a7:66:b5:5f:45:
49:0f:a8:8e:72:ce:69:b1:5f:07:38:d2:92:18:bd:f6:59:91:
71:07:7b:7d:82:01:c9:18:75:03:16:55:98:41:01:8c:9d:76:
4c:ec:ac:95:a8:b5:a5:ea:60:54:6b:b2:73:ea:f5:52:1d:e7:
78:4b:07:98:bb:f9:e3:a3:6d:f5:84:92:fb:48:4f:ad:8b:21:
d5:f4:ea:16:ce:b3:e6:36:75:d0:6e:88:71:a0:83:c1:0d:fa:
2d:71:8b:58:81:ad:40:30:a1:91:c1:25:76:29:06:8b:78:58:
41:36:70:eb:21:5b:0a:17:58:2b:00:a1:85:b4:d5:9a:64:3f:
aa:1c:12:e6:3d:cd:6c:d6:53:53:85:ed:5a:29:9d:3a:f1:33:
15:b7:61:0b:f5:c0:ef:74:c5:62:c2:2b:50:5c:2f:e7:b4:c6:
79:5e:fd:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:27 2025 by rpki-client