Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: RBq5FJFDna0BYezJvIrlRSnVLzEB5MEGCoddhQBqRPw=
Subject key identifier: 86:EA:91:CC:74:D7:9D:D9:EB:E0:AA:94:D9:4B:6F:BD:8E:83:96:5A
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 0199C720F1C7FD33638F376E389FD3D5F16C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 08FA
Signing time: Thu 09 Oct 2025 04:00:48 +0000
Manifest this update: Thu 09 Oct 2025 04:00:48 +0000
Manifest next update: Fri 10 Oct 2025 04:00:48 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: HCSeZwM0BP58OJ7Ad7e5pD2Df/LJVq7UCWR9gzRH2FI=)
2: GMddGlwOUgIDge3f8eQvwQ1gYQ0.roa (hash: QAV4lTR4VFMsoAaetMGZqb1bPsXXa7Ze2H+bxF4CIzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 Oct 2025 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c7:20:f1:c7:fd:33:63:8f:37:6e:38:9f:d3:d5:f1:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Oct 9 04:00:48 2025 GMT
Not After : Oct 10 04:00:48 2025 GMT
Subject: CN=86ea91cc74d79dd9ebe0aa94d94b6fbd8e83965a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ca:c7:30:1e:ab:c0:1a:67:7f:63:8a:b7:77:
82:6d:38:49:fb:19:5f:60:ed:08:3d:14:ac:0c:58:
1f:e6:62:53:6c:1f:2d:e3:0c:be:c8:3e:8f:59:fa:
d2:0a:1b:30:9c:b9:4d:5c:81:37:b6:83:3d:d6:ef:
73:6c:d0:45:90:a9:e8:7d:2f:41:83:e6:da:23:01:
2c:e3:e0:3f:4a:ff:1c:81:9b:b4:a6:7f:0e:25:e0:
9b:3a:e1:04:17:8a:9a:94:6b:f4:dc:1f:c2:0a:de:
92:93:73:fd:38:1d:22:b2:a1:af:75:cd:42:26:88:
c3:05:22:8e:be:76:3f:12:3c:59:b6:e2:f6:f5:9e:
2a:9c:86:46:25:42:51:38:2a:91:42:0b:99:72:9c:
a6:38:bf:a7:7a:32:f6:8a:28:5e:c7:ed:e6:89:7c:
49:d8:ab:f5:69:e4:fa:dc:06:5e:b0:b7:f6:94:8d:
f1:a1:af:11:46:5f:c5:ec:d8:d9:fb:3b:52:40:27:
b6:32:4f:97:79:e2:76:6b:a4:39:a1:21:53:4c:8b:
99:53:bf:74:1b:34:98:c0:71:00:92:5c:d3:91:25:
49:85:21:d5:24:0e:68:aa:26:56:2e:46:b1:aa:ed:
55:4d:98:a9:f6:d3:56:ae:ca:28:4d:87:c3:ca:d9:
2a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EA:91:CC:74:D7:9D:D9:EB:E0:AA:94:D9:4B:6F:BD:8E:83:96:5A
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:f1:c1:78:fe:f5:d3:a7:eb:5b:b7:5f:aa:60:d4:41:e0:d3:
0b:62:c1:88:6c:6e:0f:ee:2f:be:61:da:65:35:3a:38:05:75:
dc:52:9d:df:c9:e8:92:49:86:bc:67:78:04:8d:f3:c9:ca:60:
22:f3:15:79:44:56:ac:5c:4e:98:09:b4:9a:d3:6b:db:45:e8:
80:22:48:1c:6b:f7:ff:a6:1f:23:fe:b1:63:c3:dc:83:14:13:
08:9f:de:a8:fe:c9:1c:42:e2:e7:e5:d0:e5:9d:79:00:3e:c7:
5e:6c:0f:88:c1:a1:d3:b5:46:98:3a:0d:9f:4a:18:07:5d:66:
af:09:b1:db:35:a4:a2:22:1c:5d:6d:65:06:0b:53:6b:83:7c:
45:ca:52:4e:8f:68:67:0b:f6:43:6d:0e:9d:9e:ab:1e:04:ef:
1b:18:6f:9d:4b:93:9b:6a:15:af:fb:14:8a:f8:86:35:76:ea:
fd:6e:3b:81:8f:27:cc:72:04:fa:94:85:72:ed:43:63:4e:3d:
c6:89:a1:75:e8:d2:a7:18:f8:34:f4:79:39:81:9c:6c:5a:bd:
4d:6e:8c:04:68:24:3c:b7:db:a2:19:2b:41:73:d1:e0:83:82:
56:1b:0a:a4:f3:62:23:3a:75:79:bb:e4:df:1a:f2:2c:6d:46:
d7:56:1a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 9 11:03:35 2025 by rpki-client