Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
File: pkzfoBYCORcDN7pgk0ugbkW4zRE.mft (raw, json)
Hash identifier: fETDiGlcCTHAieNvjyV+/Gk9yabxrp/NZKYSjYwtZtk=
Subject key identifier: E4:71:36:79:B9:F7:DF:1A:E5:3F:48:CA:9E:74:D8:CC:C6:0E:88:B5
Authority key identifier: A6:4C:DF:A0:16:02:39:17:03:37:BA:60:93:4B:A0:6E:45:B8:CD:11
Certificate issuer: /CN=a64cdfa0160239170337ba60934ba06e45b8cd11
Certificate serial: 01987D1C20CA9012D332F7DFA4EBF805883A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
Manifest number: 1546
Signing time: Wed 06 Aug 2025 02:00:52 +0000
Manifest this update: Wed 06 Aug 2025 02:00:52 +0000
Manifest next update: Thu 07 Aug 2025 02:00:52 +0000
Files and hashes: 1: ZSYjjoE3tBto8BluSqunJgk7oHQ.roa (hash: iHTHcMwi7ntDSxANO5civkuDptItJ8z7l7j08RXxzHg=)
2: pkzfoBYCORcDN7pgk0ugbkW4zRE.crl (hash: RiG8myYMO+OVYqzf4f4JRRssx1OSCzEZCcdXzn0nQ64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:20:ca:90:12:d3:32:f7:df:a4:eb:f8:05:88:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a64cdfa0160239170337ba60934ba06e45b8cd11
Validity
Not Before: Aug 6 02:00:52 2025 GMT
Not After : Aug 7 02:00:52 2025 GMT
Subject: CN=e4713679b9f7df1ae53f48ca9e74d8ccc60e88b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:eb:34:47:e7:20:e3:15:7f:09:f5:43:da:a0:
19:a6:8f:a4:73:09:6c:4a:c9:88:aa:10:f0:34:17:
df:9a:f6:99:46:16:7d:12:56:6b:d8:a1:8f:98:b1:
90:e9:2a:21:83:b0:0d:c3:68:90:01:ac:3b:b8:98:
48:eb:be:b3:bc:77:f3:86:da:8d:c8:dc:25:d5:3c:
4a:97:f3:eb:d2:dd:a4:3b:e9:ae:60:10:5e:cf:83:
9d:f9:2e:45:65:46:8d:34:b9:bd:a9:e4:da:69:d3:
34:2b:b1:6f:8d:9b:c1:ff:4b:42:94:2e:36:6c:61:
9f:c8:3a:69:f3:0d:23:05:f5:25:20:75:a4:63:d0:
32:93:1a:68:e1:b9:0d:cf:68:9d:f5:99:a0:9c:b5:
a3:3e:bf:45:9f:33:43:bd:76:5e:e8:41:6b:ac:18:
af:70:a9:60:80:c1:a6:9e:1e:34:49:da:9a:c4:94:
fc:f5:d4:e4:d9:6c:d7:b9:58:cc:d3:a8:20:9e:7a:
cf:80:89:49:11:b5:63:a9:d7:43:3f:8b:7c:7b:81:
2f:cd:22:68:b2:65:de:18:cc:f6:95:47:a3:52:85:
93:dd:14:07:32:2b:69:92:42:51:0c:0b:fb:6c:ac:
18:9d:6c:6d:d7:b2:eb:e5:aa:1e:50:fc:d5:30:7d:
e4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:71:36:79:B9:F7:DF:1A:E5:3F:48:CA:9E:74:D8:CC:C6:0E:88:B5
X509v3 Authority Key Identifier:
keyid:A6:4C:DF:A0:16:02:39:17:03:37:BA:60:93:4B:A0:6E:45:B8:CD:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:a3:b0:2b:7b:3f:9f:62:19:ee:6c:81:98:c5:cb:41:c3:6f:
1a:7a:48:1f:b2:3a:d6:ce:27:c0:4f:7d:8f:4f:f8:44:40:c0:
cc:c1:58:72:2c:13:b3:59:7c:88:df:1d:c8:ba:43:9b:a6:34:
38:aa:4c:ae:9d:67:ea:02:21:46:84:38:12:2e:eb:d1:2a:45:
62:60:14:f1:87:ed:a6:30:6a:7a:fd:2b:2a:a9:f1:81:fd:99:
25:21:b1:30:65:1c:6f:ec:f4:9c:3c:62:3b:80:61:e9:9d:47:
70:fd:32:1e:0a:f3:19:5d:1b:74:fa:50:ab:fd:34:0e:54:f9:
8d:7c:0c:42:8f:e1:ac:1a:ad:af:82:00:bf:a2:92:38:73:0b:
f1:a6:52:a6:9f:52:aa:64:f7:7c:f9:4a:07:a1:95:f9:c0:70:
bc:52:70:23:26:de:2c:c5:be:1b:56:89:d2:3d:83:32:5d:65:
92:fb:1c:19:a2:aa:a7:78:1c:be:98:d0:eb:fe:11:70:f0:9a:
96:50:7b:89:c7:63:ef:80:eb:f8:21:0a:a6:11:14:0b:4f:f2:
c5:e6:48:34:c2:7c:80:cf:f1:1d:dc:8e:10:28:28:79:e0:0e:
1c:0d:7f:d8:d6:de:06:ff:8f:a8:c1:4a:24:29:1b:55:2b:fc:
fa:62:d2:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:26:04 2025 by rpki-client