Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
File: pkzfoBYCORcDN7pgk0ugbkW4zRE.mft (raw, json)
Hash identifier: G0itykQ8CQ5mqozsXJYdtY/JdGoWr3OzMYj5dnF7tLE=
Subject key identifier: A7:F7:86:B6:C6:4B:EC:BD:39:25:84:11:12:41:0B:55:07:7B:3B:87
Authority key identifier: A6:4C:DF:A0:16:02:39:17:03:37:BA:60:93:4B:A0:6E:45:B8:CD:11
Certificate issuer: /CN=a64cdfa0160239170337ba60934ba06e45b8cd11
Certificate serial: 019768F2B93FE828E3C30C20DE829D790543
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
Manifest number: 14B7
Signing time: Fri 13 Jun 2025 11:00:26 +0000
Manifest this update: Fri 13 Jun 2025 11:00:26 +0000
Manifest next update: Sat 14 Jun 2025 11:00:26 +0000
Files and hashes: 1: ZSYjjoE3tBto8BluSqunJgk7oHQ.roa (hash: iHTHcMwi7ntDSxANO5civkuDptItJ8z7l7j08RXxzHg=)
2: pkzfoBYCORcDN7pgk0ugbkW4zRE.crl (hash: gWNyqSrIJJQfm7jwVppX/RxI6rFwTZgLmCVWnkCZDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:b9:3f:e8:28:e3:c3:0c:20:de:82:9d:79:05:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a64cdfa0160239170337ba60934ba06e45b8cd11
Validity
Not Before: Jun 13 11:00:26 2025 GMT
Not After : Jun 14 11:00:26 2025 GMT
Subject: CN=a7f786b6c64becbd3925841112410b55077b3b87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7e:3f:fe:81:82:eb:1a:d0:11:79:2a:cd:e3:
48:9a:72:a8:88:5d:c8:d0:b6:c3:47:9e:3b:dc:1c:
45:de:50:cd:ba:a8:11:5c:78:f2:8a:a0:61:85:3a:
c5:a4:e4:b0:42:fd:cf:4e:7e:e7:59:2e:0e:24:30:
dd:fc:a0:f9:ab:9a:2b:44:89:99:95:fa:ce:a7:d9:
e2:63:16:b6:b7:0c:ed:24:30:ed:88:ca:89:7b:be:
a9:a0:36:11:c2:ee:33:8b:1e:60:68:0e:52:de:ab:
79:d9:de:e7:14:fe:ee:85:ab:65:b7:b0:60:57:7d:
1a:a5:ad:85:23:b8:0b:01:70:58:5d:28:73:2a:de:
e3:01:f3:f5:28:b2:23:75:5c:7a:4e:b5:a6:be:64:
0c:13:d5:7e:a4:c3:9b:d1:59:49:a0:4f:e6:c2:08:
5a:8f:6a:92:c2:82:6c:80:ff:1f:4a:8b:d8:52:6a:
31:3e:17:e3:67:07:12:3e:2d:7e:03:16:b4:eb:9a:
bf:58:bf:15:8a:e6:36:57:bb:2c:e9:70:f3:db:e4:
b4:52:e6:13:f4:bf:04:ec:0d:38:62:91:d5:bb:4d:
c2:4a:46:9e:fc:c9:f5:11:1c:21:4f:ae:f7:74:c5:
d8:70:13:32:35:4b:14:84:af:7c:81:b1:c8:59:92:
6c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F7:86:B6:C6:4B:EC:BD:39:25:84:11:12:41:0B:55:07:7B:3B:87
X509v3 Authority Key Identifier:
keyid:A6:4C:DF:A0:16:02:39:17:03:37:BA:60:93:4B:A0:6E:45:B8:CD:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkzfoBYCORcDN7pgk0ugbkW4zRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/75439d-fb06-4b63-84a3-8bd3c6c704dc/1/pkzfoBYCORcDN7pgk0ugbkW4zRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f4:be:a8:ff:b2:76:db:d5:bb:47:ef:7d:53:ce:6c:1d:43:
16:60:71:eb:03:d6:6b:cf:0d:02:6c:c4:12:a0:60:01:5c:d6:
5d:ca:96:eb:c5:bf:42:7c:e4:e9:d9:e2:43:1e:aa:b4:7d:c8:
c1:f7:8e:32:4e:9f:40:3f:2b:c2:88:86:a1:a3:f9:72:ec:15:
6c:c8:c1:9f:17:70:d7:f5:2a:8f:29:6b:cf:1f:ae:55:01:b2:
b6:0b:0d:6f:91:0e:58:47:06:22:a6:f3:ba:2f:d1:73:d2:a1:
fa:04:ec:20:84:ea:91:48:c0:30:0d:cf:90:80:2f:0c:06:19:
1f:8e:a9:aa:dc:72:df:14:01:03:50:1e:34:15:f6:96:e3:c6:
a6:f9:a8:fa:12:5d:5a:72:66:e7:8a:ae:09:1b:23:4c:f1:f9:
cf:dc:52:77:86:06:2e:76:2b:1e:de:27:37:f0:16:da:6e:1e:
5d:f4:56:64:d2:60:16:ec:48:fe:51:47:21:25:1d:60:a4:fb:
42:14:d5:66:95:36:e6:92:f2:3e:a4:e5:72:66:c8:e7:68:b2:
8e:b2:fc:86:b2:a2:f6:2c:24:ce:55:df:0a:60:e7:f3:43:eb:
03:6e:c2:2a:09:a2:4b:d3:a1:07:96:c9:8d:8b:e2:99:22:ef:
87:25:a9:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdo8rk/6Cjjwwwg3oKdeQVDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NGNkZmEwMTYwMjM5MTcwMzM3YmE2MDkzNGJhMDZlNDVi
OGNkMTEwHhcNMjUwNjEzMTEwMDI2WhcNMjUwNjE0MTEwMDI2WjAzMTEwLwYDVQQD
EyhhN2Y3ODZiNmM2NGJlY2JkMzkyNTg0MTExMjQxMGI1NTA3N2IzYjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAon4//oGC6xrQEXkqzeNImnKoiF3I
0LbDR5473BxF3lDNuqgRXHjyiqBhhTrFpOSwQv3PTn7nWS4OJDDd/KD5q5orRImZ
lfrOp9niYxa2twztJDDtiMqJe76poDYRwu4zix5gaA5S3qt52d7nFP7uhatlt7Bg
V30apa2FI7gLAXBYXShzKt7jAfP1KLIjdVx6TrWmvmQME9V+pMOb0VlJoE/mwgha
j2qSwoJsgP8fSovYUmoxPhfjZwcSPi1+Axa065q/WL8ViuY2V7ss6XDz2+S0UuYT
9L8E7A04YpHVu03CSkae/Mn1ERwhT673dMXYcBMyNUsUhK98gbHIWZJsEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKf3hrbGS+y9OSWEERJBC1UHezuHMB8GA1UdIwQY
MBaAFKZM36AWAjkXAze6YJNLoG5FuM0RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGt6Zm9CWUNPUmNETjdwZ2swdWdia1c0elJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC83NTQzOWQtZmIwNi00YjYzLTg0YTMt
OGJkM2M2YzcwNGRjLzEvcGt6Zm9CWUNPUmNETjdwZ2swdWdia1c0elJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC83NTQzOWQtZmIwNi00YjYzLTg0YTMtOGJkM2M2YzcwNGRj
LzEvcGt6Zm9CWUNPUmNETjdwZ2swdWdia1c0elJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARvS+qP+y
dtvVu0fvfVPObB1DFmBx6wPWa88NAmzEEqBgAVzWXcqW68W/Qnzk6dniQx6qtH3I
wfeOMk6fQD8rwoiGoaP5cuwVbMjBnxdw1/Uqjylrzx+uVQGytgsNb5EOWEcGIqbz
ui/Rc9Kh+gTsIITqkUjAMA3PkIAvDAYZH46pqtxy3xQBA1AeNBX2luPGpvmo+hJd
WnJm54quCRsjTPH5z9xSd4YGLnYrHt4nN/AW2m4eXfRWZNJgFuxI/lFHISUdYKT7
QhTVZpU25pLyPqTlcmbI52iyjrL8hrKi9iwkzlXfCmDn80PrA27CKgmiS9OhB5bJ
jYvimSLvhyWp0w==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:31:24 2025 by rpki-client