Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft
File: pzfikBac_OajOKZrykXP5jXRVEY.mft (raw, json)
Hash identifier: SDsdNumMgl2HlRtdeshmg3Ri790KQR2vGOpzdZmAGr4=
Subject key identifier: 19:92:96:8E:BF:85:CB:62:4C:3B:0F:16:B6:1E:4C:6F:87:0B:C4:BE
Authority key identifier: A7:37:E2:90:16:9C:FC:E6:A3:38:A6:6B:CA:45:CF:E6:35:D1:54:46
Certificate issuer: /CN=a737e290169cfce6a338a66bca45cfe635d15446
Certificate serial: 01967C45184BEE2208B100F9B346ED616DB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft
Manifest number: 150F
Signing time: Mon 28 Apr 2025 12:00:24 +0000
Manifest this update: Mon 28 Apr 2025 12:00:24 +0000
Manifest next update: Tue 29 Apr 2025 12:00:24 +0000
Files and hashes: 1: pzfikBac_OajOKZrykXP5jXRVEY.crl (hash: zKSjQwd2IH5nOsvxdFlrhT+MvLCwJtzfrqtlHNNR78Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 12:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:18:4b:ee:22:08:b1:00:f9:b3:46:ed:61:6d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a737e290169cfce6a338a66bca45cfe635d15446
Validity
Not Before: Apr 28 12:00:24 2025 GMT
Not After : Apr 29 12:00:24 2025 GMT
Subject: CN=1992968ebf85cb624c3b0f16b61e4c6f870bc4be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ce:43:ac:77:0e:23:51:f3:a2:d0:85:0f:1f:
bc:37:18:fd:ea:2f:38:c6:82:10:5e:e2:d6:70:19:
14:7f:8d:e4:c2:34:f3:e5:ee:90:f9:da:bf:01:59:
ee:7b:56:b5:7b:62:26:b4:8a:ed:ae:0e:f4:71:75:
c3:fe:59:78:aa:e0:cf:73:e3:0f:fc:67:0d:d5:54:
61:76:53:67:25:4d:71:f8:c9:bd:fb:61:47:35:23:
e2:89:50:b3:30:c5:57:66:25:89:36:86:55:3f:b6:
ad:03:0d:ab:7e:ec:8d:3e:fb:56:6e:fa:ae:26:20:
b4:91:6e:1b:a7:f5:2f:a3:5f:73:7a:c5:d5:4f:75:
a4:33:a8:a7:f9:7f:69:32:50:70:65:0b:7f:8f:87:
d5:a1:e2:ff:69:48:8d:9f:60:e1:fc:d4:ea:22:06:
09:25:c7:6b:0b:89:05:94:65:1a:b5:b4:84:69:2a:
91:e3:90:37:38:9a:d6:f4:f0:d0:1c:3f:68:9d:8b:
6c:78:7b:5f:07:a3:b6:ae:1b:35:51:d8:63:31:4b:
69:58:7a:63:bd:20:8f:ae:e8:3d:58:d1:85:d8:69:
eb:ff:5a:3e:40:c1:f9:d1:42:21:df:36:ce:8d:0a:
24:f6:2c:3d:f3:d7:f3:0b:48:ac:0c:4e:61:4e:51:
b7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:92:96:8E:BF:85:CB:62:4C:3B:0F:16:B6:1E:4C:6F:87:0B:C4:BE
X509v3 Authority Key Identifier:
keyid:A7:37:E2:90:16:9C:FC:E6:A3:38:A6:6B:CA:45:CF:E6:35:D1:54:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:17:d5:a8:e8:8d:f9:bb:12:4a:34:2b:a9:ec:b3:32:24:70:
b6:d4:17:a8:11:1d:20:bb:f3:cc:e7:5c:f8:89:66:6f:d1:45:
c4:6c:dc:92:6c:a8:92:7f:33:d5:a9:00:e8:4c:ac:d0:9a:ce:
a0:5a:3a:bb:7b:46:dc:16:ad:4b:a0:e6:ed:93:c2:23:42:aa:
ca:a3:b4:72:5b:5a:e7:01:42:ea:63:3e:ef:ee:10:5c:fc:a6:
8f:f4:ff:b6:d8:fe:b1:a3:65:74:8b:33:3d:d1:34:3c:97:7b:
57:29:2c:2b:3a:e3:48:42:93:0a:f9:53:fc:23:09:40:2b:5b:
e7:1c:a5:53:f0:fa:31:3f:b0:95:85:77:c9:86:b6:10:e1:80:
c0:a5:f6:6c:b9:63:8e:79:8f:c4:99:1c:38:cd:73:43:c7:6d:
4b:dc:5d:15:c6:a8:32:39:31:4d:a6:fa:bd:95:b7:49:bc:5b:
25:0e:ff:c7:62:b2:5c:54:2c:cb:c5:c0:23:4b:3f:9a:4c:d4:
ea:9d:d4:50:af:23:08:69:72:d5:14:7a:52:10:c5:85:b9:ba:
81:d8:c8:81:55:ca:1c:a1:e0:8d:75:23:b1:18:17:de:7a:2b:
38:34:61:8e:33:27:fb:4e:73:91:fc:87:bd:80:9e:68:15:c7:
67:f8:1e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:34:26 2025 by rpki-client