Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: 4vL5fi2iSkNE+Mf2elCfpvGANNe9+lMQ3nP9Y06e8DM=
Subject key identifier: 7F:F4:BA:F1:47:35:ED:DB:7A:95:0A:57:B6:08:31:E7:47:2F:FE:C7
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 01988CFE56C57E0BAE67A7456D1B579D893C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 0539
Signing time: Sat 09 Aug 2025 04:02:15 +0000
Manifest this update: Sat 09 Aug 2025 04:02:15 +0000
Manifest next update: Sun 10 Aug 2025 04:02:15 +0000
Files and hashes: 1: 4boeBlk7o1BaTuZdEOVxwc-y71c.roa (hash: RGuBRtk99FPER/w90B0w3hwMlxFq4HdA7ruV2FfydxY=)
2: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: ZrU02VjQ9xRjw8aCwr1gKqnp3h8e7jU4u/w8xTf8lPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fe:56:c5:7e:0b:ae:67:a7:45:6d:1b:57:9d:89:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Aug 9 04:02:15 2025 GMT
Not After : Aug 10 04:02:15 2025 GMT
Subject: CN=7ff4baf14735eddb7a950a57b60831e7472ffec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ce:79:f1:21:e0:32:ea:c9:60:67:9b:45:d9:
93:27:a8:23:4d:89:4a:7b:14:6b:b2:c3:22:e8:ad:
d2:ca:4d:98:96:da:5e:3b:d9:01:d4:32:55:85:23:
c6:03:24:a0:7d:7f:41:6d:64:23:44:5b:c3:7e:5f:
a2:d1:67:24:8b:04:24:60:8f:8e:e0:a2:38:ee:bb:
3b:3d:ef:06:c6:4c:38:12:8e:0d:ae:a8:cb:36:e3:
f8:9e:37:71:93:b8:fc:26:b3:08:df:cb:e3:63:02:
97:b0:7a:98:bc:d5:d9:2d:20:3b:71:b0:c1:d9:ee:
13:74:93:c4:83:86:0a:a4:e0:22:ae:e4:3f:df:cf:
81:5d:bf:df:ee:a5:c9:22:fd:59:6a:5d:1b:90:cc:
fd:62:0f:f1:f2:04:f2:f0:8c:bd:cb:89:37:4a:ab:
12:e3:93:ce:64:33:3c:8a:ac:b3:b4:2d:9f:b7:76:
03:a9:70:66:4c:9a:50:47:0b:ab:a8:2a:51:d1:ef:
71:b8:b0:35:d7:66:71:d1:ee:cb:e3:50:ea:1f:ce:
2a:55:99:d3:1c:a2:22:6c:50:98:e1:96:8a:5b:64:
5c:c8:5e:2d:e0:cc:e2:ae:72:be:4a:e4:79:7b:c4:
3f:c7:09:43:25:2f:f0:75:77:53:dc:d7:73:73:31:
84:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F4:BA:F1:47:35:ED:DB:7A:95:0A:57:B6:08:31:E7:47:2F:FE:C7
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:72:07:da:bf:5b:89:24:b7:7f:24:79:40:53:98:37:21:ac:
bd:9a:fe:86:3b:66:ea:03:cf:40:5c:5a:78:47:fe:8b:9c:fc:
96:7c:9c:00:f0:dc:18:84:b4:60:38:52:c1:0a:fb:d7:6e:4d:
77:67:07:0d:85:f0:5e:19:a5:0e:ea:66:7f:20:a0:9e:13:ad:
f9:7b:d9:37:2b:3c:ee:01:b9:c6:af:19:00:d5:2d:7b:04:e6:
0c:bc:97:8e:4c:af:b1:a8:95:7c:ff:3f:a2:54:61:c2:b6:88:
e9:48:fa:ab:5b:45:87:13:af:e7:a0:62:f6:89:42:22:f7:28:
5e:b7:08:1e:1e:bc:3b:b0:af:78:e1:2a:20:7c:3d:9f:30:1a:
09:53:98:4e:5f:0a:18:f7:9e:5a:10:1f:ab:15:cc:4e:a6:28:
03:f2:51:ae:dc:2b:86:79:c2:a0:11:7e:d6:c8:29:7d:13:c9:
5e:e0:61:da:27:4b:c7:26:c7:0c:1f:32:05:58:0f:c6:1a:85:
1c:93:e0:52:1f:ba:01:e8:27:72:c3:7d:04:a6:d0:10:61:5b:
c1:f3:c9:96:fc:58:54:87:c6:23:0c:3b:24:97:28:50:68:73:
12:10:53:fd:d0:83:e0:8c:ed:d0:a6:eb:dd:b7:4b:94:c2:62:
68:58:e7:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:16:15 2025 by rpki-client