Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: m6PYPG3ukKDDmPC7/+nIs7DxjrEvEimK/6HhtBG+KGc=
Subject key identifier: 69:59:50:71:63:89:79:8D:1B:BB:BB:4F:44:4C:54:EC:33:0D:08:2A
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 01976D069F0D32752288ACCBAFBEF6695D9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 04A4
Signing time: Sat 14 Jun 2025 06:00:39 +0000
Manifest this update: Sat 14 Jun 2025 06:00:39 +0000
Manifest next update: Sun 15 Jun 2025 06:00:39 +0000
Files and hashes: 1: 4boeBlk7o1BaTuZdEOVxwc-y71c.roa (hash: RGuBRtk99FPER/w90B0w3hwMlxFq4HdA7ruV2FfydxY=)
2: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: fwnl+fNJTXd1vRvb+Im/G7PBb38tsNgM9Gv6xJMnDGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:9f:0d:32:75:22:88:ac:cb:af:be:f6:69:5d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Jun 14 06:00:39 2025 GMT
Not After : Jun 15 06:00:39 2025 GMT
Subject: CN=695950716389798d1bbbbb4f444c54ec330d082a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cb:ae:a1:19:8c:b6:16:c8:95:dd:06:b0:b0:
d9:09:b3:f4:35:c0:29:91:10:ec:f6:29:b8:be:54:
f7:6c:d7:46:23:2d:6d:39:b6:7d:f4:3e:7d:38:b5:
99:f1:b0:dd:ca:9d:2a:25:97:e2:bb:ee:6a:a7:b9:
87:b6:ca:cc:bb:bc:9e:1f:44:6a:fa:b9:55:62:2e:
0f:64:f1:f1:a9:43:25:cc:15:e8:f4:fa:bd:8c:55:
14:42:29:f8:fe:e5:f8:d9:6c:c6:7c:1d:ce:57:90:
57:87:0e:0e:0e:6c:99:ea:2d:dd:8d:cf:80:25:a4:
4f:d4:8e:32:d3:76:61:48:61:f6:f4:44:bd:98:b4:
ae:22:63:ae:02:a4:f1:8f:46:c5:d6:76:96:c3:a3:
4b:8f:38:f8:d9:89:dc:90:5e:1c:64:7e:e6:52:48:
19:33:6f:9a:f0:a4:a6:d0:ac:42:70:2b:ac:07:6a:
3c:fb:85:fc:b6:5c:40:9c:56:10:8b:08:63:db:ee:
26:3b:ad:77:b1:d1:4a:85:31:ba:79:1b:18:d2:03:
0a:50:1d:45:86:29:a6:59:6b:51:c4:cb:a6:bc:c3:
7b:48:fc:72:ae:6f:b7:44:16:41:9e:45:cc:c1:73:
7c:97:eb:b6:81:2f:e9:7b:4e:a7:e9:43:73:f9:6a:
36:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:59:50:71:63:89:79:8D:1B:BB:BB:4F:44:4C:54:EC:33:0D:08:2A
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:ad:de:e9:a0:18:f8:4b:f7:f9:25:a7:ab:c8:52:5a:63:ad:
82:4c:8b:91:48:02:bb:f1:60:ec:90:4e:1f:f2:b9:89:e3:84:
c3:e7:85:12:9b:b3:ec:08:92:1d:51:d0:97:37:0f:ea:62:92:
27:fa:ce:e5:b8:36:e6:ea:4b:bd:ec:42:f7:df:0b:76:99:bc:
b5:44:6e:f4:96:fc:4b:34:f1:4a:30:7b:7e:23:28:40:a6:29:
6f:ff:2c:bc:5c:ac:04:b1:42:b6:21:81:b1:e3:09:69:21:d4:
cd:b4:44:e5:03:ee:db:7f:d5:31:30:76:dd:93:80:10:85:9b:
e6:c0:7a:7d:8c:7d:9a:83:ec:d9:54:4b:28:9c:57:0e:bf:a8:
35:7d:89:5a:a2:0e:c7:6d:6d:ad:3e:88:48:21:66:76:84:57:
84:30:cb:df:15:09:7d:2e:cd:cf:3a:91:99:a4:a6:5c:08:67:
da:49:80:4a:f4:68:69:8c:29:d7:41:77:33:da:09:c4:3f:e8:
02:b4:bd:e5:dc:d3:3b:ad:49:9a:45:a4:39:eb:e9:03:00:0c:
a6:74:50:98:6b:d3:03:d6:6b:aa:a3:0b:3e:f3:e9:4d:35:5f:
14:28:f0:a5:68:8e:0c:4e:fd:f9:47:83:67:10:0f:ea:ee:f9:
52:64:2d:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:13:15 2025 by rpki-client