Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: fTn7edVn43oDzaJMRYmgDSXR/INgy/k5LH4q/iB5RCA=
Subject key identifier: A7:2F:39:1F:1A:B0:7C:74:1F:BA:05:E3:89:80:87:40:80:67:42:E4
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 019A4D3D249497B2340E0E8AE8810403DD4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 0622
Signing time: Tue 04 Nov 2025 05:00:43 +0000
Manifest this update: Tue 04 Nov 2025 05:00:43 +0000
Manifest next update: Wed 05 Nov 2025 05:00:43 +0000
Files and hashes: 1: 3AeTUsXDpEDl-IBh12u95RTXsxA.roa (hash: xYJhYHzSW71ucg3KnoWi7bZYFU9f0FjUJ5BTtmWX8vQ=)
2: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: GyncjoG1MRUBGxqgkk93S/zc2twlgwh07XHukV2QNR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:24:94:97:b2:34:0e:0e:8a:e8:81:04:03:dd:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Nov 4 05:00:43 2025 GMT
Not After : Nov 5 05:00:43 2025 GMT
Subject: CN=a72f391f1ab07c741fba05e389808740806742e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5f:a4:47:28:b4:d2:5a:19:3e:9a:6d:8e:39:
8f:bb:6c:8d:12:7e:f5:12:e0:6f:65:dd:f0:e3:ab:
1c:10:f6:c2:f1:56:4e:6c:06:1d:5b:94:c4:da:35:
6c:be:96:4d:6e:ab:c6:f6:83:92:0a:d6:e7:f2:41:
2a:7f:d8:04:ba:16:d6:f3:d7:d0:56:50:63:33:f1:
d3:a1:33:c4:44:a2:e0:5b:eb:6a:19:60:7b:18:99:
ce:33:20:ef:13:89:bb:77:e1:9a:15:6f:20:de:05:
0f:e3:3b:e6:c2:fa:70:4b:83:bd:7f:64:cb:1d:43:
42:d3:52:86:0c:0b:33:32:5f:58:ad:27:b8:b0:9b:
cf:30:32:4d:2f:25:79:c6:ed:12:14:41:91:10:24:
3c:b5:e6:a0:de:29:55:aa:8a:6e:4d:54:fe:97:f1:
31:f3:0c:20:d0:6c:06:1a:34:0c:ee:1e:68:9f:26:
7e:70:c4:48:65:83:5f:ec:a0:51:94:8b:c0:1a:28:
78:83:6f:87:b2:34:c7:0c:91:14:4e:76:66:aa:9f:
89:a2:a5:4a:2a:b3:a7:b7:2f:a3:18:e2:62:3d:09:
f6:5a:90:bf:79:fa:e4:5b:69:98:c0:20:c0:00:f2:
db:bb:af:36:85:74:79:ee:a6:78:97:b4:7e:76:bc:
ba:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2F:39:1F:1A:B0:7C:74:1F:BA:05:E3:89:80:87:40:80:67:42:E4
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:13:29:92:04:04:95:ad:92:77:a0:fd:0b:5c:12:12:d7:7a:
f9:6c:2a:27:21:df:3d:fd:87:de:9a:77:d1:bf:c6:b7:e3:d0:
e6:58:11:9b:03:f9:48:59:c0:f4:e3:8c:a4:a4:27:4c:e9:28:
fb:53:01:be:0b:27:eb:8c:05:f5:e9:d7:06:86:48:10:2c:34:
38:52:8d:df:b2:1b:5d:78:8b:2c:33:b7:9b:7b:d2:f6:63:8c:
a1:b3:2d:c8:e1:b2:b7:ba:f6:66:5a:66:ed:eb:af:1f:57:9a:
f4:2f:b7:b0:5d:af:ac:9d:f7:74:43:86:5b:70:4d:42:2c:fc:
0b:c6:a4:01:96:cf:29:0a:9f:a5:28:8b:d4:2b:9d:39:65:d6:
32:3f:87:1a:d0:40:f1:87:bc:5c:f8:11:85:5e:42:2e:d9:6e:
0b:75:81:d1:b8:8c:d5:e9:59:11:fe:29:e7:a1:1c:b3:e3:84:
b6:30:28:8b:6d:79:47:fa:32:96:77:11:ce:49:e7:62:92:b1:
44:17:a2:6a:11:1c:f3:ba:c0:33:67:03:d7:45:80:92:b6:1a:
e1:b6:2f:8d:6d:ee:c4:c5:4e:83:de:55:42:93:a9:ee:cf:c5:
90:e8:2e:e2:16:07:20:4d:fb:80:03:64:71:3b:de:c8:ec:cb:
ce:8a:3f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:09 2025 by rpki-client