Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json)
Hash identifier: Bj9EgOMayhuCxTez+2OYhizcO17SCJzMMHaQ8IMcciU=
Subject key identifier: E0:49:98:40:D3:B5:56:9E:02:A2:B6:B0:EA:5F:52:42:78:2F:13:B3
Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614
Certificate serial: 0196D10729511AE439B00C28C31458F3BE74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
Manifest number: 07FA
Signing time: Wed 14 May 2025 23:00:29 +0000
Manifest this update: Wed 14 May 2025 23:00:29 +0000
Manifest next update: Thu 15 May 2025 23:00:29 +0000
Files and hashes: 1: jCdTYmvYMmAVCpwgaEf86kYug58.roa (hash: ztqwVKV63uIGzbrcGebHuh3wlQjH5xZyStSjcOzpGqU=)
2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: 8GkRyEo6E7gx+HLIRoXluA+ye8dGCxwddIX2vO0l4qM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:07:29:51:1a:e4:39:b0:0c:28:c3:14:58:f3:be:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614
Validity
Not Before: May 14 23:00:29 2025 GMT
Not After : May 15 23:00:29 2025 GMT
Subject: CN=e0499840d3b5569e02a2b6b0ea5f5242782f13b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f1:8a:f9:75:44:75:3a:fa:d8:15:a8:50:d7:
68:16:ce:61:7e:27:b9:c0:96:07:09:3a:b8:d0:66:
b9:f1:5d:54:c8:0a:fa:48:db:6e:a6:32:05:0f:95:
b9:32:63:20:9f:dd:6d:83:67:45:57:50:c6:ba:4e:
0d:bf:f4:ec:b0:9b:bf:1e:a4:be:90:6b:07:62:6b:
4e:dc:7c:fc:e1:2d:4f:6a:97:8d:72:dd:35:98:97:
49:2a:bc:8c:f5:a8:c8:ab:c7:a4:21:68:b4:32:2e:
8d:92:57:01:25:d5:9e:db:8b:ab:aa:45:69:98:f0:
03:22:9d:fa:d7:64:1d:53:f0:58:79:7c:0f:1c:4b:
97:13:39:94:f2:8c:1e:63:95:b7:62:df:9f:87:9e:
4e:e7:e6:dd:bf:9b:8c:76:a1:47:eb:5d:44:c0:4c:
f0:a5:ec:6e:7d:3b:38:56:1b:46:35:36:82:aa:5c:
d7:72:76:ae:78:0f:b2:68:1e:23:57:d9:3b:42:3c:
b7:eb:21:21:95:fb:16:fd:44:a4:a6:ff:61:8d:c6:
2f:b0:ba:6d:b2:54:20:ff:9f:4f:90:d2:55:f3:02:
db:1f:9e:0d:f2:7c:d3:ad:51:2c:55:55:61:cd:47:
c6:a6:a6:e1:31:c8:9e:bb:a5:8f:8e:ad:db:5f:ad:
f6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:49:98:40:D3:B5:56:9E:02:A2:B6:B0:EA:5F:52:42:78:2F:13:B3
X509v3 Authority Key Identifier:
keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:eb:9e:a4:0a:9a:0b:d9:37:99:0c:b1:2d:c4:40:1a:2d:f4:
d4:ec:8f:d2:ed:ba:0d:a0:38:81:fe:8d:00:82:df:bb:ba:0e:
64:5f:a9:f0:e1:dd:13:96:40:22:35:4a:3a:6e:94:77:5c:b6:
92:52:38:d8:19:c0:50:44:18:26:52:c4:62:dc:18:c4:c2:cc:
a2:11:03:2b:e1:a8:af:9a:d0:e6:43:07:27:7f:1d:84:73:46:
21:da:f5:7a:54:94:bc:9f:1d:8c:31:6a:a2:94:0e:11:e1:05:
08:b8:93:f7:b0:96:32:8c:40:5d:ab:63:30:ae:91:c0:b8:bb:
9d:16:e9:61:36:9f:6b:66:bd:01:19:ba:c7:2c:e0:4c:9c:36:
b4:38:58:5a:64:79:a0:14:19:73:48:5a:22:01:37:ff:93:a9:
30:12:d5:18:0e:43:c6:f7:5b:19:f8:88:d0:77:b8:88:49:e8:
38:9c:90:79:a6:91:78:a6:1d:ee:1c:fa:ba:1e:b3:07:2b:12:
98:4e:87:58:33:a6:8e:fb:02:3d:d4:5f:48:76:c6:03:f0:4b:
7e:7d:50:7a:94:c5:fc:70:c0:ae:9e:b1:ef:79:c8:75:3a:90:
b4:60:cd:75:09:0c:3e:5f:e0:d8:a6:a1:1a:8e:15:cb:54:58:
54:98:b0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 07:25:45 2025 by rpki-client