Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json)
Hash identifier: u969AY5Z1MVml1I8oR4MyBLIAubrepZ1GJ0Cu6TUSJA=
Subject key identifier: 9D:F0:EC:C5:26:8C:DE:32:79:C8:5E:FD:B8:92:8B:80:46:BA:83:8C
Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614
Certificate serial: 0198D4A7B3EF8808C575A572CDFBDE10CB53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
Manifest number: 0905
Signing time: Sat 23 Aug 2025 02:00:17 +0000
Manifest this update: Sat 23 Aug 2025 02:00:17 +0000
Manifest next update: Sun 24 Aug 2025 02:00:17 +0000
Files and hashes: 1: jCdTYmvYMmAVCpwgaEf86kYug58.roa (hash: ztqwVKV63uIGzbrcGebHuh3wlQjH5xZyStSjcOzpGqU=)
2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: 3z4HN5TgnALAwAKdjQ1bw4jeM3SGmeUKLJBzCkY/7hg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:b3:ef:88:08:c5:75:a5:72:cd:fb:de:10:cb:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614
Validity
Not Before: Aug 23 02:00:17 2025 GMT
Not After : Aug 24 02:00:17 2025 GMT
Subject: CN=9df0ecc5268cde3279c85efdb8928b8046ba838c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bb:d8:f9:dd:9b:d3:4f:d5:c0:a6:be:26:b4:
46:78:ae:e5:54:07:44:22:f8:4e:a7:32:30:7d:2e:
cf:4a:f3:b1:0e:bc:d8:18:93:20:2c:94:41:83:48:
b0:6c:67:2d:a5:50:fe:83:ba:08:99:63:e2:58:75:
d7:a7:67:ea:04:66:00:9a:9a:39:2a:00:e4:36:d0:
8e:c4:e1:ea:aa:bd:8e:4a:3c:07:eb:82:d8:56:ab:
e0:f4:01:40:41:ac:3c:1f:e5:ad:85:e7:46:7e:8f:
7c:39:8d:82:a2:af:f9:ba:1b:16:59:89:f5:c3:ac:
d0:07:45:aa:23:5e:4d:03:dc:5b:54:0b:f0:c2:60:
73:95:67:2d:c5:2b:c0:b9:a3:cd:f5:c3:61:09:1b:
3d:a1:ee:89:6e:bd:87:dc:3c:62:fe:24:b4:e3:e6:
9b:e1:d0:76:c2:a6:f8:47:7d:7c:ee:ad:e3:7c:b2:
d3:a3:26:b8:7e:74:02:b3:4b:92:3c:3a:83:40:8a:
4f:1b:47:49:63:41:56:8c:6e:72:26:93:10:4b:cb:
61:f8:3b:c2:80:99:52:c3:0e:ac:06:02:a8:4c:f8:
df:97:2c:e7:c3:29:2d:56:cd:54:e4:74:65:b7:ea:
e2:f7:eb:25:b0:74:12:48:d5:7b:ec:7d:a2:39:d9:
db:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F0:EC:C5:26:8C:DE:32:79:C8:5E:FD:B8:92:8B:80:46:BA:83:8C
X509v3 Authority Key Identifier:
keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:b9:09:05:ac:6b:2e:c9:e4:c9:40:3e:72:27:73:e6:b0:c3:
04:6f:d6:26:28:67:63:bc:6a:8f:f3:c8:83:c0:67:a5:3e:2e:
39:69:61:d5:8b:4a:c2:8a:0c:2b:e2:54:e2:10:8c:92:08:2a:
83:99:e0:bb:33:d1:b3:37:f1:b3:c7:4c:68:3d:eb:d3:7a:7c:
60:b5:7b:4c:ba:54:69:ef:14:7f:b3:1f:58:58:73:0d:ee:ac:
b5:32:66:58:b4:60:21:96:c0:77:7a:1c:5e:e4:fe:a6:e3:01:
fd:35:8f:0e:79:73:7b:d2:c4:36:3a:c1:05:35:3f:d9:2d:73:
5a:bf:9e:8a:e8:0e:53:1f:2c:5c:59:cb:52:ab:87:d5:50:13:
80:dc:b0:f4:b1:70:ea:bb:ab:e8:3f:03:90:4e:4b:64:17:dc:
83:4b:7d:b9:bf:3e:f6:da:01:57:a3:59:e3:f1:92:73:10:c3:
e3:92:10:c6:46:c0:ab:32:e4:7c:a1:bc:e2:e0:e0:30:f0:72:
07:6b:1d:d6:c4:f6:69:28:a2:68:b3:a0:3c:41:25:06:cc:a1:
8b:96:62:a4:6a:f2:1f:0d:8e:59:a6:24:0e:20:d5:cd:33:92:
0b:4e:2a:f4:42:d4:fc:a1:e6:f0:a8:05:81:1c:1d:f6:c6:d2:
fb:c2:32:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:14:53 2025 by rpki-client