Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json)
Hash identifier: GnggRsVtbvXQYRnZFPyA60Cu3cwJG9eTkfzsGEBniDE=
Subject key identifier: F8:32:05:9A:06:1E:11:14:97:89:2C:D5:61:87:CB:85:02:22:2E:F7
Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614
Certificate serial: 0199FC214006EAD893450C50779059A07E66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
Manifest number: 099E
Signing time: Sun 19 Oct 2025 11:01:01 +0000
Manifest this update: Sun 19 Oct 2025 11:01:01 +0000
Manifest next update: Mon 20 Oct 2025 11:01:01 +0000
Files and hashes: 1: jCdTYmvYMmAVCpwgaEf86kYug58.roa (hash: ztqwVKV63uIGzbrcGebHuh3wlQjH5xZyStSjcOzpGqU=)
2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: CCn89YVuWpIx+itFUWRi7o+58mJiMbWLo58AfyRAYQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:40:06:ea:d8:93:45:0c:50:77:90:59:a0:7e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614
Validity
Not Before: Oct 19 11:01:01 2025 GMT
Not After : Oct 20 11:01:01 2025 GMT
Subject: CN=f832059a061e111497892cd56187cb8502222ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f9:29:80:cf:ca:23:8a:68:6f:44:a4:9c:1f:
ca:70:5d:3e:f0:57:37:83:e5:49:3d:26:36:12:36:
52:27:6d:ad:be:d8:b6:7a:a7:7b:3d:ac:17:3a:18:
d1:7e:0e:3a:86:c6:98:b1:34:f3:0e:b0:90:26:86:
c6:aa:54:9d:29:30:4a:1d:05:c8:4f:83:84:b8:88:
f6:80:84:05:f9:23:49:fd:61:bf:7c:d3:8a:85:87:
f8:01:a6:96:cc:f5:e5:91:0f:8b:07:1a:19:e4:ae:
48:f8:44:a4:ce:b4:4d:30:8e:ce:9d:52:df:1c:61:
0d:be:87:ca:c6:56:a3:7b:36:9a:60:b8:d7:6d:f0:
ef:d0:d9:fe:6a:e3:f2:e9:00:bc:7a:09:7e:02:22:
7c:ff:17:1e:0c:8f:d5:15:6a:11:02:43:a8:1f:ac:
f1:4a:9d:78:e4:32:c8:ec:be:f3:b5:28:a3:7d:df:
8c:92:d7:98:60:ee:bf:0b:b7:2f:b5:c8:f4:ab:55:
2b:3e:a6:7d:fc:e0:e8:ff:47:3d:73:ff:5b:52:cc:
31:6d:9c:63:fe:bc:30:fc:62:30:63:aa:bf:3c:dc:
c2:a1:03:2f:e2:1c:a0:67:a7:ac:86:6b:5f:3e:31:
5d:11:35:ca:61:bf:36:b9:dd:81:55:bb:03:41:01:
7d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:32:05:9A:06:1E:11:14:97:89:2C:D5:61:87:CB:85:02:22:2E:F7
X509v3 Authority Key Identifier:
keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:37:c7:8d:03:64:d2:0b:96:c3:ce:28:1c:55:5e:b6:b6:41:
19:76:f2:0c:4e:6f:af:fd:73:28:60:64:0b:30:58:e6:fd:a7:
c6:a0:1d:7f:40:2c:31:ad:b4:2a:31:88:3d:b9:b0:83:b7:01:
e0:e7:fb:b9:b7:78:7e:25:51:34:b0:9c:f2:95:b3:35:e8:30:
9a:c7:e6:14:1c:ac:27:26:5f:a4:b8:3b:46:39:62:a2:16:8e:
d7:6b:2d:1f:e0:08:46:8c:7a:a8:89:4c:d8:c6:12:cd:d8:a2:
14:80:7b:9d:86:79:82:c7:0e:c2:b2:01:76:3a:52:c8:3d:88:
96:12:1d:90:fa:e5:ab:f2:09:d6:29:4f:58:8d:8a:f7:c7:40:
c4:39:65:d3:15:9d:3f:95:84:fa:17:88:8b:76:64:49:e3:91:
76:6f:f4:1b:b0:b6:bb:c4:95:e7:b9:8e:d7:12:6e:f2:54:28:
12:75:f3:60:67:e7:86:6c:5a:2c:a7:3d:ed:4f:ba:55:fb:be:
05:19:b1:26:4c:1b:c4:16:04:0f:23:35:84:85:27:41:dd:9f:
a3:21:9a:cc:06:93:58:7c:75:23:42:05:47:5a:fe:d5:f7:7d:
05:c3:8f:c1:7d:f8:15:d2:55:14:06:4d:ba:28:58:41:e3:de:
11:64:a4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:21 2025 by rpki-client