Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
File: pz1kDZC_PWfySYE4zDcfZUZH3a0.mft (raw, json)
Hash identifier: 8UB7HBJWKs3Vf82RnnCnKdrD9ngppEmm5uJTsnk/UjM=
Subject key identifier: 0C:1E:25:54:E5:CE:2B:35:8D:E2:77:0B:4B:AD:A1:A1:A8:A1:86:BA
Authority key identifier: A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
Certificate issuer: /CN=a73d640d90bf3d67f2498138cc371f654647ddad
Certificate serial: 0198D660201B4D04C00E1A58008F8924D71B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
Manifest number: 1045
Signing time: Sat 23 Aug 2025 10:01:20 +0000
Manifest this update: Sat 23 Aug 2025 10:01:20 +0000
Manifest next update: Sun 24 Aug 2025 10:01:20 +0000
Files and hashes: 1: 5fcpJVl5DXDFgBV-5G0BOvh2tGg.roa (hash: urXegQalP46Ga7kO5s8Ojf4B2voXZNk4EbUTvjtFENw=)
2: pz1kDZC_PWfySYE4zDcfZUZH3a0.crl (hash: QKgroLHLlvbJl91FRr6n18vdke2rXJ3Tl7MYJgGm1Qs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:20:1b:4d:04:c0:0e:1a:58:00:8f:89:24:d7:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73d640d90bf3d67f2498138cc371f654647ddad
Validity
Not Before: Aug 23 10:01:20 2025 GMT
Not After : Aug 24 10:01:20 2025 GMT
Subject: CN=0c1e2554e5ce2b358de2770b4bada1a1a8a186ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1e:30:0a:c3:09:07:67:1d:75:3b:db:36:23:
ac:8a:5a:e5:56:3f:ae:de:8f:86:20:94:27:b6:43:
53:27:9e:85:91:0f:1c:dd:16:39:e6:d4:f6:db:17:
2e:ba:90:43:0a:e7:3d:94:98:b6:cb:66:f5:76:ec:
a4:6c:00:42:47:16:b5:a3:ac:d3:b2:82:ae:cd:c2:
90:57:0f:5d:ff:05:1e:d3:a9:4f:81:54:75:99:bb:
7c:6b:a7:37:26:53:61:94:20:70:f1:ea:71:05:80:
e6:6b:cb:f5:5d:cb:a9:3e:06:e4:40:02:ec:c7:f7:
4d:2c:2c:09:41:f1:b5:0e:6d:8f:b7:ab:61:e0:90:
17:2d:5e:65:e1:85:cb:5d:46:50:af:6d:6c:4a:0c:
73:a3:f5:56:6e:2d:b7:bb:79:3e:ea:67:8f:c6:ca:
95:e9:e0:2a:84:78:3b:a6:8b:9c:c2:d1:9c:36:f3:
b5:61:6b:ef:28:80:98:8d:db:25:5d:10:a6:6a:5e:
43:a3:66:f9:e4:00:83:81:cd:54:28:90:c8:d7:d5:
b0:0b:37:ca:80:1c:db:32:43:94:00:10:a5:a1:bd:
e8:f2:c6:36:b7:26:a2:82:16:e2:2f:99:6f:e4:76:
3e:e4:91:50:1a:2b:7d:59:e6:26:8c:2e:e4:19:57:
59:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:1E:25:54:E5:CE:2B:35:8D:E2:77:0B:4B:AD:A1:A1:A8:A1:86:BA
X509v3 Authority Key Identifier:
keyid:A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:c7:5e:1b:5b:66:c0:78:8a:7f:0f:ae:47:46:72:d2:1a:40:
1b:8d:b7:41:d7:d1:38:0b:bd:a7:b0:b9:b7:b7:19:4c:59:b8:
21:6a:c9:6f:26:5f:7f:5a:ea:ee:55:71:b6:47:f6:1b:64:26:
49:63:fe:d7:5a:cb:9a:f5:13:43:e3:9c:d0:25:53:b2:44:2c:
b6:53:88:00:b3:e4:b7:ea:5a:29:f6:bc:e7:5d:33:aa:36:e0:
97:42:4e:ae:d6:7a:6d:f6:29:9d:fc:7b:e9:f8:11:76:14:62:
3e:83:0e:74:6e:d5:3e:bd:fe:ef:89:94:a1:67:79:37:7c:2a:
d1:b7:b3:d9:65:2c:51:39:9f:cb:50:09:22:9e:0c:2e:80:3b:
80:00:57:f4:33:67:74:49:7e:00:7d:2b:38:1b:be:90:52:e1:
a5:b1:0f:bc:5a:cb:cb:2e:4e:e3:f5:b0:96:dc:a3:9f:8c:10:
40:da:f4:7e:16:6b:dc:63:a8:03:1a:12:2b:00:ae:46:86:16:
19:c4:5e:35:6c:c6:18:aa:f1:59:36:ba:3a:e1:d7:97:58:f9:
83:53:53:a1:c6:7d:43:01:2d:fb:e5:64:c3:c6:0d:27:e9:aa:
06:86:8d:2e:eb:79:1f:62:64:f7:1c:17:f9:60:8f:db:3c:ce:
59:a5:d0:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:50:40 2025 by rpki-client