Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
File: pz1kDZC_PWfySYE4zDcfZUZH3a0.mft (raw, json)
Hash identifier: QqUwD3/abIGpJAMRjcVol3gVwP9mqEBRuA6Ql6J351A=
Subject key identifier: 18:85:8A:13:21:A0:C3:4C:87:D8:0F:1C:96:37:F9:6B:B8:7A:C0:F5
Authority key identifier: A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
Certificate issuer: /CN=a73d640d90bf3d67f2498138cc371f654647ddad
Certificate serial: 0197B6A187A011597B4D24B63FF7CFF965A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
Manifest number: 0FB0
Signing time: Sat 28 Jun 2025 13:02:08 +0000
Manifest this update: Sat 28 Jun 2025 13:02:08 +0000
Manifest next update: Sun 29 Jun 2025 13:02:08 +0000
Files and hashes: 1: 5fcpJVl5DXDFgBV-5G0BOvh2tGg.roa (hash: urXegQalP46Ga7kO5s8Ojf4B2voXZNk4EbUTvjtFENw=)
2: pz1kDZC_PWfySYE4zDcfZUZH3a0.crl (hash: k+7aRPqSICUBgKB9PYbl/35lV1cyAdCWjH2fUmpy0TY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:87:a0:11:59:7b:4d:24:b6:3f:f7:cf:f9:65:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73d640d90bf3d67f2498138cc371f654647ddad
Validity
Not Before: Jun 28 13:02:08 2025 GMT
Not After : Jun 29 13:02:08 2025 GMT
Subject: CN=18858a1321a0c34c87d80f1c9637f96bb87ac0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:22:ed:68:b0:ad:45:6b:aa:37:36:c9:36:e8:
09:60:23:96:b5:af:91:a9:78:64:b4:b5:8c:a3:e9:
75:b4:72:bf:3a:c9:a5:cf:e8:6a:12:ae:ab:b3:c9:
08:15:99:63:50:16:a4:2e:8c:01:37:5c:a6:18:20:
5d:89:ea:95:aa:af:23:c2:b5:c5:31:7e:7c:14:58:
4d:a2:dd:81:b8:ab:2a:bd:7f:82:b6:01:0e:02:3c:
b2:fd:5b:48:8e:13:8e:83:33:8b:dd:18:db:58:d2:
67:48:d6:cf:aa:fb:ad:4c:54:44:81:c0:4d:fa:4d:
c4:22:86:97:d2:06:c5:79:f9:c8:bd:c5:fc:b0:61:
d9:05:23:33:46:28:d6:8c:bc:81:d6:7e:13:93:0b:
26:3d:4c:3e:1e:cd:55:34:f1:cd:3d:18:b6:f7:fa:
7d:ba:f7:af:1f:9a:80:b0:f9:a4:a0:6d:82:65:9e:
27:90:95:46:39:b6:1e:74:93:bc:34:01:a5:a7:68:
46:b3:2c:05:fb:b2:9a:99:7c:d2:5c:6e:89:16:16:
58:46:d6:e6:a5:ea:58:9d:33:07:41:b2:67:af:be:
45:e3:89:2c:c7:df:82:42:19:80:83:95:cb:68:f3:
86:29:a1:74:7f:44:20:c5:cc:43:ab:ad:57:b8:89:
3b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:85:8A:13:21:A0:C3:4C:87:D8:0F:1C:96:37:F9:6B:B8:7A:C0:F5
X509v3 Authority Key Identifier:
keyid:A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:c8:c1:8e:7f:a7:b3:b3:28:24:22:53:a5:44:5f:91:6a:93:
79:b4:1c:c3:b7:ae:bd:7f:97:f5:d1:15:5c:31:0e:ab:c9:2c:
2d:a4:f3:da:77:81:4c:dc:a8:6d:ec:39:87:b5:f5:ae:7f:43:
55:1b:37:e2:84:7b:d4:42:90:46:d5:34:82:0e:06:ab:a8:a4:
93:ed:e8:82:7b:92:38:68:28:89:da:6f:04:36:e3:3f:19:fa:
69:25:7f:53:dc:ba:9f:50:ee:51:ed:d5:20:27:7c:f3:06:bd:
08:e1:76:f9:ac:f4:07:7b:89:95:b1:2e:f4:44:e5:eb:82:66:
95:e4:8b:e2:74:3f:72:31:6a:db:8a:17:53:b4:78:ca:cd:6d:
2e:4b:2c:76:bb:e9:0f:b6:39:b7:a3:70:84:a3:13:91:96:e7:
20:75:9b:a1:05:c9:44:ea:4c:39:b4:a5:0a:60:ee:79:02:4d:
95:e2:b7:d8:e2:49:e0:ad:f8:35:cc:3b:7d:69:d7:ec:3b:02:
36:b8:a8:5d:41:0b:1a:f4:38:29:be:00:c8:c3:16:15:8b:89:
32:b8:72:b4:a0:d4:2a:f9:be:f5:83:f3:e7:5e:8b:c3:10:1a:
63:bc:16:75:a1:f3:25:29:a2:c0:21:44:13:8a:2b:77:d6:4e:
cd:96:3f:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:52:23 2025 by rpki-client