Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
File: pz1kDZC_PWfySYE4zDcfZUZH3a0.mft (raw, json)
Hash identifier: 8RSJGtq4F30bm//njHDuMAncouw6+/24l+VMcey7q9A=
Subject key identifier: 2A:8F:93:7E:98:65:04:51:ED:03:2A:A4:19:50:FD:07:00:38:BF:59
Authority key identifier: A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
Certificate issuer: /CN=a73d640d90bf3d67f2498138cc371f654647ddad
Certificate serial: 01969E9AA064132AEE8C15DFFCDFCA7CDA24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
Manifest number: 0F1F
Signing time: Mon 05 May 2025 04:00:55 +0000
Manifest this update: Mon 05 May 2025 04:00:55 +0000
Manifest next update: Tue 06 May 2025 04:00:55 +0000
Files and hashes: 1: 5fcpJVl5DXDFgBV-5G0BOvh2tGg.roa (hash: urXegQalP46Ga7kO5s8Ojf4B2voXZNk4EbUTvjtFENw=)
2: pz1kDZC_PWfySYE4zDcfZUZH3a0.crl (hash: eYsNVMz4UC3+vxRXISQtj4LHzoAJuH2c3wXewKTWrA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 04:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:a0:64:13:2a:ee:8c:15:df:fc:df:ca:7c:da:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73d640d90bf3d67f2498138cc371f654647ddad
Validity
Not Before: May 5 04:00:55 2025 GMT
Not After : May 6 04:00:55 2025 GMT
Subject: CN=2a8f937e98650451ed032aa41950fd070038bf59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8e:c3:03:ef:92:9a:8d:2d:35:1d:3e:a5:28:
dd:d7:16:98:b7:61:3d:58:6f:4f:8e:ef:13:82:4f:
1e:c7:f5:5f:e9:88:52:74:ed:d3:f3:8b:f9:ef:3e:
38:61:29:14:2c:55:10:ab:27:93:d3:81:c0:0a:5f:
30:c1:80:ea:a3:79:b6:6f:3c:0b:71:36:0b:76:92:
6c:bb:41:ba:69:91:21:f5:c9:48:b4:f0:fc:cc:8b:
5a:18:21:8f:c8:e0:87:98:ae:66:82:e6:07:1b:2f:
48:38:bb:7a:9c:42:ac:7b:e4:c5:9a:ab:52:72:6c:
ca:77:d6:78:17:ea:db:98:3c:10:15:88:ff:65:ca:
db:73:ca:5f:a3:4b:52:70:d8:19:14:75:9e:20:b2:
8c:16:cf:2e:f1:0b:09:52:2d:c9:f7:41:7d:24:a1:
b9:7b:c3:99:7f:21:f6:5d:d7:db:84:ce:ff:37:bd:
c7:f7:f8:48:75:46:62:a4:cf:46:d7:d3:74:41:72:
21:ce:13:a6:58:bc:f5:9a:2f:75:6d:70:21:69:18:
bf:d3:ff:20:ac:de:16:6d:eb:f0:80:28:68:3f:51:
db:70:16:cb:18:91:6d:30:56:e1:49:10:85:4d:ea:
a9:42:56:04:a4:bf:17:7f:a9:86:5e:06:77:f4:5b:
1e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8F:93:7E:98:65:04:51:ED:03:2A:A4:19:50:FD:07:00:38:BF:59
X509v3 Authority Key Identifier:
keyid:A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:20:a4:af:3a:a2:67:13:ca:a0:b2:2a:b4:e3:5c:45:4a:1c:
d9:71:12:c3:f6:c4:48:a6:e1:7a:88:39:f5:6f:d4:58:31:d2:
38:b4:2e:29:92:63:06:50:48:c5:32:2d:17:c2:b0:5b:98:ed:
5e:f9:b1:84:0d:0b:c6:fa:eb:29:e0:12:dc:b4:e6:d8:9f:b6:
40:4a:1d:99:31:f8:b0:cd:77:5a:a9:04:a1:ca:95:98:bb:3b:
79:b1:b8:35:a4:14:d4:0a:77:6a:07:d5:14:cb:e2:15:47:19:
18:67:8d:8c:f8:cb:57:0a:d6:16:e2:ad:a1:e7:8c:ad:02:ed:
94:fe:fe:8c:5d:63:05:d3:b7:31:d4:41:b5:d6:27:e3:ec:65:
11:11:af:40:a2:33:f3:a6:ff:c8:a4:37:1c:73:66:0b:d5:27:
e6:10:93:ff:e0:51:f6:72:05:93:b6:ef:7f:8b:f1:a3:7a:d8:
61:a0:1f:21:06:73:e7:e0:13:cf:47:f5:0d:97:f1:30:44:a9:
be:1b:75:b1:e8:07:f0:d1:9f:c5:ee:af:9e:a5:10:43:36:1d:
3d:37:90:a8:5b:f3:66:73:7b:89:c2:af:8b:15:99:31:39:08:
07:ca:88:e6:34:67:50:24:b2:d1:6a:93:87:ca:70:2a:01:26:
2c:a6:b8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 12:57:26 2025 by rpki-client