Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
File: PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft (raw, json)
Hash identifier: id8cBhrRNdNp6VARakrRDocxP5VgSJY9/ucOuis/7xw=
Subject key identifier: 26:DC:A3:86:75:CF:9D:F7:3F:F3:A9:C1:A1:15:0A:03:DB:80:C3:8A
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 0198D773A7F45D59BECD8955EA7581290610
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
Manifest number: 0B67
Signing time: Sat 23 Aug 2025 15:02:17 +0000
Manifest this update: Sat 23 Aug 2025 15:02:17 +0000
Manifest next update: Sun 24 Aug 2025 15:02:17 +0000
Files and hashes: 1: 4HFAWmQXrJvJPwvQ-nacdREAjwA.roa (hash: smesMzM3abS3/IiONa1NHYIBIDWL+noqBcVPlJGz8P8=)
2: PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl (hash: 2150p84cDkwCuRXLhCrKbypqq5aVb2RcDG0z3Bt6Spc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:a7:f4:5d:59:be:cd:89:55:ea:75:81:29:06:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: Aug 23 15:02:17 2025 GMT
Not After : Aug 24 15:02:17 2025 GMT
Subject: CN=26dca38675cf9df73ff3a9c1a1150a03db80c38a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:70:d3:77:30:88:7b:f8:f7:44:15:2a:22:69:
7e:2b:ae:76:dc:cf:d1:35:e6:fd:dc:d3:fe:ee:52:
45:35:48:0a:c0:2b:ef:8c:94:d2:dd:0f:71:bc:38:
50:05:f6:8f:f6:65:03:38:98:09:5e:03:c4:bc:4d:
27:f6:0d:4e:88:62:4b:83:31:09:47:02:42:ba:d9:
75:9b:ce:3b:ee:ab:75:da:84:cf:58:03:80:99:6e:
a0:4d:18:c7:5a:68:f1:df:4f:9a:a1:05:c8:ca:b8:
d3:aa:0e:21:7e:3f:15:a2:b9:2a:19:dc:48:43:4e:
28:4d:b7:17:d5:61:4f:9d:7b:4d:e6:a3:1d:17:85:
7a:0c:34:a1:ea:85:8d:bc:06:51:ee:29:ba:64:a4:
f1:68:8c:90:14:c8:c2:71:c6:f5:f8:ea:68:de:3a:
75:a2:fa:da:7d:ba:32:5c:e1:fc:24:94:68:7b:55:
4d:be:37:f9:3b:e8:a4:fb:06:e4:dc:64:28:de:ac:
e2:04:25:63:e5:d8:ec:fa:8b:a7:9d:a1:09:ed:05:
22:c2:89:87:99:25:4b:b9:4a:26:17:32:61:29:3e:
54:7b:62:13:9c:d2:17:1e:b3:5a:45:2e:f9:cc:f8:
7b:5c:03:12:2f:d7:cd:46:27:86:70:70:ef:3c:d2:
78:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:DC:A3:86:75:CF:9D:F7:3F:F3:A9:C1:A1:15:0A:03:DB:80:C3:8A
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:8a:d0:e4:dd:2a:d8:c9:bd:cb:b2:06:5b:84:7d:4a:35:d3:
94:d0:94:22:60:52:c0:be:5e:84:a8:dc:68:49:78:b7:a0:6a:
90:86:75:5b:d7:6a:ab:64:1d:65:2c:aa:0a:fd:54:6d:77:de:
77:6c:7c:29:1e:c0:ca:03:28:1b:f2:f6:59:e4:ba:dd:9e:dd:
37:e6:5f:e9:62:a6:a8:cb:70:62:cf:9d:d8:fe:bc:d9:fd:5f:
43:6e:6b:a1:63:78:31:25:6b:c4:35:3e:00:2c:d6:42:88:13:
e1:8d:5d:0f:dd:f5:6f:0d:a5:96:48:2d:a1:7a:83:5d:b7:62:
6f:06:e3:c6:ac:28:67:44:9e:2f:41:bb:99:d7:f8:4c:26:81:
77:39:7d:8a:79:f7:8a:13:3b:0e:f6:5e:d8:53:92:42:47:cc:
28:8d:6d:1f:d1:a1:7d:83:98:79:ff:80:14:4b:62:2f:de:40:
bb:ea:e8:79:e8:9b:53:5c:fb:bc:39:20:8e:66:05:cb:aa:ce:
72:82:11:13:69:bf:f1:1d:2d:70:76:ae:98:83:79:c0:3a:9d:
e3:b4:e1:60:3b:1b:69:4d:c2:b5:e2:26:9c:14:df:83:9f:b9:
81:47:fe:2c:fa:04:c3:e1:4a:a2:62:37:8b:48:7f:4a:3f:14:
ba:00:91:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:40:03 2025 by rpki-client