Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
File: PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft (raw, json)
Hash identifier: 4THT2mJcDpTsaTeyKxZcWsmxVLq8oyxCr1wokFzjUsc=
Subject key identifier: D8:34:F6:9E:3A:7E:8E:78:F7:49:85:47:89:F4:B8:AC:79:A3:F2:A6
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 0197B5C4EE43B773410A4575F0640A050E07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
Manifest number: 0AD1
Signing time: Sat 28 Jun 2025 09:01:11 +0000
Manifest this update: Sat 28 Jun 2025 09:01:11 +0000
Manifest next update: Sun 29 Jun 2025 09:01:11 +0000
Files and hashes: 1: 4HFAWmQXrJvJPwvQ-nacdREAjwA.roa (hash: smesMzM3abS3/IiONa1NHYIBIDWL+noqBcVPlJGz8P8=)
2: PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl (hash: ikF6yamvqKaEEdjOwowDgX1jS3hxZbBgcRARMcCJ0u8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:ee:43:b7:73:41:0a:45:75:f0:64:0a:05:0e:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: Jun 28 09:01:11 2025 GMT
Not After : Jun 29 09:01:11 2025 GMT
Subject: CN=d834f69e3a7e8e78f749854789f4b8ac79a3f2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:18:39:65:d3:fd:49:57:c2:ac:77:fc:9d:50:
69:7c:9f:8c:fc:02:bf:db:a0:dd:db:89:99:ab:65:
b9:6c:9c:26:62:be:f4:d3:e4:0e:8b:41:95:d0:e9:
38:8d:f2:d8:ac:e5:b0:a2:72:e8:8a:34:3a:45:ef:
64:c6:c0:e4:9f:74:56:22:f3:ae:7b:49:f5:d3:3b:
51:7e:3e:17:30:2b:26:76:2f:c4:57:d7:9f:a7:42:
de:6d:4c:8f:ab:f9:65:8a:a8:b8:34:75:2c:c0:47:
0a:2e:f3:38:2c:c0:3e:b2:25:ab:dd:06:7a:f9:5f:
5f:83:ae:e9:94:b2:c7:67:73:de:da:d5:19:91:cc:
de:97:a5:a8:b9:37:f6:59:8a:01:62:bf:92:37:61:
f3:66:97:92:f7:82:b1:ad:d5:60:07:8b:4d:70:fe:
7a:fc:61:ae:e7:aa:08:10:1f:34:08:0c:3d:dd:6f:
7d:57:d8:a1:92:36:c3:c3:83:a2:5b:90:6b:7d:a2:
c4:f0:3e:52:90:62:99:89:b2:41:c0:9d:c1:06:38:
f5:d8:dd:df:b4:8e:62:bf:da:55:79:91:76:ac:67:
e3:10:83:76:f2:a6:cb:a7:73:08:5c:67:aa:90:7a:
47:fb:8a:f4:46:0e:fa:f9:0c:c7:ac:99:24:64:6f:
72:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:34:F6:9E:3A:7E:8E:78:F7:49:85:47:89:F4:B8:AC:79:A3:F2:A6
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:c1:7f:6a:d0:61:b7:f6:c5:31:cf:04:77:c3:13:af:7a:e7:
fc:53:62:62:b5:70:81:4a:64:12:90:7f:1d:77:68:a6:71:5d:
bd:79:5b:cc:ed:f7:72:bd:28:85:e4:19:c9:de:24:7b:5c:39:
8c:9e:83:93:1b:39:85:b1:87:91:01:c3:9a:c3:e9:38:f9:9f:
6e:1b:46:26:5e:9f:ff:7e:9f:3f:c0:69:b2:73:27:25:c5:12:
d2:dd:29:de:28:e6:b8:66:8b:3d:f4:52:af:b8:03:5a:e5:de:
c9:93:d6:cc:19:00:70:14:3a:0a:a8:02:f7:59:20:05:54:7d:
ff:7e:eb:cc:1b:16:6e:f0:35:76:2c:15:35:aa:7f:10:8b:11:
5a:e5:60:28:74:8b:69:e7:37:d0:95:02:38:59:84:5c:59:cc:
62:7b:e9:9f:1b:52:c3:a6:26:d7:60:bf:a0:fb:cb:00:c6:f8:
6d:fb:32:63:e7:be:a2:61:f0:7e:29:8d:b7:71:f7:2b:a5:a5:
1d:da:e2:86:39:e7:52:34:2b:ba:80:4d:0a:ae:f7:ae:cf:af:
69:63:cf:43:2b:81:78:35:41:bc:1a:4f:83:c4:87:71:e4:cb:
9e:34:26:3b:e9:47:63:12:ba:a3:83:46:0c:d5:0e:4b:9b:0b:
75:d7:d3:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:09:44 2025 by rpki-client