Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json)
Hash identifier: r7PXEIVgMyd03UE/2+cZ+zS7btI0k/KL4jX2dxymdMg=
Subject key identifier: 8E:FB:A3:42:62:2C:B2:D7:45:A6:A1:E9:E6:C6:C4:45:C1:38:F9:7E
Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Certificate serial: 0197C0488A2F2164539D6EB4128F3F9DDEA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
Manifest number: 0A4F
Signing time: Mon 30 Jun 2025 10:01:08 +0000
Manifest this update: Mon 30 Jun 2025 10:01:08 +0000
Manifest next update: Tue 01 Jul 2025 10:01:08 +0000
Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=)
2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: jBqdnO0FfXCWxCTMW0ozILHXV7jfQH8EYzuFlCCi9i4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 10:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:48:8a:2f:21:64:53:9d:6e:b4:12:8f:3f:9d:de:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8
Validity
Not Before: Jun 30 10:01:08 2025 GMT
Not After : Jul 1 10:01:08 2025 GMT
Subject: CN=8efba342622cb2d745a6a1e9e6c6c445c138f97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:02:cd:fe:1e:e4:74:be:83:4d:86:5c:1c:39:
e2:e8:e5:55:79:09:a4:d2:4d:3a:85:7c:3f:82:b3:
9e:ba:63:67:6d:b9:a1:a8:d0:f8:48:ea:44:29:c5:
4f:65:0e:2e:3f:90:84:d7:ed:6e:cc:15:fd:67:e7:
10:aa:06:25:e8:28:31:4b:45:ca:f8:86:9b:d4:8e:
ce:b8:b2:cd:e1:fc:f1:f2:27:ac:43:8c:0b:3f:23:
04:52:f1:17:33:43:20:fe:88:d6:1f:a5:df:1b:22:
22:76:fd:58:9c:35:04:fc:45:a8:38:b5:90:c2:d9:
a8:84:2e:1c:75:5e:42:27:6c:54:4f:cf:f5:23:d3:
61:9c:dc:d3:5d:d7:7d:31:d2:5b:44:a2:12:12:c7:
5d:c9:96:a5:1d:8c:37:3f:80:1b:7c:cd:20:f1:2e:
2f:4a:ed:d1:65:d6:a8:1d:93:40:75:81:5d:32:c4:
37:b7:8f:67:12:fc:12:92:3b:af:d6:f2:3f:04:b8:
ed:cb:6d:5f:4e:e4:e7:9a:9c:e5:fa:18:8f:41:d6:
16:9a:5d:39:0e:3d:d2:13:6f:f5:72:de:80:16:e5:
1b:0f:69:be:51:1a:f7:a8:96:e9:71:a8:f1:62:cb:
09:53:06:b7:8e:56:bf:3c:ad:45:f8:0e:71:5d:09:
3c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FB:A3:42:62:2C:B2:D7:45:A6:A1:E9:E6:C6:C4:45:C1:38:F9:7E
X509v3 Authority Key Identifier:
keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:fe:75:49:3a:02:77:1e:63:52:b6:08:17:23:b7:85:80:e8:
9d:4a:93:42:04:97:7e:bd:1b:86:86:fc:bc:c9:64:02:0a:05:
b8:c2:2c:72:e3:38:58:b8:9b:98:ec:34:83:1e:12:ad:9b:09:
d7:bc:17:db:27:7c:9a:7b:4f:b8:d9:71:d6:93:e2:f0:2f:cf:
4d:9e:1a:6e:d5:36:00:5b:f5:fd:9f:1a:14:6a:05:92:6f:a5:
ff:23:07:1d:ea:a6:49:ed:3b:7e:fa:29:48:39:50:fa:1b:ce:
89:df:7f:b2:9b:37:c7:ae:c5:32:3b:fc:a8:73:5e:c7:5d:ba:
78:62:89:49:c8:b5:e9:51:b3:af:6e:8c:c0:ec:13:4d:c7:82:
fc:19:ac:ea:64:f2:6e:83:49:f8:7f:24:f9:4b:1e:0e:15:2d:
01:62:36:81:a0:c6:ea:3a:ab:d8:06:c6:c1:e1:bd:08:42:58:
61:d0:ce:7f:12:7c:80:73:a0:88:dd:8b:81:f6:25:72:73:8b:
f0:c8:32:90:a6:68:09:c7:f4:06:7a:4a:72:8b:bf:be:22:fd:
63:6a:e9:15:11:8c:cc:49:e7:b6:20:c9:e3:5b:d5:e2:47:e1:
84:c6:10:dd:0f:ea:2a:49:ff:ec:53:14:44:4e:84:7a:58:38:
6b:99:bd:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 16:07:51 2025 by rpki-client