Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
File: pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft (raw, json)
Hash identifier: V+BMZaehYPj2auPO0BLchaply81OEUrSk9zFV9+t5uQ=
Subject key identifier: 8C:B6:B8:41:57:78:09:A4:B8:E2:84:1A:EE:9D:56:44:29:CE:59:C1
Authority key identifier: A7:33:BD:11:1F:D8:CB:76:F4:88:3B:BB:CB:FD:A5:9D:B6:6E:D2:DE
Certificate issuer: /CN=a733bd111fd8cb76f4883bbbcbfda59db66ed2de
Certificate serial: 01965726D86FF72F5F98B74837169E23E63E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
Manifest number: 0AD9
Signing time: Mon 21 Apr 2025 07:01:25 +0000
Manifest this update: Mon 21 Apr 2025 07:01:25 +0000
Manifest next update: Tue 22 Apr 2025 07:01:25 +0000
Files and hashes: 1: CyEvz68_PuSD2VXrrDfN85-80B0.roa (hash: iumx0jfFgEFRTvhq+tByJZI5kHgTeLx3n+N6ZSqFUeI=)
2: pzO9ER_Yy3b0iDu7y_2lnbZu0t4.crl (hash: lS15XY+wDlONw2mB/D759BFriBHMvoWLRiJdQyx1Sqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:d8:6f:f7:2f:5f:98:b7:48:37:16:9e:23:e6:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a733bd111fd8cb76f4883bbbcbfda59db66ed2de
Validity
Not Before: Apr 21 07:01:25 2025 GMT
Not After : Apr 22 07:01:25 2025 GMT
Subject: CN=8cb6b841577809a4b8e2841aee9d564429ce59c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:74:87:73:99:b2:e2:a1:05:da:92:a0:1b:74:
bc:0b:18:8b:c1:73:18:00:c6:98:4f:56:84:0d:56:
c6:c6:6c:c7:df:92:87:28:c9:72:4f:18:89:cc:1b:
0b:87:70:7f:1a:a3:ec:32:aa:21:f8:a4:2a:a4:e1:
8c:bc:07:a6:53:b2:6b:ee:d9:92:28:4a:57:ac:93:
c2:5f:56:12:be:ce:02:90:ab:8d:61:44:b7:57:9e:
d6:f7:fc:24:07:b5:23:6d:13:16:da:e1:03:26:01:
14:95:db:ce:f8:9d:79:fc:e0:2d:f2:a1:e0:59:89:
29:f4:52:4a:5b:bc:0d:b1:a3:38:10:01:50:20:48:
3f:f6:9d:72:5c:4a:34:5f:d2:4d:32:78:3f:70:c7:
4f:53:2a:98:fd:1b:f3:e5:63:c5:45:74:d8:be:75:
89:a5:b4:0b:2c:ae:7f:8f:28:88:59:f7:b6:9a:5e:
2c:90:44:64:ba:1d:4b:77:dd:ac:63:5a:af:61:91:
3e:63:5d:2e:d9:76:07:c1:6f:cb:f2:ad:d2:5f:35:
fa:cd:f5:97:7c:3f:4a:13:cb:7f:f8:6b:2a:d1:d4:
3e:a9:f2:5e:a0:f9:65:10:4d:73:52:ec:08:40:b4:
93:ea:bc:01:eb:9d:8c:aa:06:10:74:29:34:eb:36:
ce:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:B6:B8:41:57:78:09:A4:B8:E2:84:1A:EE:9D:56:44:29:CE:59:C1
X509v3 Authority Key Identifier:
keyid:A7:33:BD:11:1F:D8:CB:76:F4:88:3B:BB:CB:FD:A5:9D:B6:6E:D2:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:82:09:b4:63:38:5f:d0:8a:bb:8e:a3:9f:8f:35:8b:dc:1d:
3e:12:35:49:25:d2:4b:72:c5:73:70:a6:e2:1b:76:82:1b:55:
16:60:35:4d:6b:47:4b:85:fd:4f:25:81:e2:41:f3:d8:ec:a5:
41:df:3d:24:66:c9:1a:00:a3:94:a8:58:b5:b3:15:10:3b:83:
59:99:78:b1:a2:e3:3c:a8:29:c0:4b:53:13:d4:bf:01:50:d6:
f8:84:85:f6:1c:ea:86:9a:d7:31:be:c8:29:2b:0a:3d:b5:17:
56:6c:67:40:3a:07:4b:68:ae:97:f4:24:ec:b2:8a:0a:b8:58:
6b:18:ec:63:c9:db:d9:e7:3c:27:59:0b:5a:24:88:8f:89:e7:
e6:55:45:7f:ec:81:11:65:e6:57:46:7d:60:fc:3c:b3:bf:92:
18:49:8f:7c:53:e4:88:a2:9e:61:e5:cc:0c:d0:2b:5e:38:15:
a9:e2:c2:b3:ec:2f:2c:5f:c4:7f:e9:6b:a0:9d:7c:14:b1:38:
fa:bf:5f:c6:ad:58:18:1f:82:2a:52:96:e4:f6:d2:df:eb:1f:
0d:e6:39:74:10:68:ab:44:14:0c:72:81:6b:2b:94:60:82:13:
b1:bc:58:b4:df:79:a2:d2:df:c0:f9:50:90:c4:26:34:30:fe:
42:69:d2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 11:26:32 2025 by rpki-client