Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
File: pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft (raw, json)
Hash identifier: JjTsBigSmU6G00Z1D640pThwSSZMADxSL5IiRUkr7Js=
Subject key identifier: E9:D5:94:CA:24:A4:83:A9:B3:A1:F9:1A:47:C2:94:46:FA:7B:41:75
Authority key identifier: A7:33:BD:11:1F:D8:CB:76:F4:88:3B:BB:CB:FD:A5:9D:B6:6E:D2:DE
Certificate issuer: /CN=a733bd111fd8cb76f4883bbbcbfda59db66ed2de
Certificate serial: 019854FC4B57121CAE7D9A5155CAA602FC81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
Manifest number: 0BE1
Signing time: Tue 29 Jul 2025 07:01:17 +0000
Manifest this update: Tue 29 Jul 2025 07:01:17 +0000
Manifest next update: Wed 30 Jul 2025 07:01:17 +0000
Files and hashes: 1: CyEvz68_PuSD2VXrrDfN85-80B0.roa (hash: iumx0jfFgEFRTvhq+tByJZI5kHgTeLx3n+N6ZSqFUeI=)
2: pzO9ER_Yy3b0iDu7y_2lnbZu0t4.crl (hash: CLIJ+Ym7flfcAltHuUQhH65BCfhuZT/+W/xs7aJPe04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:fc:4b:57:12:1c:ae:7d:9a:51:55:ca:a6:02:fc:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a733bd111fd8cb76f4883bbbcbfda59db66ed2de
Validity
Not Before: Jul 29 07:01:17 2025 GMT
Not After : Jul 30 07:01:17 2025 GMT
Subject: CN=e9d594ca24a483a9b3a1f91a47c29446fa7b4175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5f:a9:1d:34:c7:86:15:c3:f0:0c:43:24:1c:
da:6b:ab:12:cc:02:82:20:fa:05:0b:d3:d3:68:51:
96:f4:ba:e9:69:fa:96:1a:fc:95:37:7b:37:c8:d1:
96:56:1e:4d:49:15:ba:78:e6:01:59:95:0b:8d:c7:
28:3e:df:75:9e:4f:ec:e5:62:1f:ae:91:42:13:a8:
e1:a4:e8:54:63:ad:f1:3a:c3:d6:c2:12:8e:5a:10:
21:f3:0c:e0:c1:cb:6a:11:eb:a3:6d:f5:f0:14:ff:
d4:5f:f9:71:f0:10:df:10:76:c6:fb:15:8d:8f:00:
67:6e:43:01:89:83:aa:59:ee:3d:fd:6e:3e:1c:8a:
1f:e6:9d:3f:cc:ca:16:12:b7:77:64:ec:77:4a:d8:
74:e4:d7:0c:f8:77:27:18:7a:d8:95:c2:ef:ff:20:
4e:3e:3c:db:f3:5a:a9:b6:5b:c8:a6:87:e5:39:2a:
bf:4f:90:74:26:86:b6:6c:ca:8e:af:be:68:63:61:
4f:47:74:eb:45:9e:8b:15:2c:af:04:e2:3a:0e:45:
10:ac:23:7b:90:5c:b3:cd:2a:9a:9e:b0:f8:9b:61:
56:ce:c1:7d:c6:3c:ec:0f:4d:ff:82:7e:03:63:39:
38:8d:0b:73:ad:c7:39:ef:dc:73:15:8f:93:31:75:
e5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D5:94:CA:24:A4:83:A9:B3:A1:F9:1A:47:C2:94:46:FA:7B:41:75
X509v3 Authority Key Identifier:
keyid:A7:33:BD:11:1F:D8:CB:76:F4:88:3B:BB:CB:FD:A5:9D:B6:6E:D2:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/073b19-0839-43ac-8b5b-08ced92c9770/1/pzO9ER_Yy3b0iDu7y_2lnbZu0t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:f7:2c:d9:44:f3:86:9a:b3:58:6e:b7:55:a0:82:e5:cd:49:
41:7c:38:28:09:d6:a8:80:a8:54:55:7b:55:6c:a3:34:d3:ab:
85:e5:09:80:15:93:37:75:0e:66:bc:67:e7:24:e8:06:90:95:
ae:a0:8d:af:4a:81:09:19:d5:59:aa:8c:f9:57:a6:5b:ad:08:
c4:e2:48:a9:54:89:d6:fd:77:cf:db:54:c9:56:16:77:a0:39:
51:ac:80:56:a4:89:1a:6c:16:76:89:2c:7e:c9:c2:31:4e:82:
13:f0:fa:a1:44:50:d2:7c:bb:6b:90:5d:1b:67:b8:98:19:22:
0d:e7:99:ac:25:eb:61:43:0d:9e:c6:01:2a:eb:0c:8d:75:99:
aa:24:d5:c2:99:4e:0b:30:12:7a:a6:3b:5e:4f:58:69:64:15:
5e:13:42:7d:11:78:1f:2b:4e:25:09:7d:5c:0b:d0:4a:50:b0:
f0:57:53:21:c7:04:d4:1e:2b:77:0b:b0:56:f1:3b:b7:6f:bd:
28:10:ec:2d:60:54:a4:f5:03:0d:c6:a8:0e:c8:2c:cd:d7:2d:
34:07:1f:19:08:f6:da:c8:bf:52:90:3c:49:0d:59:d4:aa:5a:
1e:8c:53:e9:c6:17:e5:07:62:28:c5:d5:8b:ec:10:c7:3d:09:
38:4d:21:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 14:47:56 2025 by rpki-client