
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
File: PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json)
Hash identifier: 3f3BKNUu/AW49vQQG0BwxdWrE7HoNOY7/HwyC6vAxBU=
Subject key identifier: 55:7B:DD:36:E8:13:A8:DA:3B:58:8F:43:70:0C:E5:87:B3:80:17:63
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial: 01976B4EF9960CEF06733C5C4E5799AB47DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
Manifest number: 158F
Signing time: Fri 13 Jun 2025 22:00:27 +0000
Manifest this update: Fri 13 Jun 2025 22:00:27 +0000
Manifest next update: Sat 14 Jun 2025 22:00:27 +0000
Files and hashes: 1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: 8FalrQJ67fF7lZDQAuPTT755HwKDc+ANXv0wWaavgMY=)
2: tlchQmDxgjTRo1pLaspfZw12O3A.roa (hash: 6bDu460ilvbyFwMJbm1Vw+QewREO9nGYqnB3iYaAR4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:4e:f9:96:0c:ef:06:73:3c:5c:4e:57:99:ab:47:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Validity
Not Before: Jun 13 22:00:27 2025 GMT
Not After : Jun 14 22:00:27 2025 GMT
Subject: CN=557bdd36e813a8da3b588f43700ce587b3801763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4d:5e:e8:dc:bb:5f:29:67:52:ce:37:a1:50:
d4:55:25:f8:72:a1:7a:d0:49:92:e1:c6:b7:cc:71:
e1:ca:23:a5:27:1a:a5:48:9d:f7:ac:ab:f4:71:21:
5c:4e:ec:5b:5a:12:a5:86:0b:0d:54:33:39:66:1b:
ce:ec:c1:9c:72:4e:21:57:26:1d:19:01:87:fa:12:
03:55:cb:82:83:83:66:bb:56:4a:00:62:04:c4:c6:
68:cc:da:8c:a9:7b:1c:64:91:46:03:bd:d0:50:9b:
d1:fe:6b:b3:92:63:b0:18:24:38:e5:05:74:35:5a:
ac:53:b2:d6:70:22:fb:f3:49:0d:97:dc:01:2b:8b:
f6:55:ee:d4:f6:c4:69:8f:64:26:9b:ca:83:d8:8a:
c8:ad:d7:9d:7f:75:21:8b:0b:0d:8b:ff:9f:51:67:
70:51:2a:73:4a:39:55:2f:3f:12:a2:2d:fd:35:0d:
a5:d0:d2:fd:70:16:04:81:60:a8:0c:81:06:a6:e2:
34:15:27:9c:61:e4:a1:1b:67:b0:86:26:78:ca:5c:
8a:12:27:97:00:56:c2:38:1b:a8:69:38:59:48:69:
31:e6:46:3e:52:22:68:74:50:3b:0c:56:82:20:1e:
9e:2b:6a:e7:0d:a5:5d:93:2b:88:a7:48:70:85:6f:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:7B:DD:36:E8:13:A8:DA:3B:58:8F:43:70:0C:E5:87:B3:80:17:63
X509v3 Authority Key Identifier:
keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:04:46:9d:b3:72:91:38:c2:b4:6b:76:78:7d:28:82:a7:3a:
32:67:e4:90:89:d4:78:2c:9c:d6:9b:b6:79:c8:52:96:ea:03:
01:55:0f:82:5d:37:4e:35:1c:fb:cd:78:81:7c:7b:1d:da:bc:
c4:d4:a3:79:80:4d:67:98:50:45:35:87:49:9c:fd:04:2d:b1:
eb:3c:3e:6c:e5:56:4a:d1:14:a8:bd:95:29:f0:65:68:62:0f:
10:55:71:1f:47:08:44:fb:a2:32:11:02:88:7a:24:c9:43:05:
8a:7f:59:f7:73:79:58:b6:35:0d:5b:e7:cf:63:74:76:28:e1:
8f:39:ab:16:12:26:e5:6d:44:15:a8:83:a8:01:ff:08:86:d6:
b9:70:84:36:25:e1:ca:1a:3d:fa:fb:73:30:2d:31:ca:e3:82:
da:db:b4:79:d9:5a:b8:52:13:f6:94:0d:1e:54:bd:62:4b:ea:
8a:4a:76:b8:ae:8d:d1:56:a9:d5:05:49:d4:d5:17:f5:f7:f2:
57:ee:5e:e1:32:7c:b2:1c:76:96:8c:16:46:24:42:d8:30:13:
ba:f1:89:db:de:05:86:75:51:b1:12:22:37:a0:42:3f:d5:ce:
54:31:88:8e:f1:e1:5e:d1:85:b8:7d:f9:9f:ce:78:d7:1a:72:
59:e0:f5:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 07:15:15 2025 by rpki-client