
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
File: PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json)
Hash identifier: o/u/6l0oAabS/qW8gFPHAbAZ/vQsb/e9pDKnbRgXmm4=
Subject key identifier: 4C:31:51:4C:BE:BE:3E:54:A7:7C:91:AB:FB:5F:D6:49:40:34:7F:AD
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial: 01975BDC09FF02229C8C25817C8DB6BA6569
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
Manifest number: 1587
Signing time: Tue 10 Jun 2025 22:00:36 +0000
Manifest this update: Tue 10 Jun 2025 22:00:36 +0000
Manifest next update: Wed 11 Jun 2025 22:00:36 +0000
Files and hashes: 1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: E0AkQ84w+pwCqTJyoEvlpiF6JbzHU+KhM90Zau/jHRk=)
2: tlchQmDxgjTRo1pLaspfZw12O3A.roa (hash: 6bDu460ilvbyFwMJbm1Vw+QewREO9nGYqnB3iYaAR4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5b:dc:09:ff:02:22:9c:8c:25:81:7c:8d:b6:ba:65:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Validity
Not Before: Jun 10 22:00:36 2025 GMT
Not After : Jun 11 22:00:36 2025 GMT
Subject: CN=4c31514cbebe3e54a77c91abfb5fd64940347fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c9:c1:e3:3f:82:91:59:7e:57:ce:99:2b:9b:
56:87:cc:e7:8c:9f:d7:16:43:da:79:e2:fe:35:c2:
30:a2:df:82:91:b6:42:d0:ee:44:a9:b2:34:68:13:
1f:80:9c:50:ee:93:73:20:bc:10:10:21:ce:56:7d:
37:0c:9b:6c:8c:6d:07:c5:40:ef:53:51:02:18:bf:
e1:fa:78:88:c4:cd:ef:5c:c2:69:d7:41:17:00:90:
7d:2a:79:45:cb:ff:42:92:03:1e:41:66:3e:a4:d0:
d6:41:91:8c:8f:8d:c6:4f:34:9a:4f:c1:37:af:33:
a1:7e:e7:8e:31:60:12:93:33:8b:0c:c5:0c:89:e0:
90:38:f4:77:09:d9:f6:75:d2:45:59:a0:32:4e:09:
19:5e:24:6c:70:a7:9d:5d:76:eb:b7:38:81:f3:92:
1e:5d:bf:c6:be:c2:1f:36:e7:ae:de:56:b4:d9:61:
a7:5f:69:b8:e4:82:b7:cf:bf:e1:4b:d8:b7:b5:d7:
38:40:17:d0:1a:98:b9:cd:62:39:b5:70:a1:84:9d:
c2:db:ca:2c:c4:0b:2d:67:59:fc:c2:94:c3:be:f9:
90:22:6e:c0:83:4d:38:0d:03:3e:52:20:6b:4c:f7:
d1:70:62:f7:93:c2:be:75:ee:db:7d:59:0f:10:db:
b0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:31:51:4C:BE:BE:3E:54:A7:7C:91:AB:FB:5F:D6:49:40:34:7F:AD
X509v3 Authority Key Identifier:
keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:b3:6e:71:e4:05:25:10:03:a7:b1:45:b5:46:83:13:17:5a:
c5:e0:f5:b4:cd:3f:85:b2:e5:38:35:28:df:72:db:1f:d0:70:
75:87:78:6d:0c:2f:ff:fd:97:79:72:b3:7b:07:dd:a6:cd:69:
88:bb:8c:c6:e2:dd:d3:f4:11:e7:80:59:10:70:9d:e3:48:a5:
25:c6:20:b7:fe:b3:4c:f9:51:b8:57:37:62:fa:3c:27:aa:3c:
ae:07:da:31:25:20:cd:0c:0b:27:02:d5:59:65:00:a8:56:d3:
f4:90:c2:b4:7f:a7:b9:68:e2:80:06:61:2a:10:82:d6:7d:17:
58:6d:7f:a7:f7:bd:bf:8e:de:76:17:a5:37:79:c5:1c:9b:f9:
5b:04:0c:d2:16:a0:f9:85:cf:ad:b6:a7:0e:c3:cf:c5:6b:a0:
4b:ed:e5:23:f5:84:72:f0:96:81:82:7d:23:31:d7:91:d7:38:
2a:3f:b0:b9:ec:05:b2:62:28:5a:01:04:1a:f8:8b:17:6f:b0:
fc:66:24:ac:9b:b2:99:a6:21:c0:c5:02:ac:84:1e:f3:81:b7:
37:07:00:20:bf:bb:78:7e:9f:5b:94:66:a0:ba:b7:8a:35:77:
bf:4c:26:4d:e0:ee:ee:6f:70:2b:e2:7d:b8:e4:55:00:b7:74:
04:e7:15:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:38:25 2025 by rpki-client