Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
File: PZlE6PVlGxvS8KngBoZfOmuB62E.mft (raw, json)
Hash identifier: W7J6L800R9Dkbsbhftxo+FyxX5ndLhwpxK0EF4xJl4A=
Subject key identifier: 58:F1:EE:EF:F4:99:C1:E3:84:F0:3A:FD:5B:5D:DF:C1:0C:2E:B2:D2
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial: 019921B07A06D8C6553396CCA67A37A89F5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 01:00:37 +0000
Manifest this update: Sun 07 Sep 2025 01:00:37 +0000
Manifest next update: Mon 08 Sep 2025 01:00:37 +0000
Files and hashes: 1: PZlE6PVlGxvS8KngBoZfOmuB62E.crl (hash: XLfB/raOR82PixOg47h5GgKkvi/bBXx1PmW6FNP4PYc=)
2: tlchQmDxgjTRo1pLaspfZw12O3A.roa (hash: 6bDu460ilvbyFwMJbm1Vw+QewREO9nGYqnB3iYaAR4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:7a:06:d8:c6:55:33:96:cc:a6:7a:37:a8:9f:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Validity
Not Before: Sep 7 01:00:37 2025 GMT
Not After : Sep 8 01:00:37 2025 GMT
Subject: CN=58f1eeeff499c1e384f03afd5b5ddfc10c2eb2d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e6:fb:14:97:ea:25:80:46:44:9d:e7:e2:51:
52:2d:b7:46:ac:ae:62:c3:4f:f7:d1:6a:42:e4:33:
5f:73:35:bc:c6:3a:d2:e3:53:3a:cd:d8:84:58:5d:
a4:49:f1:70:99:96:e4:f3:3b:5c:28:d4:6c:58:9b:
03:f1:77:5a:b3:61:12:75:b0:9c:0e:35:7c:2d:eb:
fc:98:5e:f6:64:c4:3b:25:91:0c:0f:b0:7f:40:39:
85:2b:bc:29:a3:cb:ce:16:e4:6a:91:5e:6a:b3:7b:
93:10:01:33:58:44:7f:a0:d7:b3:44:d8:27:c5:78:
63:ce:75:50:37:b7:44:be:5a:c5:8f:e0:41:dd:2d:
81:24:df:23:41:f6:07:a5:06:be:d6:7f:c0:93:9b:
e2:bb:18:c5:45:ed:5a:f3:5f:23:87:57:16:98:17:
74:61:a6:48:c8:89:3b:0b:62:97:6b:ea:a8:0d:dc:
e0:00:06:e2:c2:4d:6c:e6:bc:0f:02:7f:51:41:ff:
fe:25:8b:82:09:ce:5f:fa:4e:ed:95:08:4f:d6:69:
f5:76:e7:89:f6:12:e5:ce:cb:fc:3f:6f:6a:32:fd:
c7:5f:0c:69:75:77:a7:63:93:93:88:6f:ed:44:d5:
ba:3e:64:5e:dd:6e:c5:64:78:7e:52:d8:09:bf:5a:
40:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F1:EE:EF:F4:99:C1:E3:84:F0:3A:FD:5B:5D:DF:C1:0C:2E:B2:D2
X509v3 Authority Key Identifier:
keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:50:f1:5c:08:97:49:ee:6e:e1:42:f0:6f:12:7e:07:72:57:
19:72:68:9d:b2:a5:3e:db:7c:ae:5e:0f:0a:d0:36:e6:8c:c7:
0c:7c:5c:14:90:4f:44:35:bc:92:f3:d1:4b:83:8c:b2:12:ca:
4f:fd:77:6e:fe:39:92:cc:87:28:1c:61:76:df:aa:74:e9:19:
e6:fa:d5:72:5d:05:00:ca:73:92:d8:22:0c:e9:21:b9:66:84:
11:b2:cb:02:47:ba:d6:c5:2f:62:57:72:43:cf:ea:43:58:7a:
eb:c0:3e:1b:39:9f:91:15:4b:f1:53:c3:02:a9:49:77:ad:a1:
3f:c3:61:61:ea:ed:64:d3:0a:5b:bc:6c:65:56:63:c4:0a:0d:
c2:44:0a:1e:ca:74:f6:a8:bd:cc:4a:2f:96:e7:73:36:f1:09:
8e:1f:90:c7:8d:a2:18:03:1f:e5:97:77:82:2a:61:fa:5d:73:
0c:a0:3a:0a:9f:44:fa:9b:51:ec:4f:38:b8:11:d4:46:b1:f9:
85:d3:7d:f1:19:67:4f:72:0a:87:bc:91:53:06:5c:2c:fd:86:
3a:f1:b7:68:a2:c0:74:ef:2f:b5:29:62:7b:21:5c:e0:61:3b:
39:77:9d:04:c5:7d:b9:b9:98:22:b7:34:a8:59:98:a0:51:70:
df:c2:d3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:11:58 2025 by rpki-client