Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json)
Hash identifier: xSWdsXbW4Pu9Es0swfUwHXRA2IYGhbqLrPDpCHYkCdg=
Subject key identifier: 23:60:1D:52:AD:38:78:F1:FF:67:9E:D2:07:AA:5C:3E:CB:B4:A7:AF
Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614
Certificate serial: 01974AB15872AF286912F651CAA9180C913A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
Manifest number: 0839
Signing time: Sat 07 Jun 2025 14:00:25 +0000
Manifest this update: Sat 07 Jun 2025 14:00:25 +0000
Manifest next update: Sun 08 Jun 2025 14:00:25 +0000
Files and hashes: 1: jCdTYmvYMmAVCpwgaEf86kYug58.roa (hash: ztqwVKV63uIGzbrcGebHuh3wlQjH5xZyStSjcOzpGqU=)
2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: LnGTqU5U9MxFqkan/yblwza2RgzADE94/3Xs5JjLxLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:58:72:af:28:69:12:f6:51:ca:a9:18:0c:91:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614
Validity
Not Before: Jun 7 14:00:25 2025 GMT
Not After : Jun 8 14:00:25 2025 GMT
Subject: CN=23601d52ad3878f1ff679ed207aa5c3ecbb4a7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:4c:d2:d8:cb:66:6d:4b:a2:09:16:08:e4:
79:2e:f4:46:95:38:71:98:f3:f2:a8:ad:77:12:6f:
91:1f:78:04:5c:ac:b5:6f:32:37:c0:25:02:f4:60:
a7:73:38:94:02:b6:61:db:0e:d5:1a:93:3c:53:dd:
4d:33:a2:ed:29:97:fd:54:7e:1c:0a:9a:93:6c:40:
25:f9:82:29:5b:a9:6c:ad:59:21:5d:71:29:3e:82:
56:bb:4e:7a:ef:42:08:7a:a7:10:2b:13:67:e0:60:
80:b2:a9:71:e6:f6:61:8a:4b:cf:7e:0a:14:67:ea:
8b:8d:04:7b:ed:61:f8:65:30:76:27:be:5e:4a:bc:
00:ac:2d:6c:cb:ac:80:5f:b7:d1:d4:e7:b3:c1:5b:
d8:60:f3:1b:49:c4:0e:d3:79:bb:16:ca:4f:f5:36:
23:95:ce:88:12:0d:fa:d4:dd:57:6e:0a:81:d5:67:
81:6e:a9:9f:43:33:f1:b0:00:29:23:d2:a7:ab:9b:
7c:58:45:95:b0:cf:4e:14:a9:20:a8:5b:65:6b:43:
bd:0d:f2:1d:b8:09:f3:59:b5:45:ac:45:60:86:b9:
ee:c9:45:2f:13:c5:48:06:47:3a:7e:cb:e2:f3:0d:
71:fe:1f:0d:10:03:51:5c:4b:49:84:ee:77:8d:6f:
a1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:60:1D:52:AD:38:78:F1:FF:67:9E:D2:07:AA:5C:3E:CB:B4:A7:AF
X509v3 Authority Key Identifier:
keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:5c:17:2f:c0:6a:fb:35:03:b3:6b:51:cd:e5:08:95:d3:36:
51:b2:3e:74:e5:b4:db:04:d9:51:03:83:9c:78:82:96:48:0a:
12:6a:75:e8:1f:73:8a:e0:cb:ce:b5:96:b6:8b:d1:38:31:d2:
de:95:d3:54:3b:3a:86:44:dd:fd:a1:47:bc:f2:d1:49:5f:06:
73:3d:36:ba:16:17:54:d8:8f:ee:d5:3f:08:79:27:6c:f6:e3:
3a:eb:4c:b0:e9:64:10:52:e1:cb:db:02:b0:bd:04:a2:74:a7:
f5:03:4b:77:e1:fa:8d:ea:df:c0:4f:44:62:1c:bb:6e:3a:1f:
98:2e:3c:6b:52:7d:60:7f:64:c2:34:7c:3a:be:4c:d6:65:46:
17:4e:43:55:62:a2:a5:ea:95:e5:13:cb:3d:f0:a9:1c:76:85:
4e:1d:63:4a:0e:8a:47:d9:68:ad:95:2a:44:e8:67:42:9c:50:
8b:2f:90:65:86:e4:3b:ab:6f:20:f4:3a:80:2c:79:e7:46:fe:
8a:2b:e6:33:0f:cc:70:38:1f:fc:f5:e1:43:db:00:f4:c8:9b:
5d:62:29:80:68:df:0b:2a:c7:5f:28:e2:1b:15:ed:03:2d:dc:
d7:83:06:f8:c7:ad:17:e2:c7:33:7a:27:90:89:2a:5f:f5:98:
03:80:16:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:26:17 2025 by rpki-client