Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
File: PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft (raw, json)
Hash identifier: 3LZtS5ysg45LgV7LDUvx6lWsCe+UlEMW/InhMkH2YHk=
Subject key identifier: 84:A6:00:2E:46:75:C9:50:10:1A:D7:50:41:5E:F8:36:47:7B:22:72
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 01974B8D42F4D456253C956EC616A3F2D5EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
Manifest number: 0A9A
Signing time: Sat 07 Jun 2025 18:00:38 +0000
Manifest this update: Sat 07 Jun 2025 18:00:38 +0000
Manifest next update: Sun 08 Jun 2025 18:00:38 +0000
Files and hashes: 1: 4HFAWmQXrJvJPwvQ-nacdREAjwA.roa (hash: smesMzM3abS3/IiONa1NHYIBIDWL+noqBcVPlJGz8P8=)
2: PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl (hash: rC+NfzOdpOJJzvKdh3QfT1gGasu8YNO7NV15buiOLrQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:42:f4:d4:56:25:3c:95:6e:c6:16:a3:f2:d5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: Jun 7 18:00:38 2025 GMT
Not After : Jun 8 18:00:38 2025 GMT
Subject: CN=84a6002e4675c950101ad750415ef836477b2272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:68:91:0b:b9:b6:a3:4d:5c:ba:7c:e6:77:88:
20:a7:68:fa:c3:4f:15:ef:e5:8e:2e:86:cd:13:e6:
1b:8b:42:b9:97:cc:1c:af:1c:dd:3b:b9:2b:a3:eb:
71:83:c2:e1:19:42:3b:74:ab:6d:43:a2:d1:d3:2c:
ef:55:4e:ae:c2:62:e3:ec:7c:1f:a0:75:cd:35:1a:
82:eb:07:4a:3b:8d:83:3d:9b:bc:f9:fc:85:dd:28:
b4:19:1d:3b:29:17:83:8a:c7:f2:6c:78:3b:92:a3:
59:20:60:1c:0e:98:a3:02:13:21:4f:46:73:38:a8:
a3:94:cf:3d:21:fc:63:28:35:cd:be:f9:fc:56:bd:
54:04:c7:ec:27:5e:0e:43:87:f3:84:62:a9:d8:f6:
67:56:67:76:2c:b5:b9:ab:35:11:3d:46:23:cb:2e:
41:5a:0c:c0:54:16:eb:8c:95:ef:41:30:2c:51:4a:
5b:3d:7d:b3:be:3a:ef:5b:43:33:9c:57:35:11:87:
a3:29:95:0f:0a:8b:00:76:ca:e3:34:97:19:e2:17:
8d:0c:89:03:d4:62:95:9e:32:cc:e6:9b:a6:05:c0:
09:87:8f:9d:ab:4c:38:40:57:9d:4e:a3:af:71:b7:
98:b4:76:cb:d6:8e:76:9c:81:16:79:64:03:24:9c:
24:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A6:00:2E:46:75:C9:50:10:1A:D7:50:41:5E:F8:36:47:7B:22:72
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f2:77:eb:21:5e:ca:15:fa:00:58:c1:51:0e:4f:16:0b:cf:
a7:27:b5:e1:b5:4f:9f:ba:4e:11:33:f7:1b:18:bd:08:25:67:
33:6f:ce:a1:a8:f1:8d:08:9d:03:2a:02:77:8f:5b:59:1e:e7:
d8:29:d0:77:10:2c:01:f6:54:20:01:75:8b:49:a4:05:5b:81:
b0:63:d6:6e:57:9a:f7:b6:d6:7e:a4:fe:56:1a:f7:ca:da:b9:
73:f0:cc:70:64:d9:f1:59:c7:7c:dd:88:87:01:83:8d:d8:b8:
c3:45:b3:03:1e:93:96:b2:09:e5:bd:d9:78:9c:ae:09:b9:55:
d6:ab:9e:74:a5:6f:b0:df:bb:8f:d6:08:23:86:11:da:c3:59:
3d:67:d2:be:c7:55:06:6f:80:7c:7d:c0:b1:89:9d:f2:39:1f:
03:f8:da:f8:c3:03:fe:23:c4:1d:0c:8e:4a:e1:32:7c:67:5b:
2a:16:5a:a5:3f:e7:33:9e:97:2d:e3:d0:5f:ae:03:e8:42:ed:
a6:1f:fe:f4:c3:a3:ad:c6:cd:ee:99:6d:a8:0a:ef:f6:05:fc:
e6:b8:fa:f6:5e:be:32:d2:2d:1a:f5:2f:d9:81:a0:88:a0:de:
04:5d:8f:27:4b:02:55:6f:0f:f2:c0:90:d0:9b:13:47:e4:f9:
33:62:1c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:35:29 2025 by rpki-client