Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json)
Hash identifier: mIXIIAbbuWOxyQBq1njG5StbzriNrn64WcsuVPdPhdU=
Subject key identifier: CC:57:EC:26:A8:B2:91:7E:7F:FF:A3:C7:DB:2D:89:22:8B:A8:89:67
Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Certificate serial: 01974B8DA5E98FD1294A29D8D6357BE42C9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
Manifest number: 0E04
Signing time: Sat 07 Jun 2025 18:01:03 +0000
Manifest this update: Sat 07 Jun 2025 18:01:03 +0000
Manifest next update: Sun 08 Jun 2025 18:01:03 +0000
Files and hashes: 1: J60Pw4hyKKjQhqi1eSTzFtauoi0.roa (hash: Pts66hPVy/S0JFZfVc88DLunALgdL+k1upaL/I3M97g=)
2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: /s/r3kEr6TNPtroI821yBrIdwGaHF2GUuPRu3NpgWak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:a5:e9:8f:d1:29:4a:29:d8:d6:35:7b:e4:2c:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408
Validity
Not Before: Jun 7 18:01:03 2025 GMT
Not After : Jun 8 18:01:03 2025 GMT
Subject: CN=cc57ec26a8b2917e7fffa3c7db2d89228ba88967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:26:a1:6a:7e:20:8a:82:cf:7b:e6:c9:01:ef:
b5:74:7d:34:5f:b9:18:4a:e8:29:69:ab:a2:33:5b:
64:b4:cd:0a:d2:e8:c1:c0:ac:ea:f6:7f:56:a2:60:
8a:dc:9b:0f:f4:56:51:15:55:ee:95:6c:22:12:c5:
d5:9d:2e:10:e8:fe:e5:3f:ff:35:2e:5e:2b:68:76:
64:a4:5a:42:01:5c:14:e0:d3:09:e5:8c:83:b1:ed:
af:09:55:3c:15:3b:72:21:b9:7d:07:bb:a4:9a:d4:
13:3e:f6:f9:93:81:f4:52:72:a1:de:b6:81:03:cd:
f7:a1:f8:1b:2e:83:bc:13:9c:61:0c:0a:9b:f8:8d:
73:ee:f3:0d:1a:e1:2a:0c:1b:14:37:42:d3:07:be:
bd:f9:e6:cd:fc:34:c3:ee:f7:a1:01:06:a8:ab:b4:
c2:04:59:98:89:9e:39:27:9d:53:8a:eb:9e:24:ba:
8b:dc:31:bb:33:eb:1c:57:3d:0f:33:64:4a:7d:ea:
2e:7d:c2:da:4c:dd:19:1b:1d:a0:c4:cf:06:9d:03:
8a:b5:6a:9d:3e:a5:29:c6:82:5c:d7:6c:49:84:ef:
a7:df:03:a1:34:4a:a2:8f:c2:1d:76:c8:94:53:03:
20:25:51:71:5b:18:3d:08:06:6e:4f:50:e5:90:04:
22:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:EC:26:A8:B2:91:7E:7F:FF:A3:C7:DB:2D:89:22:8B:A8:89:67
X509v3 Authority Key Identifier:
keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ea:64:62:61:d5:00:81:d3:11:3e:70:a7:d9:eb:a7:49:de:
93:59:5a:bc:53:28:3e:fd:09:f0:ba:33:8e:fc:40:55:fe:a5:
99:94:0f:26:d5:73:b5:09:c6:4b:36:6b:89:04:e8:ee:d6:95:
80:d3:af:09:22:b8:cd:60:61:19:7f:88:d3:67:0c:bd:05:52:
52:11:6b:70:94:f9:cb:cd:7f:91:b2:13:93:09:35:48:17:51:
6f:43:ac:db:20:40:57:31:e3:25:49:ed:b4:16:33:9e:e1:f1:
2e:e9:3f:94:6c:47:87:1f:2a:23:ba:47:ca:bb:a6:c8:c2:06:
56:d1:d9:f8:f7:fd:5e:ac:5f:91:d7:e8:54:75:21:72:2d:55:
44:08:83:50:06:46:ac:5a:ee:db:4a:ab:f7:17:83:16:50:f4:
27:93:c7:56:61:4c:29:ba:22:af:b0:c4:91:91:9a:12:a6:0e:
5c:c7:76:0e:b0:41:2c:2b:d5:d6:34:76:92:a7:1c:d2:02:42:
c9:cf:77:8a:30:81:e6:30:7d:6b:ed:88:2c:ba:d7:6f:9d:32:
a2:32:e2:6d:b5:d6:be:d2:6f:37:fc:37:d4:e9:b9:59:a6:89:
f1:0a:80:92:93:14:2e:f3:22:e6:02:91:a2:e1:ef:92:e2:20:
9d:1d:99:5a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLjaXpj9EpSinY1jV75CyeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNzY3ZDVmZTdlZjNmMjI4YmRkYmRlNWEwZTVjMTgwMDZm
NzU0MDgwHhcNMjUwNjA3MTgwMTAzWhcNMjUwNjA4MTgwMTAzWjAzMTEwLwYDVQQD
EyhjYzU3ZWMyNmE4YjI5MTdlN2ZmZmEzYzdkYjJkODkyMjhiYTg4OTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1iahan4gioLPe+bJAe+1dH00X7kY
SugpaauiM1tktM0K0ujBwKzq9n9WomCK3JsP9FZRFVXulWwiEsXVnS4Q6P7lP/81
Ll4raHZkpFpCAVwU4NMJ5YyDse2vCVU8FTtyIbl9B7ukmtQTPvb5k4H0UnKh3raB
A833ofgbLoO8E5xhDAqb+I1z7vMNGuEqDBsUN0LTB769+ebN/DTD7vehAQaoq7TC
BFmYiZ45J51TiuueJLqL3DG7M+scVz0PM2RKfeoufcLaTN0ZGx2gxM8GnQOKtWqd
PqUpxoJc12xJhO+n3wOhNEqij8IddsiUUwMgJVFxWxg9CAZuT1DlkAQi0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMxX7CaospF+f/+jx9stiSKLqIlnMB8GA1UdIwQY
MBaAFD12fV/n7z8ii9295aDlwYAG91QIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8wNzQ5ODItZGIwMS00NzQ3LTlkMTIt
ZmY3MmU0ZmE5M2E1LzEvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS8wNzQ5ODItZGIwMS00NzQ3LTlkMTItZmY3MmU0ZmE5M2E1
LzEvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYupkYmHV
AIHTET5wp9nrp0nek1lavFMoPv0J8LozjvxAVf6lmZQPJtVztQnGSzZriQTo7taV
gNOvCSK4zWBhGX+I02cMvQVSUhFrcJT5y81/kbITkwk1SBdRb0Os2yBAVzHjJUnt
tBYznuHxLuk/lGxHhx8qI7pHyrumyMIGVtHZ+Pf9XqxfkdfoVHUhci1VRAiDUAZG
rFru20qr9xeDFlD0J5PHVmFMKboir7DEkZGaEqYOXMd2DrBBLCvV1jR2kqcc0gJC
yc93ijCB5jB9a+2ILLrXb50yojLibbXWvtJvN/w31Om5WaaJ8QqAkpMULvMi5gKR
ouHvkuIgnR2ZWg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:02:59 2025 by rpki-client