Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: 22Y+tUg4YYiZU3UOIlQoNh9Ob/PD8vDJ0xZOiKQcPhc=
Subject key identifier: 60:41:70:27:B2:9F:05:02:F7:A4:EE:17:05:0B:30:1F:16:FA:81:1E
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 0199239F87B3A6F8067032C7042CACC039BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 0587
Signing time: Sun 07 Sep 2025 10:01:21 +0000
Manifest this update: Sun 07 Sep 2025 10:01:21 +0000
Manifest next update: Mon 08 Sep 2025 10:01:21 +0000
Files and hashes: 1: 4boeBlk7o1BaTuZdEOVxwc-y71c.roa (hash: RGuBRtk99FPER/w90B0w3hwMlxFq4HdA7ruV2FfydxY=)
2: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: DzRpI6IBzmjOWHEp84W2eCBnuDl8w4pkUoMLGaP66ok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:87:b3:a6:f8:06:70:32:c7:04:2c:ac:c0:39:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Sep 7 10:01:21 2025 GMT
Not After : Sep 8 10:01:21 2025 GMT
Subject: CN=60417027b29f0502f7a4ee17050b301f16fa811e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:e9:c3:10:fd:11:ba:31:c3:70:7d:e4:04:
97:d2:7d:a1:79:24:69:82:9f:2f:6a:19:8d:9a:52:
02:43:81:ff:1f:21:e5:4a:be:73:0e:2e:1b:ba:da:
15:cc:96:dc:b3:e5:f6:55:05:7b:70:c9:be:63:29:
65:19:43:b3:3f:86:89:cc:71:8b:f7:76:b8:3a:44:
20:df:60:c5:61:3c:8b:5d:e9:41:94:58:63:7e:2c:
d0:2e:a4:71:6b:f3:94:f6:bd:c3:e6:3e:84:c1:c8:
a9:da:56:6a:6d:16:ae:a2:e5:5b:44:72:33:d6:45:
fa:66:3d:06:2d:09:d1:14:81:6c:8d:9c:e2:61:78:
d3:0e:5c:97:13:84:ff:34:a8:3f:97:c6:89:3b:fe:
aa:70:b7:d7:3b:df:c2:3f:b7:6b:22:d8:71:83:b4:
ab:18:72:35:d9:8c:e2:e4:35:cf:39:d5:20:22:ce:
77:f2:b5:59:75:93:b4:2e:c2:a5:bc:db:65:9b:ca:
86:5c:bf:3e:59:ed:aa:2d:a1:6e:e3:88:64:3c:32:
a0:d5:2e:6e:e0:fd:d8:f8:43:27:03:89:fc:15:fd:
b9:74:d6:ad:8a:95:56:5e:7e:fa:8e:44:e2:7c:74:
bd:58:b5:a7:24:38:77:4c:54:31:80:94:2b:8e:af:
fa:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:41:70:27:B2:9F:05:02:F7:A4:EE:17:05:0B:30:1F:16:FA:81:1E
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:9d:ba:05:a5:cb:14:60:b1:f6:cf:b0:ac:64:bd:ce:8a:8f:
2a:8c:c5:d3:df:ae:b1:48:8c:bd:85:8f:96:d3:4c:55:33:a4:
6b:4c:bd:21:20:3c:fb:84:88:19:dd:c0:d4:e9:2b:44:dc:91:
85:e7:8b:dc:10:83:21:42:c0:78:25:8d:ff:9a:64:d5:26:6e:
fb:81:5c:52:50:78:f3:31:21:a1:07:fb:2a:1a:f3:33:8c:53:
4a:64:9a:ba:69:11:0e:28:6d:15:28:df:ea:67:78:81:bf:75:
87:f8:62:87:ff:88:1a:07:d0:1b:13:77:9e:ff:e0:87:c8:c8:
92:ab:12:91:82:57:51:9f:5e:c5:df:91:9e:65:2b:2e:98:4a:
e1:1f:ed:fd:ef:20:36:cb:20:f9:6e:c7:13:b8:58:50:81:e7:
51:c0:f3:0b:72:85:71:9d:02:b6:c5:a8:b2:14:1c:ed:7d:07:
85:31:49:d5:c7:5f:b2:12:32:48:cf:f3:c8:16:92:27:f4:ea:
0d:66:54:52:3f:8d:f8:56:c4:cd:61:8f:7a:cf:a4:f2:88:d2:
e3:2c:9e:12:c8:9b:9a:c7:fa:4c:6e:ae:26:36:8d:d0:0e:f7:
ff:a4:cd:d3:9e:cd:04:41:4d:6f:ab:cd:1d:0e:f1:65:11:a9:
e0:a6:de:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:47:44 2025 by rpki-client