Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
File: PzTUjYQaUqQifUn6PvhbpavyIkg.mft (raw, json)
Hash identifier: FjDi3KL049PGYhXG7D6bPvUQrdImPoAHu2QPmxVMwvg=
Subject key identifier: 00:4A:3F:1A:29:A9:60:F3:19:AC:93:CE:FE:BE:3F:69:10:E2:DD:F0
Authority key identifier: 3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
Certificate issuer: /CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Certificate serial: 01974A43CD58F40F2C574558EEC79FC908EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
Manifest number: 0492
Signing time: Sat 07 Jun 2025 12:00:46 +0000
Manifest this update: Sat 07 Jun 2025 12:00:46 +0000
Manifest next update: Sun 08 Jun 2025 12:00:46 +0000
Files and hashes: 1: 4boeBlk7o1BaTuZdEOVxwc-y71c.roa (hash: RGuBRtk99FPER/w90B0w3hwMlxFq4HdA7ruV2FfydxY=)
2: PzTUjYQaUqQifUn6PvhbpavyIkg.crl (hash: wDZpkmfgMengXmunYxcjYFJocICox8RFjYKo+HrYmEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:cd:58:f4:0f:2c:57:45:58:ee:c7:9f:c9:08:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f34d48d841a52a4227d49fa3ef85ba5abf22248
Validity
Not Before: Jun 7 12:00:46 2025 GMT
Not After : Jun 8 12:00:46 2025 GMT
Subject: CN=004a3f1a29a960f319ac93cefebe3f6910e2ddf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2d:df:0a:a9:f4:ed:d3:ae:04:f4:ef:2b:e9:
c3:61:6c:53:39:b8:44:7b:ab:48:1d:bf:fa:df:91:
ef:d2:90:70:54:e0:d0:8a:2e:67:23:28:1c:ec:ea:
2f:4c:20:34:df:54:8c:fa:78:09:50:77:21:49:8c:
9c:40:28:0b:dc:6b:50:4f:7d:d7:47:6b:53:ce:99:
91:46:99:41:da:63:21:13:39:b8:11:87:85:b2:d1:
75:a4:f7:f0:a1:b2:2e:6b:a2:ce:03:5a:7e:ed:58:
bc:77:d6:94:4b:d8:7e:05:02:c0:09:52:56:3d:94:
26:f6:a1:78:08:61:49:f7:b8:35:1d:19:66:8e:5b:
4e:e3:00:ca:2d:ac:85:d4:2f:b0:f5:8a:15:1e:f6:
35:9a:54:ee:c8:5e:16:dc:e6:9f:28:51:7b:2f:5d:
ba:a4:e8:d4:c0:86:c5:89:d1:5e:95:77:18:12:65:
92:3f:4a:25:e3:5a:1a:dc:43:18:d8:8d:63:2d:01:
e1:44:b7:46:21:bd:d3:a0:0e:9e:b1:c7:76:6a:22:
7b:83:7b:a5:84:b2:40:82:0b:f0:00:2b:b6:74:2f:
68:fa:05:b1:d2:82:55:4f:22:5d:14:30:b7:6f:8c:
52:75:71:cc:a6:e0:8e:99:a7:0f:32:13:24:28:03:
71:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4A:3F:1A:29:A9:60:F3:19:AC:93:CE:FE:BE:3F:69:10:E2:DD:F0
X509v3 Authority Key Identifier:
keyid:3F:34:D4:8D:84:1A:52:A4:22:7D:49:FA:3E:F8:5B:A5:AB:F2:22:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PzTUjYQaUqQifUn6PvhbpavyIkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/eb7037-deed-4a23-b3a4-0458c15cfd0b/1/PzTUjYQaUqQifUn6PvhbpavyIkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:84:36:b4:38:24:a6:07:8f:99:31:76:f3:d2:6c:1a:6a:54:
b5:1f:79:91:f4:80:51:95:0d:bf:e9:07:44:f4:a5:4e:1f:ae:
0b:fd:30:35:e0:f5:82:33:3b:8e:03:73:cf:60:dc:81:7b:8b:
18:10:34:f0:3c:ea:27:c0:3d:4a:70:c4:5a:9e:e1:e2:15:ad:
b3:6d:eb:fc:9b:5c:c1:6d:3a:38:27:0e:3e:8b:4b:d2:73:c2:
ab:52:dd:c2:53:a0:94:33:15:40:0a:07:f8:aa:d2:be:c5:6d:
29:0b:ac:86:f9:27:01:43:18:25:37:a8:2c:d2:f7:6e:ab:e7:
55:e9:16:89:13:ff:3a:12:af:7c:03:b9:18:59:23:e0:89:44:
0d:ea:0d:8f:18:38:d9:10:35:3d:5f:f6:a2:81:73:cb:75:8e:
16:dd:69:23:2b:e2:61:da:1a:19:18:5c:a6:16:1b:86:fe:ce:
1b:08:b4:41:b2:4a:7a:23:75:ca:20:14:78:14:cb:de:12:0f:
03:45:25:af:23:2f:6b:18:65:5e:29:3e:6f:5b:ad:16:af:3f:
a5:72:be:dc:12:38:0f:68:d7:78:2e:ba:0e:7a:3a:d9:48:cc:
d8:d2:f9:69:73:c4:a8:5f:45:7e:3d:56:a5:75:ac:dd:3a:b9:
e4:2c:0d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:29:47 2025 by rpki-client