Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier: LKNHRjcgYJvwhES5ioa4TcfRnmfquZ1qdUC+F99qe3c=
Subject key identifier: E0:F2:8C:24:65:F9:11:CA:9F:1C:6F:9B:11:60:85:92:0C:D8:77:4F
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial: 019A4EF4C5F71142D09B7D188D28D70A3769
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number: 1080
Signing time: Tue 04 Nov 2025 13:00:55 +0000
Manifest this update: Tue 04 Nov 2025 13:00:55 +0000
Manifest next update: Wed 05 Nov 2025 13:00:55 +0000
Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: ysrhw+7jF7JqwWZIi6oGHTa4LvaTdUR+OgCSt4XdHPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:c5:f7:11:42:d0:9b:7d:18:8d:28:d7:0a:37:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
Validity
Not Before: Nov 4 13:00:55 2025 GMT
Not After : Nov 5 13:00:55 2025 GMT
Subject: CN=e0f28c2465f911ca9f1c6f9b116085920cd8774f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:70:33:49:80:ed:9d:ee:02:c1:8f:ae:c5:0f:
f9:88:a7:1a:e1:dd:d9:ed:3d:9b:9c:45:38:28:f4:
81:9a:77:22:f7:6d:f2:6b:7e:92:07:67:98:a1:4f:
a1:cd:aa:00:54:be:67:de:9f:c0:82:31:94:0a:bd:
46:1f:a5:a0:01:09:ca:02:da:e2:d5:67:cf:86:e7:
cd:72:f4:21:12:5d:80:60:94:ed:a8:c0:14:5b:15:
60:f6:e3:4e:0a:42:2d:0b:2e:ae:40:e6:b3:41:55:
00:99:5d:6e:87:f6:46:e0:ce:73:3b:05:98:a9:8c:
d9:b0:70:fa:18:bd:c2:05:21:33:76:37:dc:ac:c3:
01:91:ea:fa:25:a3:f4:5a:b4:36:5a:bf:91:70:87:
ee:df:e2:fd:2e:7c:b9:7f:01:f2:d4:a6:ed:35:90:
7f:71:7a:44:bb:7e:81:6a:f8:86:e1:34:bc:63:2e:
48:fb:82:e8:eb:65:d5:5c:a4:d3:42:28:08:c8:ad:
6c:55:99:7b:4a:1f:1f:c8:fa:5e:44:03:a1:f1:53:
b9:29:37:14:74:19:f0:92:c8:3b:88:3e:24:fd:25:
d3:ee:b7:4f:66:0d:cb:44:fd:a6:1d:56:eb:9a:6f:
16:e1:59:1a:41:f5:4f:03:46:99:04:e9:ad:a4:b4:
0d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:F2:8C:24:65:F9:11:CA:9F:1C:6F:9B:11:60:85:92:0C:D8:77:4F
X509v3 Authority Key Identifier:
keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:71:53:a9:f1:43:3f:2a:e9:54:c8:56:c3:b1:89:4f:9f:fb:
9f:20:3f:35:55:17:ff:a3:d3:85:5c:24:9f:c0:e3:5e:32:02:
69:8d:ca:c0:08:d3:3a:68:29:02:57:48:65:0b:37:1d:0d:10:
3a:78:ab:fd:4c:12:24:9d:06:9f:0d:92:7d:04:c6:4f:eb:55:
47:6a:8e:a3:9f:fb:ec:22:d9:20:bd:11:77:17:51:2d:9a:54:
47:64:e5:56:75:fa:f7:89:19:30:09:28:e9:29:a6:e9:ab:21:
7c:6f:99:0a:33:9b:6d:d8:ef:a2:5d:17:48:96:d3:45:d7:1a:
3b:eb:3c:03:00:d0:08:65:b7:ee:72:52:a5:ab:a8:b6:2a:4f:
2a:ea:f6:8a:e4:df:ea:07:9b:9d:17:b1:b3:36:83:5c:d4:5e:
d8:98:87:bc:6e:39:b0:4b:24:b8:2d:44:b2:2e:d1:6d:dd:0b:
eb:a9:04:58:3a:24:b0:fb:d7:0f:e2:7f:a0:69:63:4a:f0:f4:
1d:ec:f8:1c:0e:40:65:2b:de:b5:31:06:55:a6:9e:4c:77:74:
19:11:f9:29:a5:44:a3:29:85:02:31:3c:32:dc:1f:7f:c2:c9:
66:ac:fb:ff:dc:90:68:b5:c7:e8:8a:e5:92:c8:d6:36:97:30:
41:79:0f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:41:44 2025 by rpki-client