Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: KMA+WtMuHzub/388IxX2TjACbhV06s5Ff5qhzcGk6e4=
Subject key identifier: D2:2A:C8:D5:8C:0E:AE:33:1C:1C:D6:EF:B9:A6:C1:12:C9:E7:70:54
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 019776E5BD8E99839860A0F8B33BFF623A95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 24
Signing time: Mon 16 Jun 2025 04:00:57 +0000
Manifest this update: Mon 16 Jun 2025 04:00:57 +0000
Manifest next update: Tue 17 Jun 2025 04:00:57 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: ITDKSpulOM0yo5uFx4fO9SJia9F5WCatdQOwJLd3NzA=)
2: wtKFjn0luOKNhpCBH0YWKLpKHKU.roa (hash: Z6YfBfkr08FSM8yJ/BnA5aNSDpKZqhovD8OdV3xTXpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:e5:bd:8e:99:83:98:60:a0:f8:b3:3b:ff:62:3a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Jun 16 04:00:57 2025 GMT
Not After : Jun 17 04:00:57 2025 GMT
Subject: CN=d22ac8d58c0eae331c1cd6efb9a6c112c9e77054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:35:14:24:d2:85:d2:2a:a3:0f:f8:07:85:f2:
13:fd:31:0c:fc:14:98:64:1c:d4:c4:1a:ee:51:23:
ef:da:fc:39:11:d3:5a:6a:05:8b:0f:67:ce:fa:e3:
5f:32:38:77:79:9a:6f:91:ff:34:46:d1:fa:8a:93:
c2:a0:c6:d2:51:af:7f:ab:3c:93:63:e8:6c:db:37:
a4:81:c5:99:ca:dc:6b:93:aa:0a:df:56:2e:aa:90:
5e:5d:5f:88:ec:f2:ff:d9:65:45:92:05:5b:2a:ad:
0a:b3:bc:3d:e6:52:69:d3:1c:4d:d8:57:0c:d0:51:
a1:92:83:e8:c6:1e:93:9c:f8:0e:7d:54:75:56:ca:
20:6f:94:f4:67:af:db:a0:06:60:35:75:bc:99:3e:
92:6f:e7:af:8e:9a:38:c6:b7:1b:26:d9:be:56:1b:
48:13:dd:f0:2f:94:f2:f8:27:11:d1:7f:60:2d:2c:
26:0d:16:2d:58:c6:a1:44:f8:d3:ef:4f:bf:da:d5:
80:e9:82:fb:d6:75:dd:d1:f9:93:6d:0c:42:7d:7e:
21:07:df:ec:91:7e:4a:25:05:48:74:69:6b:db:5a:
88:8b:62:2f:89:b8:0c:36:d2:e0:e1:7b:aa:d7:1d:
ef:84:c7:2b:5c:b9:09:66:e7:f3:2c:f3:18:82:62:
bc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:2A:C8:D5:8C:0E:AE:33:1C:1C:D6:EF:B9:A6:C1:12:C9:E7:70:54
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:8e:51:27:ad:93:17:50:21:6a:c1:2e:ca:8f:9a:78:c5:8e:
23:f2:17:ee:9f:bc:0e:ed:7c:e9:47:13:db:67:ef:b8:2c:34:
42:a4:db:57:3d:a2:66:2b:84:91:91:a9:e5:1b:bb:0e:4c:96:
52:82:e0:ef:f6:63:0e:a2:18:6e:f3:1a:5a:51:cc:9f:60:e7:
af:23:7b:e4:0c:ca:df:e2:5e:5b:ab:ee:5f:33:47:c3:d4:24:
63:8f:13:34:59:f3:25:d7:ea:68:89:74:c9:62:30:93:7a:98:
3b:c0:88:03:df:75:01:6e:4b:a1:bf:04:7e:b9:6d:82:45:55:
7b:89:94:35:31:1f:86:b8:8d:0d:07:30:a8:90:00:fc:cb:32:
a5:30:b2:7d:63:3e:84:7e:b9:cb:3c:57:b3:00:29:67:ba:fb:
80:fd:4b:2f:cd:ca:c2:70:54:30:9c:20:4d:c1:6a:00:a3:bd:
05:5e:b0:02:a6:29:6d:e7:d3:c0:ce:ec:ab:fc:d2:fb:7f:a5:
3c:3e:de:3e:40:0e:5c:6e:f4:c1:fb:39:d9:29:ae:9a:61:16:
0b:61:79:42:4e:c8:45:e4:2d:88:d6:df:89:93:72:33:73:b7:
d5:11:c7:10:79:83:82:a1:4e:17:75:cc:9b:a6:3b:dc:42:46:
11:a0:b4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:17:17 2025 by rpki-client