Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier: bEtx83btqlNgqJ7rV+Zw+TZ+w8SGUR0qIlGiT6YEWos=
Subject key identifier: A5:F3:54:E2:85:CC:1A:4E:7B:67:57:05:8E:DC:DF:F6:E2:6C:A4:B7
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial: 019655382C9FBCD4D723DE6A6413F463E4AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number: 0E71
Signing time: Sun 20 Apr 2025 22:01:06 +0000
Manifest this update: Sun 20 Apr 2025 22:01:06 +0000
Manifest next update: Mon 21 Apr 2025 22:01:06 +0000
Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: j/ERz0kWudXvLfC035s9VrdXhjReTckVlV/EFQhmbho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:2c:9f:bc:d4:d7:23:de:6a:64:13:f4:63:e4:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
Validity
Not Before: Apr 20 22:01:06 2025 GMT
Not After : Apr 21 22:01:06 2025 GMT
Subject: CN=a5f354e285cc1a4e7b6757058edcdff6e26ca4b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:54:40:86:43:3d:c5:36:22:bf:12:5f:5d:79:
47:ce:59:ca:06:17:73:13:37:8a:09:3c:11:62:db:
8c:49:5a:83:9a:4c:e2:43:0b:94:ab:1f:20:d1:fe:
b3:5b:e8:b1:b5:80:e0:7d:1c:4e:22:a7:5c:11:e6:
79:77:96:31:1b:fe:24:3e:e8:63:4e:3e:3a:3b:50:
e0:f7:ae:20:ed:eb:17:c0:c3:99:9e:7c:e7:82:c8:
90:ad:e7:39:55:61:00:d5:79:b6:11:b3:bc:8b:9d:
ea:7a:aa:d1:6e:48:ac:da:65:fb:f5:8b:a6:c1:95:
61:fe:67:b7:c6:c8:2a:76:90:e6:c2:74:56:3f:1f:
54:c7:28:6b:a4:13:d9:9e:df:2b:6f:18:36:6d:2d:
13:49:b8:7a:80:b9:aa:b7:86:ed:8d:1a:bb:f7:14:
63:5d:31:40:04:02:fa:1a:22:36:aa:29:8d:01:11:
a6:a0:26:71:ac:0f:01:87:a1:f0:b8:7b:63:91:e2:
ba:fd:a4:4b:4d:2c:41:70:bd:f2:fe:60:bf:d4:6b:
31:20:3b:f1:3d:b8:39:b9:44:cc:c3:fe:4e:4b:ec:
fd:cc:23:dd:0f:34:e4:32:d6:84:79:01:d3:53:9e:
d7:e4:52:ae:85:c0:5a:6a:44:f3:20:70:4c:cc:14:
4b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F3:54:E2:85:CC:1A:4E:7B:67:57:05:8E:DC:DF:F6:E2:6C:A4:B7
X509v3 Authority Key Identifier:
keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:73:08:cf:35:0b:59:94:dc:4f:5c:9c:31:1a:36:aa:13:18:
38:cb:b4:a4:0a:34:99:fd:93:e4:49:2a:c7:0e:d8:dd:42:43:
3d:16:82:2f:3a:06:dd:68:79:0f:1f:f1:6c:88:e5:51:e0:7a:
c1:c1:e1:7d:df:1e:57:bc:cd:12:ce:b5:c8:d3:63:3b:0a:20:
1c:7b:53:b5:92:d9:bb:59:50:5e:91:fc:69:83:91:08:26:ea:
4f:dc:1f:42:2a:d8:3e:2e:0b:26:bd:82:24:51:c5:40:9a:c3:
be:43:62:53:92:1f:7d:a1:11:a9:ac:7e:a8:b8:9e:d5:9b:a3:
57:7b:e8:ba:78:04:e0:67:d6:ab:99:4e:43:c4:3e:e3:19:2a:
df:0e:8f:dd:d5:21:c0:06:58:35:09:46:d4:a7:1e:5e:35:d6:
f8:4d:98:f2:44:40:4a:6e:f2:05:a7:b8:6b:94:0f:be:9d:fa:
bd:98:52:07:ab:14:4d:1e:18:82:17:d6:44:57:87:d2:02:fb:
64:cc:41:1b:d3:34:e3:d1:94:dd:88:be:28:9d:5a:40:ef:97:
a7:93:a9:d6:05:18:6a:2b:4a:38:ff:11:fa:a6:ef:23:83:06:
a8:d8:d6:96:28:29:43:f4:78:30:c9:89:61:59:bd:ba:5c:60:
97:1a:8d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:34:20 2025 by rpki-client