
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
File: PuzUyqmjpXcV49XWa8zXGFr-QNo.mft (raw, json)
Hash identifier: 2lS7UVgbcxdVwmsRNv86iD+XUl4guaLE0MpBptneGgA=
Subject key identifier: 44:3A:CC:27:77:58:A0:BC:7D:35:78:5D:85:21:2E:71:49:89:06:A9
Authority key identifier: 3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
Certificate issuer: /CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Certificate serial: 01976961451C7AD760393E1C4074021E0975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
Manifest number: 1596
Signing time: Fri 13 Jun 2025 13:01:11 +0000
Manifest this update: Fri 13 Jun 2025 13:01:11 +0000
Manifest next update: Sat 14 Jun 2025 13:01:11 +0000
Files and hashes: 1: GTSqn8ohuN-MHhN18mr9Itlt7ao.roa (hash: lFLyLMK3dWhD600oT7fgmI5ccuGsQ2tgFOCCKMH2dCM=)
2: PuzUyqmjpXcV49XWa8zXGFr-QNo.crl (hash: keguOGbGcKBiJhFw/8rWDyul+WtbyQF4NPlO433RMXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:45:1c:7a:d7:60:39:3e:1c:40:74:02:1e:09:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Validity
Not Before: Jun 13 13:01:11 2025 GMT
Not After : Jun 14 13:01:11 2025 GMT
Subject: CN=443acc277758a0bc7d35785d85212e71498906a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f8:52:5e:c9:24:d1:94:e5:dd:3e:27:ad:13:
47:d1:4d:06:58:72:34:d8:6c:1e:96:b6:36:b3:6e:
44:5c:69:fe:16:ad:44:49:8f:c2:00:f9:35:52:d5:
e9:24:40:34:3d:1d:0a:9e:0b:82:2e:47:2f:c9:59:
e4:51:a8:b2:7b:08:18:9d:eb:13:24:bd:66:55:fb:
4e:27:22:52:ab:8d:02:09:9e:c6:fb:64:d4:46:0f:
6e:c0:77:4d:c6:b9:10:2c:31:27:a9:14:9d:9e:7f:
d1:33:a1:2d:9c:13:15:f7:ce:d0:36:f3:78:e9:05:
b3:59:44:72:20:30:50:3e:62:90:33:7e:9b:a1:76:
05:06:78:17:f0:21:8e:3a:0d:31:2c:ee:c2:57:4a:
65:82:53:ef:f4:d7:9d:b7:11:4d:dc:a0:91:c9:43:
d3:a0:f5:09:25:9f:1e:2e:3f:d9:0f:bb:55:5e:b8:
3c:af:10:ea:52:86:e5:7b:f8:ac:85:16:f5:03:75:
c1:2a:22:31:52:c0:09:0f:0f:7d:5d:b7:6f:b0:ba:
36:c6:c3:77:76:37:32:8a:bb:7e:43:54:9e:18:79:
45:1b:f6:3a:c7:72:61:b6:7d:e3:07:97:cc:d8:1f:
64:8e:03:06:2e:25:4a:01:00:9c:94:34:78:e0:52:
2b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:3A:CC:27:77:58:A0:BC:7D:35:78:5D:85:21:2E:71:49:89:06:A9
X509v3 Authority Key Identifier:
keyid:3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:49:33:c9:f4:72:d8:b3:4b:73:fa:20:f2:28:41:62:0a:09:
98:f9:7a:09:de:98:1f:9c:a2:ea:fd:f8:9a:25:d5:51:9f:80:
4a:32:1c:19:94:c7:37:cf:69:9d:19:27:2d:bb:14:3a:18:48:
0e:8f:ac:94:bb:3c:64:67:62:15:72:94:9c:28:97:75:75:45:
e5:4e:19:ed:f8:46:a6:90:64:23:b9:b1:5b:a2:9d:a2:bf:bd:
96:99:da:c7:c3:37:05:e9:e9:26:9a:f7:9a:13:5a:7d:1d:9a:
db:4a:af:18:0d:8f:f3:d3:04:eb:f9:54:43:0a:82:cb:79:46:
6d:de:7a:be:55:ca:80:9e:26:91:4c:53:ad:07:a8:c8:85:03:
1a:60:5a:f6:6a:ec:1b:87:11:ee:ed:1d:1f:8d:51:c8:8c:93:
61:cf:73:04:02:38:24:3d:7e:a0:0a:c7:34:04:ec:43:f6:4d:
9a:67:13:81:9d:02:a7:58:ec:4b:dc:b4:e4:1c:e8:0e:bf:88:
f3:f3:88:6b:dd:9a:52:80:4b:51:0b:c4:0d:c2:19:54:6f:f0:
70:c9:04:5f:7d:55:37:eb:96:a5:2f:05:52:af:6c:fe:b1:ec:
41:64:1d:13:aa:a3:9a:fc:f3:f2:e4:96:b7:b6:0b:38:bc:6f:
f1:a6:57:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 17:39:45 2025 by rpki-client