Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
File: PUJ2NzsED6msd-VmxbbN81tTuTc.mft (raw, json)
Hash identifier: K0Z+LJtVQYSbf0UYv9hD4MC2qvIrhKCWZDZsFHUXpKo=
Subject key identifier: 9C:BA:29:E8:7D:36:8F:A4:B2:3F:DD:4D:E0:4E:14:3F:61:A4:5C:1D
Authority key identifier: 3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
Certificate issuer: /CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Certificate serial: 0198C5DB4CDDA1F08DAF400C10F95C68914F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
Manifest number: 0523
Signing time: Wed 20 Aug 2025 05:02:20 +0000
Manifest this update: Wed 20 Aug 2025 05:02:20 +0000
Manifest next update: Thu 21 Aug 2025 05:02:20 +0000
Files and hashes: 1: JTpkIG2gAi87qZ4MaDyiSAhDmGs.roa (hash: pqYQEm9FQENA5hwqBQ6sbfRExLr5G9tm4QJ0ttI7KnA=)
2: PUJ2NzsED6msd-VmxbbN81tTuTc.crl (hash: AibOes1SzDYKBUCDFGHxeALUDBOmi0tD+OKS4IPfVQY=)
3: p62oDeoT4vvUHo4yGegZ6_TWKY0.roa (hash: JITepKVcCtsEzEyKS9PibwaqvpfOsAJXxc4iERP2W4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 Aug 2025 05:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c5:db:4c:dd:a1:f0:8d:af:40:0c:10:f9:5c:68:91:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Validity
Not Before: Aug 20 05:02:20 2025 GMT
Not After : Aug 21 05:02:20 2025 GMT
Subject: CN=9cba29e87d368fa4b23fdd4de04e143f61a45c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f0:56:3d:7b:0a:fa:ec:95:c4:07:08:7c:fa:
21:7a:a5:7d:eb:08:c7:2d:ec:0e:25:7d:71:ac:64:
8a:ae:2e:44:2b:e1:5d:a6:e7:25:27:e5:e9:57:4f:
1d:74:91:a3:62:92:3c:e2:aa:ca:5b:e9:ed:ee:2e:
6b:95:9b:58:de:48:a9:41:74:c3:14:37:09:5e:5d:
eb:b0:5d:e8:57:f2:ba:84:de:2e:fe:d3:ae:08:bf:
0d:4d:35:b0:32:82:4a:0d:2a:4b:ee:51:44:cc:24:
f6:2d:30:0e:f5:92:b1:e4:24:02:ab:a3:9f:52:a7:
77:75:2d:3e:93:85:1a:21:01:99:ab:c7:15:0c:82:
79:50:3a:5a:6b:ff:06:f6:16:e5:c5:09:96:1e:46:
f7:a6:51:2b:c4:b0:d6:f2:6d:5a:5d:91:1a:a2:d6:
88:2c:68:db:2d:56:05:1f:99:5c:a0:79:1e:b6:46:
29:a1:07:21:36:45:d5:e0:09:df:68:e8:b5:a3:61:
6b:b1:90:2f:ae:34:6f:a8:98:38:cf:7b:74:7c:9c:
9e:1d:9d:c0:da:8e:6d:99:65:c7:56:43:a5:7d:5c:
4a:9d:21:a8:3c:5d:da:ee:b9:ad:fa:da:fd:53:4a:
fb:c7:b3:80:99:3a:b4:11:18:02:54:80:29:0d:86:
e1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:BA:29:E8:7D:36:8F:A4:B2:3F:DD:4D:E0:4E:14:3F:61:A4:5C:1D
X509v3 Authority Key Identifier:
keyid:3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ae:64:3e:4a:b5:a3:e0:f5:33:42:a8:59:68:74:8a:b6:ab:
fb:de:29:6f:b9:23:dc:62:33:3f:40:d1:9b:d9:1a:55:d6:da:
3c:1b:f5:49:80:85:5b:b3:57:d1:3d:d8:2b:58:8f:d4:56:5a:
9c:d7:d2:90:cd:fd:3f:07:59:89:d9:f5:ff:52:9c:ab:bc:1f:
62:06:ec:bf:6d:60:ab:c0:45:12:d8:1b:25:a0:ed:83:37:19:
6c:58:87:81:84:84:46:1a:39:05:f3:6c:e7:89:a2:4b:06:d5:
09:a3:da:18:27:e2:6a:2d:e2:11:62:a6:a2:1a:35:2b:91:ce:
73:89:c7:47:a4:8a:d4:8e:1a:1b:3c:8d:ca:6c:19:f1:8c:fa:
35:e8:d6:cb:7d:75:b4:99:2a:a0:1d:ea:0a:2b:3f:ca:00:2a:
75:38:aa:70:6c:4a:7d:ec:c9:b7:ea:dd:6a:08:d0:b5:81:99:
09:dd:79:fb:00:58:1a:9f:28:1e:90:75:f4:9a:c9:54:2e:48:
9c:43:ae:5d:10:ff:6f:4b:3f:41:fd:1d:2e:99:6a:93:67:78:
5e:ae:4f:27:b1:9d:b5:d3:b3:19:37:2c:da:e5:85:4f:9e:91:
77:08:8a:50:dd:37:4b:89:48:e7:ca:b8:97:78:21:99:2b:f5:
76:19:64:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 20 15:25:08 2025 by rpki-client