Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
File: PUJ2NzsED6msd-VmxbbN81tTuTc.mft (raw, json)
Hash identifier: yqTc4YVSjfcO9oPvtNLTX0/UJQXsuoQfvVFmi+73bP0=
Subject key identifier: A5:5C:02:7B:9D:AC:5F:DD:A4:77:67:0C:42:BE:13:3A:33:71:41:44
Authority key identifier: 3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
Certificate issuer: /CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Certificate serial: 019A047F28002EFC4D365AD2A11E2CF3AA98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
Manifest number: 05C8
Signing time: Tue 21 Oct 2025 02:00:33 +0000
Manifest this update: Tue 21 Oct 2025 02:00:33 +0000
Manifest next update: Wed 22 Oct 2025 02:00:33 +0000
Files and hashes: 1: JTpkIG2gAi87qZ4MaDyiSAhDmGs.roa (hash: pqYQEm9FQENA5hwqBQ6sbfRExLr5G9tm4QJ0ttI7KnA=)
2: PUJ2NzsED6msd-VmxbbN81tTuTc.crl (hash: 1NV624ESqe3hPLU0yXYmwPaGUZgQL2C15BWcJo4r/RE=)
3: p62oDeoT4vvUHo4yGegZ6_TWKY0.roa (hash: JITepKVcCtsEzEyKS9PibwaqvpfOsAJXxc4iERP2W4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:7f:28:00:2e:fc:4d:36:5a:d2:a1:1e:2c:f3:aa:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Validity
Not Before: Oct 21 02:00:33 2025 GMT
Not After : Oct 22 02:00:33 2025 GMT
Subject: CN=a55c027b9dac5fdda477670c42be133a33714144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:41:3d:60:5b:17:2a:48:34:0f:e3:2e:99:8e:
34:f3:85:a7:52:1a:63:dd:70:82:bb:43:a9:28:18:
71:97:36:97:f9:d7:d9:5a:b5:64:31:8d:3d:81:6d:
4a:1e:78:6a:20:f5:87:53:28:43:d3:38:9d:eb:de:
83:b8:dc:99:97:a3:ae:f8:f2:40:c6:21:cf:a3:ce:
44:40:f5:39:ff:7f:34:36:87:30:82:47:74:a8:ea:
60:6e:99:90:5b:3b:02:ff:de:e4:2b:80:2a:1d:de:
f0:20:52:ce:f0:78:18:ca:46:00:24:ad:87:64:ef:
de:a9:22:33:f9:d6:0b:c2:ab:a6:8c:6a:b4:40:94:
74:22:4e:bf:ef:f5:07:14:39:42:bb:b3:b1:27:91:
e5:d1:36:ba:e7:98:29:40:bf:21:87:33:91:72:1b:
a3:c4:08:7f:67:a7:53:8c:98:06:3a:c1:ee:13:a9:
92:ac:51:15:23:fe:37:9c:61:53:f2:8e:7b:0a:80:
cc:43:60:69:4d:ee:72:fe:0e:71:9f:59:a6:8e:7c:
47:85:61:3c:4b:d4:4a:6c:c2:c2:ae:dc:5e:ca:65:
8f:b4:52:3d:71:eb:08:67:1f:5a:60:14:83:20:fe:
81:da:6b:27:3d:08:8d:2d:a8:3d:7b:93:08:9c:4e:
43:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5C:02:7B:9D:AC:5F:DD:A4:77:67:0C:42:BE:13:3A:33:71:41:44
X509v3 Authority Key Identifier:
keyid:3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:aa:25:d7:d1:4c:c3:ce:57:8b:69:1c:5e:88:13:2a:f3:24:
c2:d3:74:81:3a:1f:a5:f8:1b:8e:15:f2:14:dc:34:97:6d:f2:
55:4e:58:ff:6c:66:54:e3:3b:70:26:c1:3f:b1:45:6a:fc:a7:
08:a5:e3:32:2d:7f:70:15:1c:4e:15:cb:46:15:a0:ae:3a:0a:
df:f4:2b:60:ab:24:a0:24:49:0a:13:cc:05:ee:fc:8f:87:74:
01:35:57:3a:d8:26:ad:ef:fa:07:05:a3:2d:8d:9a:55:47:a3:
af:fa:b5:28:52:53:c8:99:c2:de:1a:ef:68:93:08:7a:e9:d6:
85:ae:bb:a2:41:bd:c3:3f:5e:53:82:bf:5c:9a:6b:5b:43:6b:
0c:86:b2:69:4e:30:2c:a7:21:3b:5a:90:29:43:e3:34:ab:57:
e1:b3:dc:c3:e2:5a:e0:5c:c6:47:33:17:ca:ba:cb:e4:e4:e2:
d3:47:7b:eb:e8:d8:86:f4:b6:31:fb:27:49:32:da:5d:02:ac:
32:8a:bb:19:70:78:47:a3:4f:bb:68:30:1e:f4:3f:4f:d8:81:
12:74:71:cf:5b:b3:95:e6:3c:41:46:3c:2b:36:b5:fa:29:34:
8d:1a:22:bc:ee:a8:9b:9b:5f:b2:2e:72:a1:40:fa:68:7d:32:
2f:21:29:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:28:54 2025 by rpki-client