Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
File: PUJ2NzsED6msd-VmxbbN81tTuTc.mft (raw, json)
Hash identifier: 6sWzetFHbtyU3kE2I5UmKTDuee9uRxoYRFHZrRSkpRw=
Subject key identifier: 39:6E:AE:12:2D:6E:10:55:1F:85:3D:02:69:72:D9:CB:70:E2:E8:4B
Authority key identifier: 3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
Certificate issuer: /CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Certificate serial: 01974B568FEA53FB829FEAF47EB84515DA8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
Manifest number: 045F
Signing time: Sat 07 Jun 2025 17:00:53 +0000
Manifest this update: Sat 07 Jun 2025 17:00:53 +0000
Manifest next update: Sun 08 Jun 2025 17:00:53 +0000
Files and hashes: 1: JTpkIG2gAi87qZ4MaDyiSAhDmGs.roa (hash: pqYQEm9FQENA5hwqBQ6sbfRExLr5G9tm4QJ0ttI7KnA=)
2: PUJ2NzsED6msd-VmxbbN81tTuTc.crl (hash: Azw5edYR8UXxocbBeeWZ3jEE3JlaNlixGZNsn9xuyYs=)
3: p62oDeoT4vvUHo4yGegZ6_TWKY0.roa (hash: JITepKVcCtsEzEyKS9PibwaqvpfOsAJXxc4iERP2W4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:56:8f:ea:53:fb:82:9f:ea:f4:7e:b8:45:15:da:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Validity
Not Before: Jun 7 17:00:53 2025 GMT
Not After : Jun 8 17:00:53 2025 GMT
Subject: CN=396eae122d6e10551f853d026972d9cb70e2e84b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e9:68:da:b6:ba:16:79:26:8d:8d:0b:64:5e:
17:bd:cd:7c:40:cd:70:9f:a3:dc:23:f8:8c:18:58:
6c:ef:7b:7c:2e:95:7b:cc:56:e0:d5:bd:96:a7:53:
3f:ca:54:a1:99:18:e9:0e:cc:7f:90:bc:1f:01:3b:
75:4a:0b:37:c5:30:e4:07:f3:76:bb:dc:20:9a:b9:
2d:06:77:00:1f:02:c4:9c:ad:c4:8e:00:e4:7c:0e:
b6:f8:8b:49:ac:b2:fa:f6:d3:08:9c:8e:50:8d:ba:
3f:31:e1:e7:45:e2:ac:eb:46:bc:b7:a8:af:78:6e:
e6:66:64:8f:55:f8:d0:e2:8e:aa:97:e2:2e:ca:77:
6d:f6:61:9e:a0:ab:d9:d1:26:54:e6:62:5c:3b:9a:
4f:88:aa:93:ff:8c:94:8a:27:f6:47:09:82:9e:9f:
51:7f:79:cc:cc:e2:d4:93:ad:72:b9:50:ff:79:df:
5a:9a:69:3b:63:c2:ff:a4:07:da:4d:c5:f2:b6:02:
dd:c3:35:cc:60:99:14:07:64:cd:e6:28:1b:30:ea:
50:b4:b3:65:72:33:f5:e6:7d:6a:f9:d3:75:f2:60:
61:38:a5:f5:a0:e0:06:27:ba:1b:8b:d2:59:9e:cc:
91:05:88:60:ec:57:cb:69:b4:ce:d5:b1:62:aa:4b:
80:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6E:AE:12:2D:6E:10:55:1F:85:3D:02:69:72:D9:CB:70:E2:E8:4B
X509v3 Authority Key Identifier:
keyid:3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:d1:ab:b6:a6:8a:35:f6:39:71:57:40:d3:60:e9:36:e8:2f:
52:8a:e9:35:34:71:20:4f:11:fd:d6:71:09:3a:90:b2:9c:0d:
3f:64:63:72:87:ba:0f:fb:af:79:fe:e1:f9:3d:6d:cc:9f:bb:
d3:02:40:93:52:76:ea:4b:b2:6c:28:b3:f1:1a:54:5b:4c:e7:
59:09:c0:c9:10:a3:33:4f:36:ee:e1:cc:8b:a3:98:53:c1:75:
7c:14:d6:e3:00:e3:bf:1d:08:0e:a8:4f:99:d6:3c:58:71:d5:
26:d6:6f:c8:bb:09:1a:d4:c8:90:63:13:e6:5d:5e:66:49:a7:
ea:1a:80:e8:e8:d8:28:c9:f9:45:4b:8a:14:d7:06:15:5f:b2:
91:0d:50:93:84:55:60:f9:ec:f8:fd:7b:7e:11:1d:16:f5:49:
3c:89:8f:cc:c8:e3:14:92:43:16:b2:ad:bd:9d:c8:ea:21:68:
33:c6:26:01:b3:f0:61:ad:c1:0d:ad:83:17:e5:4c:31:50:81:
dc:89:02:8a:86:59:3f:26:68:70:58:e6:31:34:35:cf:13:c1:
66:f5:79:75:fa:f1:31:79:22:54:70:1c:ad:01:ca:60:9a:18:
ce:16:b9:50:7c:82:32:49:80:29:aa:b0:ac:ff:01:ab:13:93:
ef:6a:a8:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:27:53 2025 by rpki-client