Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: KLHAVa6cltVClNp1RtoiGhHIv8G1snOwzv9G9tGnxlA=
Subject key identifier: BD:44:86:20:62:84:0A:9E:22:AC:78:01:8B:24:B9:59:C7:0C:9D:75
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 01974E5794C2B61B11F70C1C6F6FA1302D1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 0F
Signing time: Sun 08 Jun 2025 07:00:51 +0000
Manifest this update: Sun 08 Jun 2025 07:00:51 +0000
Manifest next update: Mon 09 Jun 2025 07:00:51 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: m7eM0e2XaJDQtUmCss/Ji6FoLdJyB+ZaWhaZGf5wFxw=)
2: wtKFjn0luOKNhpCBH0YWKLpKHKU.roa (hash: Z6YfBfkr08FSM8yJ/BnA5aNSDpKZqhovD8OdV3xTXpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:94:c2:b6:1b:11:f7:0c:1c:6f:6f:a1:30:2d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Jun 8 07:00:51 2025 GMT
Not After : Jun 9 07:00:51 2025 GMT
Subject: CN=bd44862062840a9e22ac78018b24b959c70c9d75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7f:24:03:da:ff:09:f1:6f:d6:e2:e9:ea:69:
ee:5c:3d:7b:83:b8:ce:ce:8e:df:0f:73:91:61:90:
7d:b5:4d:3e:f3:ba:8b:81:e0:0c:b1:b0:72:37:be:
70:2c:1a:39:52:fa:97:14:b3:de:70:9a:cd:eb:8e:
d3:b2:7b:8a:b9:f9:2d:d5:4f:67:e1:70:84:bc:8e:
fc:4a:a2:77:93:da:f3:8b:b3:57:3a:c0:bd:fc:b5:
b1:68:90:71:a0:95:4b:d1:28:1c:cc:54:33:24:75:
66:d5:5e:c8:a0:76:c6:51:d9:6d:53:a2:57:c1:3d:
77:11:9a:ab:d2:5d:15:1f:37:4c:15:90:e4:c3:46:
a3:e3:7b:1f:dc:57:5e:14:3c:ea:a6:0a:b8:4a:c6:
b6:ea:ab:82:af:ef:4f:28:26:e3:0a:63:12:fc:8e:
36:d4:41:02:5f:fd:8d:e0:8a:86:2c:89:84:c3:f7:
b0:cd:56:74:54:74:4e:ef:13:7b:32:b6:f6:55:7d:
09:ad:4c:28:31:77:04:0e:e2:66:28:9e:73:10:8e:
f7:7b:7d:a6:84:80:f3:5a:d4:4d:88:92:08:7e:06:
6e:24:a1:50:8a:81:12:2d:ff:3c:b5:34:a4:11:29:
2c:3d:47:59:91:c1:87:5a:b6:2d:fc:91:ed:70:41:
7d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:44:86:20:62:84:0A:9E:22:AC:78:01:8B:24:B9:59:C7:0C:9D:75
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:3f:c0:39:e6:15:44:e3:ec:b6:e1:fa:92:2f:00:e7:36:c6:
15:b0:89:f7:9f:a1:7a:82:a3:1b:40:4b:e8:02:68:42:f2:91:
e6:d4:78:d3:f8:33:54:f6:d2:89:21:48:96:d9:cf:ef:52:62:
78:7a:4d:63:f3:39:4e:64:84:bb:81:7e:af:7d:95:ae:e3:bf:
6b:f6:17:0f:e7:7e:73:e3:3c:a8:77:23:e2:f3:88:5b:69:c8:
d5:7d:07:20:91:68:e5:97:1b:4c:b6:d3:6c:7f:9a:bb:e1:5e:
b6:21:40:dc:f5:4c:c6:23:36:b1:7a:52:92:7d:75:a5:fa:e2:
84:cd:b3:47:65:d6:a1:f5:b2:eb:c2:52:51:98:c0:39:7d:2f:
f8:89:57:18:86:72:f5:b5:d0:78:b3:4a:98:81:60:a3:1c:5c:
e2:63:5c:1c:60:dc:17:e3:21:59:1e:fc:0a:72:8d:7b:e5:49:
8d:14:a0:80:d6:76:0f:ed:4b:49:2c:fc:c7:c4:33:54:5b:cf:
59:67:c1:14:02:02:4b:52:43:b4:d7:f8:da:31:d7:97:cf:29:
3a:ca:4c:3c:89:ee:5a:39:5e:7f:09:09:ea:2e:3f:57:72:0e:
7d:e6:1d:49:7f:8f:36:98:88:af:f3:ec:24:bf:a3:08:f8:bd:
f4:ab:e0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:33:27 2025 by rpki-client