Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier: /mRyBA6btXHCl2QHEfZkOj2lefvLtyVp++a8KtrXvC4=
Subject key identifier: 95:3E:C6:36:EE:DD:A2:0B:B5:3D:A1:F8:13:08:17:4C:B4:33:4D:AB
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial: 0197B88F0B2E04BD56E04F6B05C941B203F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number: 0F29
Signing time: Sat 28 Jun 2025 22:01:11 +0000
Manifest this update: Sat 28 Jun 2025 22:01:11 +0000
Manifest next update: Sun 29 Jun 2025 22:01:11 +0000
Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: DhKwKhF/HEVKdMb4aBl16r5i/dllSAhDnK69+82DAEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:0b:2e:04:bd:56:e0:4f:6b:05:c9:41:b2:03:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
Validity
Not Before: Jun 28 22:01:11 2025 GMT
Not After : Jun 29 22:01:11 2025 GMT
Subject: CN=953ec636eedda20bb53da1f81308174cb4334dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:60:1a:ee:c5:bd:2d:72:b1:9e:76:26:16:05:
44:ca:ee:6c:28:8c:31:14:d3:00:87:17:09:2a:5b:
45:0d:f4:db:94:de:9a:ce:ce:58:d6:40:4e:ef:94:
5d:70:70:02:ef:bd:c0:18:16:4e:14:d7:2e:fc:f1:
12:6b:c7:7e:82:a6:cf:c4:ef:ba:e3:03:a9:45:97:
46:dc:22:ce:9b:df:42:a2:d4:fe:c8:72:fb:e6:c0:
01:68:4b:2c:13:d4:48:04:a6:0c:a4:c1:de:e3:c4:
fc:42:7a:42:57:92:f1:eb:f8:0f:8c:12:8c:63:14:
ba:92:aa:33:22:b5:81:88:9d:51:1d:54:35:d8:ac:
48:68:fc:6c:c6:3b:9b:c0:20:3b:dd:84:d6:01:81:
d4:47:b3:33:8e:fd:47:b9:3a:88:6f:68:f9:e5:1f:
80:7c:e8:a8:30:cd:9e:28:aa:d6:5a:d9:73:c6:d9:
de:ab:61:9b:85:8c:ca:99:09:27:d2:77:ce:d2:0a:
a0:58:4b:c7:24:b8:f1:11:7b:93:8c:f7:29:16:36:
22:16:23:ce:24:0d:43:5a:50:2e:2f:45:0a:32:4b:
ce:58:0d:be:e5:09:ae:27:f5:cf:63:ce:e3:6d:66:
fa:4d:5e:1e:82:03:08:ff:63:f1:83:e7:c1:9e:07:
2d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3E:C6:36:EE:DD:A2:0B:B5:3D:A1:F8:13:08:17:4C:B4:33:4D:AB
X509v3 Authority Key Identifier:
keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:28:a0:ad:f7:8b:18:42:72:7c:75:24:5e:5c:4b:b8:33:0d:
0c:6f:b5:2b:de:78:6a:63:e6:e0:4f:dd:5d:c5:5e:04:d1:37:
4a:36:0f:2b:d8:e4:92:cf:b0:ac:4b:36:3e:0a:70:45:08:61:
82:ea:82:08:14:0d:3a:fa:2c:6a:c3:81:eb:87:1f:d6:0c:19:
ee:41:3e:6f:6e:2e:a7:26:57:0a:44:5d:38:68:45:ea:f6:cc:
f1:83:8e:47:13:77:95:e1:ba:c8:43:55:46:be:55:cc:30:f0:
e9:42:23:f7:58:03:cb:8b:79:8e:5f:8e:91:52:66:94:20:53:
9c:06:58:46:95:5e:9d:6c:c4:73:da:cc:60:dc:2c:e4:e7:5e:
b1:63:20:f2:1b:4b:1e:91:f0:14:65:bd:fa:35:07:10:74:79:
97:97:60:bb:7e:80:53:ca:be:e7:e7:a9:32:88:1b:6c:55:f3:
89:d0:af:c1:23:ed:5a:36:e8:10:51:c9:50:8b:eb:49:17:72:
46:4b:f0:c7:28:12:06:7b:67:d9:05:5f:85:c0:14:19:74:9a:
fd:87:47:08:8e:7b:a1:11:86:8e:ca:10:86:2f:3c:09:d9:3c:
f7:f1:d5:e8:4d:a0:d7:3d:7d:d3:8d:ad:e3:97:0b:b6:2e:ab:
cd:5b:49:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:37:34 2025 by rpki-client