Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier: rsfLbGdWvdpyDfStnJYFdDMXNjB+h/Jfdzl3CT6ccUM=
Subject key identifier: 0F:EE:DA:29:BA:10:F9:E4:05:4B:23:36:C8:6D:2B:E0:92:41:D4:65
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial: 0198D65F2EC46C220D966E23FC74A36760EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number: 0FBD
Signing time: Sat 23 Aug 2025 10:00:18 +0000
Manifest this update: Sat 23 Aug 2025 10:00:18 +0000
Manifest next update: Sun 24 Aug 2025 10:00:18 +0000
Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: iWpzzSAjlqjx5l3FOi+DFt8IjhQTG4GFnu7wFiSvyvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:2e:c4:6c:22:0d:96:6e:23:fc:74:a3:67:60:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
Validity
Not Before: Aug 23 10:00:18 2025 GMT
Not After : Aug 24 10:00:18 2025 GMT
Subject: CN=0feeda29ba10f9e4054b2336c86d2be09241d465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:59:a4:1a:fd:aa:d2:46:50:91:9f:63:c3:
27:0c:c7:96:e1:dc:c2:cc:d7:d0:cf:52:10:74:e3:
49:2f:8e:e8:9f:b4:70:e4:d7:cc:08:28:a7:81:79:
32:ab:7d:b0:79:98:12:77:57:ab:80:b1:0b:18:d4:
b4:b8:3f:c5:cf:94:ea:db:30:98:d4:74:39:40:29:
40:75:29:84:72:15:c0:dd:e0:e5:a1:a6:ab:ca:a1:
f7:a2:07:7b:82:05:65:a5:3b:65:c2:ba:b3:26:23:
39:0a:09:1a:7f:b6:d5:ea:be:98:13:76:48:49:37:
b9:85:0a:a1:82:8f:24:83:df:5c:79:9c:44:87:41:
52:ad:f2:f7:09:4f:b7:2b:79:dd:24:f2:fb:11:85:
23:48:51:2f:ba:6c:8a:99:ac:85:c3:70:26:f1:89:
f0:71:c5:6b:5c:02:9e:e8:c1:ab:91:a8:97:8c:7b:
6a:46:d3:e2:82:a1:97:c0:5c:44:18:91:9f:7e:6a:
34:4e:c1:8f:d9:21:de:d9:19:2a:a7:83:c1:08:0a:
a1:ed:cc:2f:dc:00:c2:18:b5:20:b0:6b:e8:08:3b:
25:03:d9:a5:6c:51:ea:52:a2:7a:64:38:b3:32:8b:
5f:fe:58:1c:aa:ef:d7:3d:a3:bd:d3:45:7d:17:e5:
5b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:EE:DA:29:BA:10:F9:E4:05:4B:23:36:C8:6D:2B:E0:92:41:D4:65
X509v3 Authority Key Identifier:
keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:3d:ab:45:9d:ad:a4:c5:f7:33:81:07:9b:3d:6c:ff:6f:1a:
27:1d:99:99:ec:11:b8:25:74:20:d2:0f:b2:73:f6:07:02:ee:
39:52:28:d8:05:eb:d8:7f:6d:36:c6:cc:e7:1f:82:d9:0a:33:
cd:fb:e9:81:67:c7:84:61:9e:2b:c1:be:1c:44:ba:51:bb:fc:
6e:51:76:d5:de:21:78:e1:f1:2b:72:35:89:fb:8a:d2:c5:32:
7f:1d:f2:99:17:21:9a:df:c4:77:e9:f6:6d:af:b1:cd:64:e9:
31:a6:f5:58:6f:ae:5e:9d:dc:18:2a:50:1d:c7:3e:54:d7:1f:
f1:17:1e:b5:69:f1:df:7f:76:7e:3a:2a:83:5a:68:29:1b:2a:
27:77:be:6c:7e:75:23:c4:77:51:40:6e:bf:8c:25:23:23:b1:
11:eb:e0:39:53:63:79:ad:45:fd:6c:51:89:a8:c4:f1:93:0a:
76:51:dd:65:ce:e5:c2:14:75:01:75:76:48:81:11:7f:31:20:
ce:87:b6:ba:ed:3e:08:a5:1b:18:ae:02:00:75:a4:14:09:26:
a8:65:ed:66:c7:8b:7b:a7:b7:5f:c4:7d:3c:6f:f2:5e:36:d1:
48:e4:6a:5f:77:6f:cc:72:a5:1d:ef:ca:88:6a:94:cf:d4:89:
d7:76:7f:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWXy7EbCINlm4j/HSjZ2DrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ZTkxYTlkN2NhZWY0ODE4Njc0YzVkNjI2MjgxMzYxNWM4
OWRlNTYwHhcNMjUwODIzMTAwMDE4WhcNMjUwODI0MTAwMDE4WjAzMTEwLwYDVQQD
EygwZmVlZGEyOWJhMTBmOWU0MDU0YjIzMzZjODZkMmJlMDkyNDFkNDY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfBZpBr9qtJGUJGfY8MnDMeW4dzC
zNfQz1IQdONJL47on7Rw5NfMCCingXkyq32weZgSd1ergLELGNS0uD/Fz5Tq2zCY
1HQ5QClAdSmEchXA3eDloaaryqH3ogd7ggVlpTtlwrqzJiM5Cgkaf7bV6r6YE3ZI
STe5hQqhgo8kg99ceZxEh0FSrfL3CU+3K3ndJPL7EYUjSFEvumyKmayFw3Am8Ynw
ccVrXAKe6MGrkaiXjHtqRtPigqGXwFxEGJGffmo0TsGP2SHe2Rkqp4PBCAqh7cwv
3ADCGLUgsGvoCDslA9mlbFHqUqJ6ZDizMotf/lgcqu/XPaO900V9F+VbLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA/u2im6EPnkBUsjNshtK+CSQdRlMB8GA1UdIwQY
MBaAFKbpGp18rvSBhnTF1iYoE2Fcid5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81NWRlOTAtYmNmNi00MWE2LWE5ZTgt
NDA4MjI5ZjBiYWYxLzEvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81NWRlOTAtYmNmNi00MWE2LWE5ZTgtNDA4MjI5ZjBiYWYx
LzEvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeD2rRZ2t
pMX3M4EHmz1s/28aJx2ZmewRuCV0INIPsnP2BwLuOVIo2AXr2H9tNsbM5x+C2Qoz
zfvpgWfHhGGeK8G+HES6Ubv8blF21d4heOHxK3I1ifuK0sUyfx3ymRchmt/Ed+n2
ba+xzWTpMab1WG+uXp3cGCpQHcc+VNcf8RcetWnx3392fjoqg1poKRsqJ3e+bH51
I8R3UUBuv4wlIyOxEevgOVNjea1F/WxRiajE8ZMKdlHdZc7lwhR1AXV2SIERfzEg
zoe2uu0+CKUbGK4CAHWkFAkmqGXtZseLe6e3X8R9PG/yXjbRSORqX3dvzHKlHe/K
iGqUz9SJ13Z/Pg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:19:11 2025 by rpki-client