Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier: MW70XN1XwaavfuEuUUMl+OOfSrPdmkQf71wEU5XVQk8=
Subject key identifier: 97:7A:A4:2B:8B:39:D2:0A:C3:BB:49:30:82:E9:72:64:4B:A3:4F:E2
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial: 0196B3D8D4FEDDCB01C5BB464E9504DEE318
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number: 0EA2
Signing time: Fri 09 May 2025 07:00:54 +0000
Manifest this update: Fri 09 May 2025 07:00:54 +0000
Manifest next update: Sat 10 May 2025 07:00:54 +0000
Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: Vdnjf+u6Y2C1kt63d8VBnGZlf71ikpYpcU3otSFgmCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 07:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:d8:d4:fe:dd:cb:01:c5:bb:46:4e:95:04:de:e3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
Validity
Not Before: May 9 07:00:54 2025 GMT
Not After : May 10 07:00:54 2025 GMT
Subject: CN=977aa42b8b39d20ac3bb493082e972644ba34fe2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e4:ff:b1:f3:1f:dc:ee:b6:b4:54:fe:24:1b:
56:9f:b7:53:0e:a9:ee:d6:74:b9:7f:a3:d1:b7:52:
c4:48:b9:48:a9:89:60:c6:25:82:a4:68:6d:ba:fe:
55:53:af:c8:97:06:a3:1e:82:52:c6:97:2a:3b:bb:
02:b2:fd:4f:37:39:a8:e4:6f:80:dd:15:9e:ee:27:
b5:be:52:70:1b:95:49:57:98:cc:ce:0a:63:d6:e1:
cc:de:bc:60:45:af:e0:b6:ef:7b:44:d9:9d:6e:ea:
3d:95:58:56:55:fb:8f:bc:26:35:4c:68:dd:ea:bf:
3f:b2:f9:4b:a3:a4:00:ba:66:ac:7d:ab:47:5a:51:
0a:86:12:b0:b4:bb:5d:db:7a:d0:2a:ed:f9:fa:1a:
67:e7:93:e0:3b:f0:75:34:4c:47:49:bf:53:79:17:
00:a8:0a:0e:53:2f:9e:5f:ef:db:09:3d:0c:a5:1e:
bb:e3:22:74:46:a2:4d:8d:c9:36:c9:ee:29:cd:87:
c1:b1:65:63:ca:0e:4f:59:82:c6:7f:c9:5f:9e:ca:
63:40:f7:ce:11:bf:fa:9b:cc:2b:e2:6c:6c:e6:87:
f9:90:99:6b:7e:09:90:1f:bc:f9:0c:c3:06:c9:00:
20:33:a7:b8:0e:42:98:c4:b3:13:9d:bb:a3:8a:40:
f4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:7A:A4:2B:8B:39:D2:0A:C3:BB:49:30:82:E9:72:64:4B:A3:4F:E2
X509v3 Authority Key Identifier:
keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:10:22:2a:78:42:27:7e:88:e3:88:e0:ec:73:ea:89:6a:0d:
52:8f:2a:d2:d1:12:77:16:76:89:84:7f:ba:41:69:61:c8:51:
74:f7:8f:02:1a:60:25:a8:cb:11:86:7f:05:f1:f5:a6:c6:82:
3f:de:34:59:64:43:31:58:fa:5d:d7:ae:4b:78:42:c8:af:ed:
22:cb:a1:e3:43:0c:97:73:d0:b1:8c:59:46:9e:f6:08:56:00:
3a:fc:5f:06:bb:d4:7d:5a:12:ac:de:e6:eb:00:a6:9a:8c:1a:
8c:da:0a:37:0f:1a:21:3b:d5:f1:ec:63:df:3f:f6:06:5a:44:
a0:2c:00:67:10:2c:db:5b:22:5f:51:77:80:5c:a8:a1:06:78:
43:08:d0:9c:8a:01:27:3d:a9:a1:ba:e8:aa:00:d3:d5:b9:08:
49:b2:75:20:a4:a8:2c:40:ef:03:29:ea:23:70:4e:61:cf:17:
b0:e9:f0:ef:8a:4f:50:40:5b:24:df:0d:9a:08:c6:21:91:10:
88:ee:58:5e:5e:b7:f3:a3:fa:0b:46:56:c2:b9:74:81:70:b8:
d4:12:c4:a9:30:dd:38:e4:96:47:6a:92:e5:3b:68:ab:b3:93:
66:6e:32:08:89:97:5f:a5:4f:59:91:90:f3:ce:a2:9b:5d:d5:
48:63:91:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 12:02:37 2025 by rpki-client