Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: lf9kH/KftqiXJc0YfNe4sGXSh1i/BeHzod7i/m1gBqU=
Subject key identifier: 7C:CA:45:41:40:22:E6:98:11:D0:93:B0:1B:26:23:EC:8E:9C:A9:B7
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 0198D472CD5FBD3F7F5058AC8DC6F8FCB9D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: D9
Signing time: Sat 23 Aug 2025 01:02:30 +0000
Manifest this update: Sat 23 Aug 2025 01:02:30 +0000
Manifest next update: Sun 24 Aug 2025 01:02:30 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: b3k9LXwa/iJiOd5TmPN5YJupTZH161BVgKAMxNE5TE0=)
2: wtKFjn0luOKNhpCBH0YWKLpKHKU.roa (hash: Z6YfBfkr08FSM8yJ/BnA5aNSDpKZqhovD8OdV3xTXpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:cd:5f:bd:3f:7f:50:58:ac:8d:c6:f8:fc:b9:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Aug 23 01:02:30 2025 GMT
Not After : Aug 24 01:02:30 2025 GMT
Subject: CN=7cca45414022e69811d093b01b2623ec8e9ca9b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cd:03:45:a5:e5:9c:12:db:c7:6e:f8:55:1f:
a4:43:c3:41:45:c7:2d:1c:61:a7:e7:3c:c7:c7:69:
cd:20:9c:52:bc:66:d1:e1:34:d6:59:96:14:ba:65:
05:b1:a6:fc:70:65:1b:86:f9:28:22:bb:e5:05:33:
c9:aa:d5:94:6c:dd:42:d6:9a:af:91:d3:74:63:a3:
73:98:24:d7:06:1d:db:5d:89:c3:2d:70:87:a8:40:
b7:cf:d2:ed:c4:52:49:0a:ef:9c:d8:63:0c:7d:6d:
2e:0e:f1:af:f3:e8:1a:05:8e:63:d4:a2:64:c6:f2:
61:7b:00:65:c5:74:40:dc:d6:48:f9:4d:47:ed:f7:
a1:29:eb:cd:ba:5e:26:69:e1:0a:b9:9e:88:b4:de:
eb:ce:b4:80:79:d9:29:1d:d8:6c:04:7e:be:9b:4d:
d4:ac:a0:2a:eb:75:36:cf:c3:f1:3f:80:66:c0:ff:
79:53:8a:77:d3:88:b7:4f:0d:c4:e1:43:72:d3:10:
26:cc:ef:b2:e9:91:4f:54:b1:8f:54:da:ab:e5:13:
b7:08:42:c9:c7:ac:89:de:b6:14:5d:cf:bc:3a:6b:
97:b2:54:1f:6f:c1:e5:78:96:0f:23:39:e7:fd:cd:
8e:ef:7e:e8:07:f5:88:22:98:cd:51:58:63:49:a1:
70:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:CA:45:41:40:22:E6:98:11:D0:93:B0:1B:26:23:EC:8E:9C:A9:B7
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:e1:e3:49:bd:52:4c:51:b5:48:6a:ce:f3:9e:c0:ff:75:85:
6d:6f:b4:31:d4:e2:c3:3d:16:d5:8b:d9:be:78:6a:45:b6:3b:
38:32:e4:10:28:83:dd:3d:83:d1:65:96:63:df:15:62:3c:c7:
48:c9:b5:61:a4:b7:6e:17:1a:d0:43:c2:67:7a:0c:fd:39:de:
1f:7c:6e:8f:46:c1:74:43:b7:c1:00:53:f8:b6:aa:b7:ca:70:
bb:19:1a:7e:eb:44:8e:3d:6d:a5:b9:e3:ca:c2:78:dc:fa:5b:
b9:9c:d9:15:0a:07:97:c8:73:f4:35:9b:88:a3:36:79:3e:fb:
8d:bc:44:c8:f4:31:8e:5b:66:9d:83:e9:f8:1a:6e:63:df:a4:
e8:b8:e8:54:ce:d3:91:9e:ed:12:01:6f:6f:e0:6a:13:69:56:
73:34:5c:48:65:c3:ca:af:e3:ce:a7:a9:22:29:33:5c:23:37:
33:d2:0d:e2:23:60:59:df:4e:d3:fd:e2:3b:07:38:24:be:12:
db:59:f0:f0:40:e1:a2:b7:98:ab:84:af:48:58:b9:b8:77:cd:
93:56:bb:9e:ba:18:6e:37:44:83:9e:47:1e:0f:77:84:1a:0c:
94:6a:05:ca:cd:b6:8c:36:74:da:cd:4c:80:8b:21:00:d6:9f:
11:76:c3:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:50 2025 by rpki-client