Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: tZ5mD9xR8Tiry96rqtLmieVk3f7DYqWHwo9DnqH36kU=
Subject key identifier: 2B:9E:E0:A8:2D:41:70:F2:06:3B:EA:B0:C4:DF:A3:A8:8C:A8:88:32
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 0197B6A079C4CC1444EA370846376C014041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 45
Signing time: Sat 28 Jun 2025 13:00:59 +0000
Manifest this update: Sat 28 Jun 2025 13:00:59 +0000
Manifest next update: Sun 29 Jun 2025 13:00:59 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: RLQn/GG63Ry01776abax+jsjPw2/bPsd+HX8fiG8dpo=)
2: wtKFjn0luOKNhpCBH0YWKLpKHKU.roa (hash: Z6YfBfkr08FSM8yJ/BnA5aNSDpKZqhovD8OdV3xTXpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:79:c4:cc:14:44:ea:37:08:46:37:6c:01:40:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Jun 28 13:00:59 2025 GMT
Not After : Jun 29 13:00:59 2025 GMT
Subject: CN=2b9ee0a82d4170f2063beab0c4dfa3a88ca88832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e1:65:d4:d4:8a:e1:e9:da:53:c3:b7:45:16:
6b:82:8c:b4:b9:37:b8:24:91:e4:7f:ae:fb:94:f5:
b0:ac:7b:ea:dc:20:54:80:e5:b1:57:b0:f1:9c:ac:
05:8b:6d:64:a1:6e:c9:06:06:ae:08:c7:29:c6:ef:
51:81:b5:d4:67:2d:e0:ed:2e:75:3a:4a:da:65:65:
80:7c:62:91:ef:49:21:28:57:fa:c7:58:a3:9c:b4:
45:dd:9c:b3:68:73:99:85:da:e6:a1:49:85:a2:ab:
d8:ac:d0:ce:01:cf:51:47:85:de:41:7f:2d:17:54:
e6:ce:4d:27:35:a7:03:d3:29:26:06:06:2a:e2:c6:
94:be:bb:c8:90:49:c5:f6:f3:a1:52:6c:79:49:97:
04:e9:31:13:ce:c3:1a:d2:9c:4b:91:f7:d8:58:95:
f0:29:97:f1:15:84:fb:22:27:6a:63:05:a7:22:7c:
4d:20:d4:53:e5:05:81:68:02:2a:0d:f9:c2:6d:78:
f4:d4:9b:21:c6:11:e2:ac:a6:19:5f:2f:8a:81:48:
a6:1d:01:ea:15:3e:a4:84:5e:32:0f:74:ef:9e:19:
63:21:9b:82:2b:97:ac:94:c9:ce:03:4a:25:af:d6:
ff:af:1b:51:f2:5e:95:1d:e9:a8:65:2e:6e:71:0b:
bd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9E:E0:A8:2D:41:70:F2:06:3B:EA:B0:C4:DF:A3:A8:8C:A8:88:32
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:5f:f8:4f:ce:b8:da:02:d7:0f:fa:ca:57:8c:02:dd:3c:ae:
ff:d3:f1:e9:ca:6b:4a:0f:86:86:8e:2a:09:6e:16:85:d1:d6:
a9:53:9b:67:35:c8:fd:0f:4e:fa:ba:b6:88:11:8d:9c:67:5f:
06:0b:53:24:06:c5:73:84:19:b8:bd:8d:11:8b:8c:7b:a4:bf:
ab:a6:78:3b:35:e8:07:94:5d:d3:fc:5f:cf:e1:76:25:bf:59:
5f:47:7b:f8:aa:07:5d:41:8c:b4:3e:30:fe:b8:72:c6:89:45:
70:fc:bc:d5:43:93:e8:ed:ec:3f:e1:de:11:a4:a0:d0:15:26:
df:39:e3:29:6c:e9:b4:4b:84:e5:33:96:83:c8:21:83:ff:96:
f9:a8:b0:43:2d:7f:0d:fa:18:66:21:29:51:ee:49:60:c3:6c:
dc:bb:db:02:d1:ef:54:c9:0e:33:8a:b5:2d:ef:6e:98:41:f6:
f6:cd:3b:16:59:61:fd:ab:22:17:2f:78:1a:06:a8:d7:0c:c2:
8c:2a:a7:27:cf:55:6c:b1:3a:1d:90:6e:9c:e2:25:3d:ad:32:
ca:b8:2a:85:f1:80:07:af:cd:2b:0f:c9:24:52:a3:99:43:07:
29:dd:1e:e9:ee:8d:09:f9:00:b7:cd:59:ac:e8:17:1a:de:99:
ad:09:9f:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oHnEzBRE6jcIRjdsAUBBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNDMzNDBmYWQyNDY0NjVkZThlNjE0ZDAzOTU2M2E2OTk2
NTdkOGQwHhcNMjUwNjI4MTMwMDU5WhcNMjUwNjI5MTMwMDU5WjAzMTEwLwYDVQQD
EygyYjllZTBhODJkNDE3MGYyMDYzYmVhYjBjNGRmYTNhODhjYTg4ODMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuFl1NSK4enaU8O3RRZrgoy0uTe4
JJHkf677lPWwrHvq3CBUgOWxV7DxnKwFi21koW7JBgauCMcpxu9RgbXUZy3g7S51
OkraZWWAfGKR70khKFf6x1ijnLRF3ZyzaHOZhdrmoUmFoqvYrNDOAc9RR4XeQX8t
F1Tmzk0nNacD0ykmBgYq4saUvrvIkEnF9vOhUmx5SZcE6TETzsMa0pxLkffYWJXw
KZfxFYT7IidqYwWnInxNINRT5QWBaAIqDfnCbXj01JshxhHirKYZXy+KgUimHQHq
FT6khF4yD3TvnhljIZuCK5eslMnOA0olr9b/rxtR8l6VHemoZS5ucQu9gQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCue4KgtQXDyBjvqsMTfo6iMqIgyMB8GA1UdIwQY
MBaAFD1DNA+tJGRl3o5hTQOVY6aZZX2NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYt
YTQzN2NlODkyODQxLzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYtYTQzN2NlODkyODQx
LzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL1/4T864
2gLXD/rKV4wC3Tyu/9Px6cprSg+Gho4qCW4WhdHWqVObZzXI/Q9O+rq2iBGNnGdf
BgtTJAbFc4QZuL2NEYuMe6S/q6Z4OzXoB5Rd0/xfz+F2Jb9ZX0d7+KoHXUGMtD4w
/rhyxolFcPy81UOT6O3sP+HeEaSg0BUm3znjKWzptEuE5TOWg8ghg/+W+aiwQy1/
DfoYZiEpUe5JYMNs3LvbAtHvVMkOM4q1Le9umEH29s07Fllh/asiFy94Ggao1wzC
jCqnJ89VbLE6HZBunOIlPa0yyrgqhfGAB6/NKw/JJFKjmUMHKd0e6e6NCfkAt81Z
rOgXGt6ZrQmf0A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:12:39 2025 by rpki-client