Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
File: pukanXyu9IGGdMXWJigTYVyJ3lY.mft (raw, json)
Hash identifier: r6DGZK93La4dTeQy7k5K8KQm70RmSfvE4g0h22p49r4=
Subject key identifier: E0:10:AF:75:7F:3D:8A:47:81:83:2B:18:5B:B2:83:39:17:B2:71:A9
Authority key identifier: A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
Certificate issuer: /CN=a6e91a9d7caef4818674c5d6262813615c89de56
Certificate serial: 019D28F3116644FA45F3BF9B0BB29E446777
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
Manifest number: 11FA
Signing time: Thu 26 Mar 2026 07:01:51 +0000
Manifest this update: Thu 26 Mar 2026 07:01:51 +0000
Manifest next update: Fri 27 Mar 2026 07:01:51 +0000
Files and hashes: 1: pukanXyu9IGGdMXWJigTYVyJ3lY.crl (hash: bVV13muhLmd8j2tYebTp4fZsdsqmA3TtQcQK29Yboe0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f3:11:66:44:fa:45:f3:bf:9b:0b:b2:9e:44:67:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6e91a9d7caef4818674c5d6262813615c89de56
Validity
Not Before: Mar 26 07:01:51 2026 GMT
Not After : Mar 27 07:01:51 2026 GMT
Subject: CN=e010af757f3d8a4781832b185bb2833917b271a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ec:1d:a3:40:e0:08:cf:36:24:88:64:8b:58:
c7:46:79:37:cd:b8:b5:c0:66:20:68:22:c8:58:e6:
84:9d:a7:42:0d:eb:66:18:4b:ee:e8:30:68:94:2d:
2f:37:7c:af:12:f9:56:14:c9:68:2a:dc:68:ff:ab:
04:4b:f9:22:0c:e3:9e:25:07:9f:59:9a:59:de:0a:
84:ea:68:a7:b8:43:78:b8:2c:90:0c:c7:ca:f0:84:
53:c8:8d:eb:01:ea:eb:96:5c:e8:f4:b4:0b:02:80:
7b:d1:ea:85:bd:e6:4a:d5:4f:dd:ab:0e:2d:03:8e:
95:1d:c3:1c:dd:e8:70:54:23:0d:26:19:8f:02:a4:
3f:ee:2f:3b:98:f6:b0:a2:ea:fb:fa:7f:cc:15:c0:
a4:d0:6f:44:70:ff:6a:d0:e8:dd:a7:24:ec:4d:7c:
30:94:b3:79:4c:19:40:4d:4e:00:d4:3a:ab:29:a1:
f9:4d:e7:00:2f:ad:41:53:f9:ee:8b:4e:12:98:20:
9c:8c:40:7e:1a:7b:0e:89:02:b1:bb:bf:90:6e:d1:
bb:97:37:f9:c3:be:79:45:21:62:cd:53:1f:03:c5:
40:fa:c6:a8:0e:9b:d1:15:74:4b:36:d6:a5:32:b5:
6f:9d:bd:af:8b:6c:9c:d2:f1:22:a2:5b:21:b4:10:
a2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:10:AF:75:7F:3D:8A:47:81:83:2B:18:5B:B2:83:39:17:B2:71:A9
X509v3 Authority Key Identifier:
keyid:A6:E9:1A:9D:7C:AE:F4:81:86:74:C5:D6:26:28:13:61:5C:89:DE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pukanXyu9IGGdMXWJigTYVyJ3lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55de90-bcf6-41a6-a9e8-408229f0baf1/1/pukanXyu9IGGdMXWJigTYVyJ3lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:c7:0d:16:fe:d8:65:a2:5c:01:77:40:32:4d:fe:0f:c2:54:
96:3e:2a:fc:40:e6:a5:54:14:6a:9e:4d:6d:0f:0d:91:3d:a7:
95:42:ed:2b:19:e9:98:66:f0:8b:7c:9f:04:85:7a:90:cd:39:
89:ec:76:d0:7c:eb:e3:df:fc:4e:0a:e4:e9:8e:6c:23:79:c6:
26:f9:03:16:84:81:36:07:2b:57:38:44:b8:cc:0c:c6:99:0f:
5e:d3:b9:d1:23:a3:b0:e2:1a:23:44:6d:7f:4d:a8:f0:91:a9:
9a:00:e2:2b:02:9a:60:3b:c9:76:6e:11:a0:7f:ff:d8:38:eb:
84:62:a0:0c:c0:44:42:51:14:8d:0e:0e:dd:a7:ab:49:8d:e6:
0d:32:d4:29:a4:43:32:cb:02:b0:4d:91:bb:eb:22:36:03:07:
80:c9:df:f2:0c:27:b0:3a:6e:cf:19:0d:91:56:25:3a:3b:27:
8d:d8:17:64:53:e3:ee:6b:52:05:e4:1b:99:83:a0:66:c2:91:
3b:93:ab:8f:e7:f4:a1:c0:04:5f:54:63:25:67:cf:fe:54:00:
80:fb:fe:af:ad:0b:45:eb:4c:05:84:46:68:8c:a9:9f:a8:86:
6a:bb:1b:87:b1:8a:58:aa:8b:20:29:2e:ec:4a:cc:21:28:71:
34:e3:ab:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8xFmRPpF87+bC7KeRGd3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2ZTkxYTlkN2NhZWY0ODE4Njc0YzVkNjI2MjgxMzYxNWM4
OWRlNTYwHhcNMjYwMzI2MDcwMTUxWhcNMjYwMzI3MDcwMTUxWjAzMTEwLwYDVQQD
EyhlMDEwYWY3NTdmM2Q4YTQ3ODE4MzJiMTg1YmIyODMzOTE3YjI3MWE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Owdo0DgCM82JIhki1jHRnk3zbi1
wGYgaCLIWOaEnadCDetmGEvu6DBolC0vN3yvEvlWFMloKtxo/6sES/kiDOOeJQef
WZpZ3gqE6minuEN4uCyQDMfK8IRTyI3rAerrllzo9LQLAoB70eqFveZK1U/dqw4t
A46VHcMc3ehwVCMNJhmPAqQ/7i87mPawour7+n/MFcCk0G9EcP9q0OjdpyTsTXww
lLN5TBlATU4A1DqrKaH5TecAL61BU/nui04SmCCcjEB+GnsOiQKxu7+QbtG7lzf5
w755RSFizVMfA8VA+saoDpvRFXRLNtalMrVvnb2vi2yc0vEiolshtBCi6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOAQr3V/PYpHgYMrGFuygzkXsnGpMB8GA1UdIwQY
MBaAFKbpGp18rvSBhnTF1iYoE2Fcid5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81NWRlOTAtYmNmNi00MWE2LWE5ZTgt
NDA4MjI5ZjBiYWYxLzEvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny81NWRlOTAtYmNmNi00MWE2LWE5ZTgtNDA4MjI5ZjBiYWYx
LzEvcHVrYW5YeXU5SUdHZE1YV0ppZ1RZVnlKM2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaccNFv7Y
ZaJcAXdAMk3+D8JUlj4q/EDmpVQUap5NbQ8NkT2nlULtKxnpmGbwi3yfBIV6kM05
iex20Hzr49/8Tgrk6Y5sI3nGJvkDFoSBNgcrVzhEuMwMxpkPXtO50SOjsOIaI0Rt
f02o8JGpmgDiKwKaYDvJdm4RoH//2DjrhGKgDMBEQlEUjQ4O3aerSY3mDTLUKaRD
MssCsE2Ru+siNgMHgMnf8gwnsDpuzxkNkVYlOjsnjdgXZFPj7mtSBeQbmYOgZsKR
O5Orj+f0ocAEX1RjJWfP/lQAgPv+r60LRetMBYRGaIypn6iGarsbh7GKWKqLICku
7ErMIShxNOOr3A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:00:44 2026 by rpki-client