Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json)
Hash identifier: f0uEZQ93/zNWFCatENzInZg5jGlFoQZ+UXU7M0Cw+Io=
Subject key identifier: 40:AC:7A:B4:84:BC:4C:4A:A6:10:B5:FB:23:C3:0C:C4:CD:38:FB:50
Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Certificate serial: 019E20FFCDBD63952A8D7FAA87A6096AA475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
Manifest number: 12F0
Signing time: Wed 13 May 2026 11:01:35 +0000
Manifest this update: Wed 13 May 2026 11:01:35 +0000
Manifest next update: Thu 14 May 2026 11:01:35 +0000
Files and hashes: 1: FU4n6XNa33EeNcK1pVjnryUAJ6g.roa (hash: vAyZ21gv2CupNTDwhYo/hiCxZiQKD0Xxe9J+fN5P0S8=)
2: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: PQJ8IlAxydG+h3YV+ZIH6pwUAZWbSA5mEWgxsxL4rV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 11:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:cd:bd:63:95:2a:8d:7f:aa:87:a6:09:6a:a4:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Validity
Not Before: May 13 11:01:35 2026 GMT
Not After : May 14 11:01:35 2026 GMT
Subject: CN=40ac7ab484bc4c4aa610b5fb23c30cc4cd38fb50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:88:96:6a:43:dc:0b:82:d7:fb:91:31:0c:1f:
a4:87:e8:ab:8f:2c:5f:ee:b2:8c:ad:8d:24:ff:b2:
87:0b:f0:64:4a:2e:7c:27:29:a0:d5:97:4f:19:a6:
7f:b6:8e:a1:30:f1:a6:93:b3:49:1e:66:1c:f2:47:
fc:5e:14:f9:a6:8c:07:56:1c:24:96:a1:70:d7:45:
fd:fc:59:8a:1d:71:33:13:56:ea:29:8d:c8:ea:13:
f2:8e:43:9f:0b:c0:66:e4:f3:4f:71:fe:db:ad:2a:
02:86:5f:c0:93:34:e9:6c:05:7a:da:8f:b5:7a:8f:
62:83:b2:08:7c:48:13:d8:9c:96:9e:3a:b0:93:51:
e5:e0:9f:1d:55:5d:35:a3:70:3d:f7:78:bf:bd:2a:
ff:49:b1:51:e6:55:c2:83:ac:3e:28:39:86:5a:7a:
95:40:c4:2d:0a:ee:55:37:f9:66:88:5e:5f:65:49:
19:44:d7:4f:b3:82:e0:4e:6b:c5:66:0f:24:1d:35:
db:74:ae:d6:91:0c:39:4e:64:17:8d:4c:8d:e6:df:
85:b6:e7:9c:6c:8d:02:39:51:f2:08:9f:ee:fc:6c:
3b:14:83:40:c5:ff:9a:b5:36:44:28:1f:fd:76:ce:
7a:9f:f1:dd:84:7d:0c:e1:b8:65:9a:76:ce:11:a0:
7e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AC:7A:B4:84:BC:4C:4A:A6:10:B5:FB:23:C3:0C:C4:CD:38:FB:50
X509v3 Authority Key Identifier:
keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:60:26:f5:89:81:84:4f:2e:66:dc:7b:8b:6d:d8:1e:66:67:
b0:f7:cf:aa:2f:db:d0:7c:cf:38:af:2d:b3:dd:cc:51:bc:7a:
35:cf:6f:b8:87:9e:e8:7c:d5:13:8e:6f:84:c6:b4:e0:94:51:
76:cd:2e:f6:28:e2:7c:78:f9:aa:bf:ed:03:ec:29:81:e1:25:
f4:9a:42:73:e7:59:24:07:ab:84:1a:06:35:05:66:9f:14:1b:
92:aa:57:e1:41:a1:fd:e2:82:29:e4:75:7e:d6:aa:1d:b5:87:
f7:e6:91:12:e1:35:35:3a:47:71:21:cd:83:c4:be:c5:f4:af:
52:c4:64:1d:6f:e4:d5:3d:57:e2:2c:db:3d:e4:dd:9a:f8:46:
e8:bd:0d:3f:4e:2d:4f:44:86:26:be:34:20:f6:7f:b6:a7:01:
98:d0:83:34:89:de:f8:19:76:6c:c1:34:40:b5:60:79:a3:03:
92:84:f4:53:5b:d0:7e:97:58:28:9f:5b:ec:eb:91:a7:e2:c6:
7c:f5:d2:93:17:e5:b5:6b:2d:a6:08:11:01:22:17:ce:6f:51:
a1:6e:ba:72:b1:ca:2f:38:94:30:eb:3d:14:ba:08:31:af:cd:
1d:90:ab:55:cd:8b:20:a0:06:ca:b1:24:f0:58:b8:48:b7:e1:
25:6e:93:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4g/829Y5UqjX+qh6YJaqR1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkZjk2ZTdkYTU0OThiNzBlM2JiMTdiNmUxOGEzMTEzNzEy
ZDMyYjYwHhcNMjYwNTEzMTEwMTM1WhcNMjYwNTE0MTEwMTM1WjAzMTEwLwYDVQQD
Eyg0MGFjN2FiNDg0YmM0YzRhYTYxMGI1ZmIyM2MzMGNjNGNkMzhmYjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8oiWakPcC4LX+5ExDB+kh+irjyxf
7rKMrY0k/7KHC/BkSi58Jymg1ZdPGaZ/to6hMPGmk7NJHmYc8kf8XhT5powHVhwk
lqFw10X9/FmKHXEzE1bqKY3I6hPyjkOfC8Bm5PNPcf7brSoChl/AkzTpbAV62o+1
eo9ig7IIfEgT2JyWnjqwk1Hl4J8dVV01o3A993i/vSr/SbFR5lXCg6w+KDmGWnqV
QMQtCu5VN/lmiF5fZUkZRNdPs4LgTmvFZg8kHTXbdK7WkQw5TmQXjUyN5t+Ftuec
bI0COVHyCJ/u/Gw7FINAxf+atTZEKB/9ds56n/HdhH0M4bhlmnbOEaB+zwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECserSEvExKphC1+yPDDMTNOPtQMB8GA1UdIwQY
MBaAFD35bn2lSYtw47sXtuGKMRNxLTK2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYt
MzZlODg1MDY2ODBlLzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYtMzZlODg1MDY2ODBl
LzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABGAm9YmB
hE8uZtx7i23YHmZnsPfPqi/b0HzPOK8ts93MUbx6Nc9vuIee6HzVE45vhMa04JRR
ds0u9ijifHj5qr/tA+wpgeEl9JpCc+dZJAerhBoGNQVmnxQbkqpX4UGh/eKCKeR1
ftaqHbWH9+aREuE1NTpHcSHNg8S+xfSvUsRkHW/k1T1X4izbPeTdmvhG6L0NP04t
T0SGJr40IPZ/tqcBmNCDNIne+Bl2bME0QLVgeaMDkoT0U1vQfpdYKJ9b7OuRp+LG
fPXSkxfltWstpggRASIXzm9RoW66crHKLziUMOs9FLoIMa/NHZCrVc2LIKAGyrEk
8Fi4SLfhJW6TwA==
-----END CERTIFICATE-----
Generated at Wed May 13 17:53:18 2026 by rpki-client