Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: QKyFXjjch1TXXtPzkhELw+KkfNNfS19w3FjdV8GD2qM=
Subject key identifier: 0E:9F:DE:4D:F4:97:32:96:8E:C2:C0:D0:4E:A1:54:F2:49:C5:3D:91
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 0199FBEAA8E8318B6D62364CE573C7E4F135
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 0172
Signing time: Sun 19 Oct 2025 10:01:23 +0000
Manifest this update: Sun 19 Oct 2025 10:01:23 +0000
Manifest next update: Mon 20 Oct 2025 10:01:23 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: 2hKx7yhTW5y+9qQZqwRRTfIxIRaPNdKx1GPtC2ZwHcI=)
2: wtKFjn0luOKNhpCBH0YWKLpKHKU.roa (hash: Z6YfBfkr08FSM8yJ/BnA5aNSDpKZqhovD8OdV3xTXpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:a8:e8:31:8b:6d:62:36:4c:e5:73:c7:e4:f1:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Oct 19 10:01:23 2025 GMT
Not After : Oct 20 10:01:23 2025 GMT
Subject: CN=0e9fde4df49732968ec2c0d04ea154f249c53d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f9:8f:3e:94:69:69:69:3e:4d:03:18:69:b6:
b1:ed:74:8c:9b:9a:09:22:18:07:58:9c:5a:1f:49:
39:50:aa:36:71:d1:26:c3:4d:c2:2e:ce:4e:81:6a:
99:d2:3f:bb:ae:82:3b:36:4b:f8:33:24:11:bf:5b:
81:97:3f:b6:26:ef:b0:1c:ac:3b:9f:18:f4:0b:c4:
e8:c9:f2:05:0a:c0:8a:30:c0:3f:ec:9e:c5:55:02:
95:0a:45:1e:85:dd:c5:e1:37:0f:71:31:e0:0e:5b:
67:18:97:fe:ab:0f:e8:72:40:ed:12:39:3c:9b:45:
16:99:b5:e2:68:64:06:dd:f8:60:0e:a2:fc:6b:3c:
ab:05:6c:cc:e0:0c:dd:3b:66:3a:96:db:5b:1e:91:
92:cb:dd:8a:24:64:72:fc:d3:28:97:f0:e9:69:3d:
3a:61:dc:5a:ef:3c:af:0d:52:db:c3:3a:42:1a:6d:
34:11:8c:83:02:3e:1f:bc:d5:7c:bf:7b:5a:d4:c5:
1a:2a:09:4c:cb:82:a5:9f:7b:0f:84:fa:24:3f:04:
fd:75:35:ab:b1:11:0c:52:0e:7c:57:cc:ad:4c:8a:
f3:0e:40:13:d8:15:19:64:f7:3c:17:c7:f2:9d:c1:
1d:88:f6:0d:63:d6:55:d6:26:89:ef:b6:7a:0b:a5:
97:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9F:DE:4D:F4:97:32:96:8E:C2:C0:D0:4E:A1:54:F2:49:C5:3D:91
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b1:cf:b7:3e:b5:a0:0c:42:da:01:96:d7:ba:9b:d2:e5:09:
3a:d8:ec:7a:51:aa:48:fd:cf:b9:65:d4:af:05:71:3f:50:6b:
9e:2b:a6:bb:86:41:6c:55:03:2c:ba:46:ae:9a:5c:b9:8e:d6:
07:2b:f9:31:58:38:1a:1b:98:18:ad:23:9d:e6:d6:89:21:0a:
43:b8:54:2b:20:f3:bb:b9:7f:0c:4e:4d:8f:76:5b:d1:28:ca:
7a:29:eb:34:80:43:3c:83:0e:0e:b8:58:f1:15:84:d3:d1:fd:
6c:ec:ca:47:9c:3d:dd:a4:73:8e:22:f0:c7:3b:b5:84:35:96:
ec:8e:10:1d:06:e5:a4:eb:c6:f8:64:2d:4a:94:01:f9:44:9c:
d3:c6:bc:ae:1a:0f:d4:a6:74:7d:d8:a4:2a:50:6a:7a:fc:f6:
c1:9e:79:c5:62:71:c2:13:44:fc:84:7a:53:6b:4a:3a:49:98:
0b:b2:68:e6:03:e9:7c:25:0c:72:0e:4c:99:64:ce:a2:4a:3c:
4c:54:2a:e7:d1:09:26:c9:4a:42:b4:4c:19:0c:b6:f8:df:ca:
47:cf:7f:38:ed:14:e8:55:45:65:4a:95:3b:46:b1:37:8d:50:
33:6d:88:d6:a1:56:e8:3a:4d:da:d3:ed:04:a1:2b:50:70:9e:
8f:5c:ea:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76qjoMYttYjZM5XPH5PE1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNDMzNDBmYWQyNDY0NjVkZThlNjE0ZDAzOTU2M2E2OTk2
NTdkOGQwHhcNMjUxMDE5MTAwMTIzWhcNMjUxMDIwMTAwMTIzWjAzMTEwLwYDVQQD
EygwZTlmZGU0ZGY0OTczMjk2OGVjMmMwZDA0ZWExNTRmMjQ5YzUzZDkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/mPPpRpaWk+TQMYabax7XSMm5oJ
IhgHWJxaH0k5UKo2cdEmw03CLs5OgWqZ0j+7roI7Nkv4MyQRv1uBlz+2Ju+wHKw7
nxj0C8ToyfIFCsCKMMA/7J7FVQKVCkUehd3F4TcPcTHgDltnGJf+qw/ockDtEjk8
m0UWmbXiaGQG3fhgDqL8azyrBWzM4AzdO2Y6lttbHpGSy92KJGRy/NMol/DpaT06
Ydxa7zyvDVLbwzpCGm00EYyDAj4fvNV8v3ta1MUaKglMy4Kln3sPhPokPwT9dTWr
sREMUg58V8ytTIrzDkAT2BUZZPc8F8fyncEdiPYNY9ZV1iaJ77Z6C6WX+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA6f3k30lzKWjsLA0E6hVPJJxT2RMB8GA1UdIwQY
MBaAFD1DNA+tJGRl3o5hTQOVY6aZZX2NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYt
YTQzN2NlODkyODQxLzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYtYTQzN2NlODkyODQx
LzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbHPtz61
oAxC2gGW17qb0uUJOtjselGqSP3PuWXUrwVxP1Brniumu4ZBbFUDLLpGrppcuY7W
Byv5MVg4GhuYGK0jnebWiSEKQ7hUKyDzu7l/DE5Nj3Zb0SjKeinrNIBDPIMODrhY
8RWE09H9bOzKR5w93aRzjiLwxzu1hDWW7I4QHQblpOvG+GQtSpQB+USc08a8rhoP
1KZ0fdikKlBqevz2wZ55xWJxwhNE/IR6U2tKOkmYC7Jo5gPpfCUMcg5MmWTOoko8
TFQq59EJJslKQrRMGQy2+N/KR89/OO0U6FVFZUqVO0axN41QM22I1qFW6DpN2tPt
BKErUHCej1zqeA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:23 2025 by rpki-client