Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: 0Ey9s4f6YeDhf0d69xzBjxP6XzNRUJb1yOnYtnAgj9I=
Subject key identifier: 94:03:46:7F:92:70:69:F9:F6:1A:DA:AE:06:DB:27:F0:9F:9E:9B:E8
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 019E20235CD781F854B9910BD61B60E2909D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 0398
Signing time: Wed 13 May 2026 07:00:48 +0000
Manifest this update: Wed 13 May 2026 07:00:48 +0000
Manifest next update: Thu 14 May 2026 07:00:48 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: Nz/CQotU0nWUWK7majHp/jtnc7d/3XEEdpBS5AQpaQk=)
2: tW6tlYVnkXnq9oP8owXcbYW47kU.roa (hash: g2+Pc2wN2E52WWpsZZidSy7PbjRy5/I1OGghh4rSkGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:5c:d7:81:f8:54:b9:91:0b:d6:1b:60:e2:90:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: May 13 07:00:48 2026 GMT
Not After : May 14 07:00:48 2026 GMT
Subject: CN=9403467f927069f9f61adaae06db27f09f9e9be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bb:c2:94:54:9c:c1:8c:85:a8:c1:c8:d9:95:
2a:38:7e:a1:af:9c:3b:1d:9a:39:e8:d8:20:62:a1:
5b:29:77:04:cd:3c:c7:dc:90:b2:66:d9:af:70:f4:
2b:80:b0:39:f9:67:7c:27:e3:f9:90:a9:13:9d:e4:
65:42:84:a0:f9:5c:b6:9c:39:60:df:42:32:07:51:
20:11:c2:f9:c8:da:5a:ef:f4:0b:1f:fa:0a:ac:fa:
40:67:33:0d:a7:38:0c:d6:63:ca:b5:db:1c:1b:ea:
80:26:32:15:bf:5a:28:1d:ea:22:43:89:33:2d:35:
7a:66:57:08:dd:e3:24:bc:df:c9:be:21:37:f4:c0:
ae:b4:79:37:20:ff:dc:fb:34:48:c3:66:29:ab:9e:
00:91:41:c7:40:24:0c:d5:58:de:bb:32:50:87:d1:
6c:2a:c6:be:cf:68:b9:c2:32:be:b6:84:5d:03:e9:
c9:dd:f4:dc:a4:33:b8:16:ff:47:74:59:e1:83:01:
9b:a6:53:fe:83:6c:bf:68:d0:36:23:9d:89:fa:6a:
a4:54:da:70:86:cc:2d:ea:40:2f:49:3c:f4:70:91:
e5:9e:cf:9e:d7:03:0a:46:55:e6:4d:4e:20:22:33:
f3:74:41:cd:8e:66:04:cb:8f:51:0c:26:e3:6c:32:
c8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:03:46:7F:92:70:69:F9:F6:1A:DA:AE:06:DB:27:F0:9F:9E:9B:E8
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:40:86:94:c1:0d:b2:3f:77:19:a4:0d:90:a5:35:a9:fc:8e:
c0:a5:9e:44:fa:7d:63:cb:6a:36:15:8b:e8:db:a7:50:bd:4a:
ac:3a:cb:6b:95:15:fc:5b:33:58:33:e1:ac:6f:bd:8a:90:5a:
c6:68:2d:72:48:7f:4d:18:cb:fd:fa:49:38:d9:f2:44:87:2f:
46:b5:a3:e4:de:12:45:84:e4:31:46:d9:47:a8:81:a7:53:e1:
51:63:cf:1f:a7:d9:e9:72:6a:d5:34:5c:44:30:e5:ea:17:1e:
37:43:76:a4:2b:47:7b:fc:eb:fc:fd:b7:71:29:3b:70:96:4e:
6f:57:0d:8d:d0:e4:aa:b4:bc:19:92:ff:c5:6c:17:49:1a:d7:
1a:4d:87:42:a2:fa:d3:68:3a:33:aa:80:21:ff:1a:ef:c1:5a:
5c:68:a4:8a:e6:f8:e5:c1:80:ac:3d:a3:e6:df:fa:47:6e:90:
b0:3e:0c:2a:b4:40:0d:24:9d:82:78:9e:af:5c:05:46:41:b1:
d1:9b:6c:6d:01:90:41:93:d3:62:ae:f1:65:b1:fd:99:69:cc:
10:14:f2:e5:af:3c:8e:f3:26:ae:4e:da:8b:6f:5b:6b:8a:8a:
7d:ab:08:87:31:04:45:85:f4:0f:f1:96:de:57:8b:7f:7f:20:
85:c0:c2:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:31:24 2026 by rpki-client