Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json)
Hash identifier: /vANa59UBB6hzsn2rJXdawFRoYHfj4PYKnFjuUu924Y=
Subject key identifier: B5:8D:B7:61:48:B2:A8:56:29:30:9D:DC:02:DD:EA:BE:98:2C:B9:5D
Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Certificate serial: 019EC336F29BB7094E278D71B7B7659B0F2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
Manifest number: 1344
Signing time: Sat 13 Jun 2026 23:00:18 +0000
Manifest this update: Sat 13 Jun 2026 23:00:18 +0000
Manifest next update: Sun 14 Jun 2026 23:00:18 +0000
Files and hashes: 1: FU4n6XNa33EeNcK1pVjnryUAJ6g.roa (hash: vAyZ21gv2CupNTDwhYo/hiCxZiQKD0Xxe9J+fN5P0S8=)
2: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: oGXWsISlEV2jVqqsDGPcF7mYKpZpIjuQLWYXez+X0x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:36:f2:9b:b7:09:4e:27:8d:71:b7:b7:65:9b:0f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Validity
Not Before: Jun 13 23:00:18 2026 GMT
Not After : Jun 14 23:00:18 2026 GMT
Subject: CN=b58db76148b2a85629309ddc02ddeabe982cb95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:34:54:2f:6f:f9:4c:1b:0b:0c:b5:4d:c2:43:
fd:ad:b1:ee:9c:33:3c:16:6f:24:dd:18:f1:11:48:
8f:a9:c8:9a:b0:8c:b9:bc:f2:b6:fb:a3:f5:21:4a:
90:b0:81:70:48:db:5f:36:16:a0:b9:33:56:e7:cd:
dd:a2:54:20:67:84:a1:91:a5:92:8b:e7:e0:d7:1e:
71:1f:fa:94:0a:42:7e:b4:fe:c4:a0:95:c8:65:9f:
8d:c2:0b:9e:9b:3a:49:c9:af:35:56:ce:80:4a:32:
f7:5b:dc:29:06:b2:27:9f:54:e8:c7:8b:e7:72:fe:
06:3e:89:72:42:68:b3:a5:29:3a:48:d5:9d:b1:39:
97:5e:7d:71:c0:6a:18:e3:c1:fe:89:9e:8a:6b:88:
16:b3:3f:d8:d3:56:7f:41:95:16:26:ee:3a:9a:0c:
bd:02:9e:5e:d6:5e:85:ce:d5:ab:65:c2:07:95:a6:
d4:0d:5d:59:dc:c6:7a:d7:b6:de:24:cb:00:fb:85:
89:22:98:06:6e:82:cf:db:f1:4e:b8:eb:55:46:8a:
a0:79:98:e4:af:9d:84:21:12:66:a4:80:9e:df:e4:
5c:09:e3:30:18:55:88:70:8f:29:b4:e0:17:db:eb:
13:a5:6c:ce:ad:70:76:ea:05:18:c0:40:4c:da:4e:
a8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8D:B7:61:48:B2:A8:56:29:30:9D:DC:02:DD:EA:BE:98:2C:B9:5D
X509v3 Authority Key Identifier:
keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:4f:81:4e:f5:00:3b:50:1f:c8:f6:1b:27:59:53:d7:7a:f5:
54:ea:eb:59:7d:fb:7e:33:c5:fb:de:1f:7c:23:e7:a5:25:d2:
52:37:c4:28:d3:6d:b9:ea:ad:96:d5:be:75:85:0f:66:60:73:
34:92:b2:9a:47:82:6b:db:b1:df:be:fd:26:31:a3:50:06:30:
95:1d:39:56:c0:0f:24:87:36:8b:75:e1:1c:1c:21:88:4b:60:
49:60:82:ff:49:0b:83:10:f9:a6:a3:62:7d:3b:77:ee:a6:40:
a4:fe:ad:60:dc:86:40:a7:22:6d:b3:3b:f2:03:c4:a9:c4:c7:
11:b7:d5:78:1f:3c:6d:ed:25:fd:4a:c7:ec:a0:1f:b1:b7:4b:
5c:14:49:93:7a:e9:2a:f8:46:fb:59:e5:30:82:16:ba:80:8a:
4d:bd:8e:1d:63:19:22:8b:ea:19:e1:0e:d6:28:9c:d3:59:2d:
b9:1d:6d:79:1e:89:b1:81:bd:e8:3a:57:df:c7:a4:f1:2d:c6:
8f:a4:43:22:21:b9:e1:e2:49:b4:73:f2:e4:5c:09:76:81:e2:
38:83:1e:ac:a9:14:24:b8:e5:4b:98:d4:61:67:d6:25:54:50:
9f:15:8a:7b:a8:ab:b7:de:ec:2c:80:2d:51:c9:0f:9b:ee:5c:
7c:b0:cc:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7DNvKbtwlOJ41xt7dlmw8vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkZjk2ZTdkYTU0OThiNzBlM2JiMTdiNmUxOGEzMTEzNzEy
ZDMyYjYwHhcNMjYwNjEzMjMwMDE4WhcNMjYwNjE0MjMwMDE4WjAzMTEwLwYDVQQD
EyhiNThkYjc2MTQ4YjJhODU2MjkzMDlkZGMwMmRkZWFiZTk4MmNiOTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2DRUL2/5TBsLDLVNwkP9rbHunDM8
Fm8k3RjxEUiPqciasIy5vPK2+6P1IUqQsIFwSNtfNhaguTNW583dolQgZ4ShkaWS
i+fg1x5xH/qUCkJ+tP7EoJXIZZ+NwguemzpJya81Vs6ASjL3W9wpBrInn1Tox4vn
cv4GPolyQmizpSk6SNWdsTmXXn1xwGoY48H+iZ6Ka4gWsz/Y01Z/QZUWJu46mgy9
Ap5e1l6FztWrZcIHlabUDV1Z3MZ617beJMsA+4WJIpgGboLP2/FOuOtVRoqgeZjk
r52EIRJmpICe3+RcCeMwGFWIcI8ptOAX2+sTpWzOrXB26gUYwEBM2k6oWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLWNt2FIsqhWKTCd3ALd6r6YLLldMB8GA1UdIwQY
MBaAFD35bn2lSYtw47sXtuGKMRNxLTK2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYt
MzZlODg1MDY2ODBlLzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYtMzZlODg1MDY2ODBl
LzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXU+BTvUA
O1AfyPYbJ1lT13r1VOrrWX37fjPF+94ffCPnpSXSUjfEKNNtueqtltW+dYUPZmBz
NJKymkeCa9ux3779JjGjUAYwlR05VsAPJIc2i3XhHBwhiEtgSWCC/0kLgxD5pqNi
fTt37qZApP6tYNyGQKcibbM78gPEqcTHEbfVeB88be0l/UrH7KAfsbdLXBRJk3rp
KvhG+1nlMIIWuoCKTb2OHWMZIovqGeEO1iic01ktuR1teR6JsYG96DpX38ek8S3G
j6RDIiG54eJJtHPy5FwJdoHiOIMerKkUJLjlS5jUYWfWJVRQnxWKe6irt97sLIAt
UckPm+5cfLDMzw==
-----END CERTIFICATE-----
Generated at Sun Jun 14 08:10:42 2026 by rpki-client