Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: Vykip8Pu3IF3A9uBSO1OJYhfUWQkL1zoitndjpExzyE=
Subject key identifier: 25:89:BB:75:2E:F1:90:A2:31:A4:38:B6:36:00:1D:CF:3A:39:E2:80
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 019EBE7F681C0144F7F10937CE3A6E969A53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 03EA
Signing time: Sat 13 Jun 2026 01:01:21 +0000
Manifest this update: Sat 13 Jun 2026 01:01:21 +0000
Manifest next update: Sun 14 Jun 2026 01:01:21 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: 23IfTZAILmia+EOeEnH90ztni+SFhumM5Zh4Km0nT7A=)
2: tW6tlYVnkXnq9oP8owXcbYW47kU.roa (hash: g2+Pc2wN2E52WWpsZZidSy7PbjRy5/I1OGghh4rSkGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:7f:68:1c:01:44:f7:f1:09:37:ce:3a:6e:96:9a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Jun 13 01:01:21 2026 GMT
Not After : Jun 14 01:01:21 2026 GMT
Subject: CN=2589bb752ef190a231a438b636001dcf3a39e280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:a8:1b:67:11:de:94:67:04:6e:91:48:12:
58:1e:be:f7:5e:00:d9:18:fe:3d:49:b5:35:82:b0:
2b:26:7a:43:25:5e:34:f0:33:a8:97:c0:a9:5a:a8:
71:5f:d4:fd:2e:7e:a0:46:11:71:f7:c7:61:27:01:
a3:e7:1b:59:c4:fb:54:94:24:1e:0c:da:12:f3:0b:
6c:e0:0a:1d:d4:91:fe:11:10:5c:0a:0d:38:dc:c7:
59:e7:fb:98:83:a9:4a:15:96:9a:84:aa:d3:6d:52:
d3:fb:1e:c4:25:49:8d:5f:ae:4d:13:2a:06:44:5d:
c0:d5:d7:d6:f6:07:21:b3:ee:32:39:13:bc:5a:07:
b7:10:34:6f:d3:69:df:e1:89:74:c8:5b:de:e5:7d:
e6:37:70:8f:2d:05:30:fd:a4:c1:5a:3f:8d:e2:54:
e8:df:c8:96:4a:73:f2:bc:cb:8e:2b:20:92:83:9a:
3a:39:5c:2e:7c:2b:d5:a1:1b:41:82:68:47:08:d8:
73:74:a5:1f:06:ef:88:92:91:a4:69:08:8e:40:5b:
97:9b:29:cd:35:93:3b:a0:5c:d8:9b:1c:5a:7c:19:
af:9b:3b:23:5c:4f:e3:e5:6d:10:4b:75:6d:49:28:
bd:c5:a0:99:22:79:85:4b:15:5d:98:66:96:b3:1d:
8b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:89:BB:75:2E:F1:90:A2:31:A4:38:B6:36:00:1D:CF:3A:39:E2:80
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:de:2c:b7:c6:d4:c0:72:de:41:02:d0:c5:fb:99:9a:1c:86:
91:1f:72:28:c3:b2:4e:ee:00:3f:ed:41:92:1e:3b:2c:f2:16:
ef:c9:f6:de:98:ff:90:06:66:07:d2:93:b9:a8:cc:25:4a:55:
c1:18:43:43:73:a5:c8:ac:26:0a:e6:30:4b:d0:03:28:33:22:
6c:75:33:56:72:47:5c:48:25:99:7e:91:4a:b2:27:51:2a:cc:
ec:e2:59:02:5c:02:ee:11:6a:53:cf:64:ad:9e:6e:23:03:92:
bf:a2:64:6f:44:84:2b:ad:d8:9a:87:81:c8:2d:f9:ef:3b:a2:
ef:d0:5f:89:99:de:2c:98:1d:87:fd:63:e2:97:da:db:76:b9:
10:12:ca:c5:46:c4:38:41:e7:7e:80:6a:86:eb:1b:86:f4:86:
8d:9d:19:5b:80:1c:d5:36:68:77:df:d4:1e:41:ed:45:1b:82:
8a:96:b7:86:7b:d7:ba:64:ee:1d:2d:b0:62:2f:cc:eb:f8:22:
56:8f:b7:27:46:22:7c:ec:f8:5d:c1:8c:20:5b:4c:8e:8d:64:
26:9d:d2:d7:93:0b:e5:a9:53:08:3a:e9:a4:8f:50:0f:25:2f:
d1:7e:a3:35:78:d4:43:ad:74:81:7a:0f:f7:e3:b6:22:90:38:
0c:dd:d4:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:54:43 2026 by rpki-client