Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: CYYF1PK3fCpCPKF4sdwqbupql0cH3WEC1dYQr3qPPN8=
Subject key identifier: 0B:16:ED:73:7F:2E:D2:90:95:CA:44:DD:20:5C:15:A6:9A:E0:D3:FD
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 019A52D125D8F9FA0F186A7B24725BD62D0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 019F
Signing time: Wed 05 Nov 2025 07:00:29 +0000
Manifest this update: Wed 05 Nov 2025 07:00:29 +0000
Manifest next update: Thu 06 Nov 2025 07:00:29 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: pvYmxsEu0tH1HEnT/oGjBdXmKyFKo+dKO/gC2ScPutc=)
2: wtKFjn0luOKNhpCBH0YWKLpKHKU.roa (hash: Z6YfBfkr08FSM8yJ/BnA5aNSDpKZqhovD8OdV3xTXpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 07:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:25:d8:f9:fa:0f:18:6a:7b:24:72:5b:d6:2d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Nov 5 07:00:29 2025 GMT
Not After : Nov 6 07:00:29 2025 GMT
Subject: CN=0b16ed737f2ed29095ca44dd205c15a69ae0d3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6a:f7:63:39:3c:ae:8b:ba:17:28:bf:a8:49:
a4:f2:0b:14:4b:30:93:f4:6d:59:d8:02:e2:5f:2a:
72:24:32:eb:e9:08:3c:43:01:b1:26:da:44:67:d8:
c7:34:b5:0a:05:bc:1b:8d:a1:b0:74:29:aa:d0:c3:
57:9e:63:b2:34:17:10:c7:04:98:12:30:f0:61:df:
ca:ff:a5:00:2f:38:80:04:40:57:60:1e:57:92:85:
4f:2c:d9:bf:32:77:76:6c:90:7b:e0:b3:2f:96:7d:
8a:b0:25:c7:38:37:4e:34:ab:8c:df:39:66:e7:28:
d2:96:a3:7a:4e:4c:91:1a:ac:32:91:aa:6d:2f:a3:
6e:3c:75:e0:97:53:5c:30:9e:96:8c:1d:21:fc:98:
75:07:43:5d:42:0c:c0:74:af:4c:a9:4a:1d:1c:1e:
99:87:52:83:6f:53:08:54:b6:c5:a4:06:e1:88:e7:
3a:6d:7d:3e:e4:39:e7:ed:fc:ec:0a:b9:d4:31:c4:
85:3f:2d:66:0d:21:fc:cc:e8:8e:77:6f:98:2e:f9:
75:85:95:e4:15:24:ad:00:86:e4:83:b9:d3:dc:51:
09:f7:11:85:8d:d0:6f:8d:08:69:5b:34:40:c2:9f:
e2:98:d1:5e:ad:e8:af:e7:d3:33:a7:63:a2:96:71:
cb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:16:ED:73:7F:2E:D2:90:95:CA:44:DD:20:5C:15:A6:9A:E0:D3:FD
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:a3:22:f8:94:af:b8:18:98:54:11:a7:f6:0d:11:f8:9c:91:
42:51:1f:42:f7:1a:ee:a3:98:dd:2b:53:dd:7c:2f:2b:2b:ae:
1c:cf:a1:d6:c0:06:f1:72:57:38:ce:27:79:d1:69:5d:3f:ed:
22:24:00:7f:82:04:5c:94:78:b1:69:8c:d9:94:8f:fb:06:2d:
40:99:2a:a9:e8:c9:9a:d5:da:85:7b:ae:c2:ba:32:e2:2c:eb:
d0:16:0f:5c:02:32:28:11:95:7c:95:09:12:ec:a8:c2:ae:61:
97:f1:91:13:8f:fa:ef:1e:a3:37:b4:ad:5b:f6:c2:d2:f2:4e:
bd:d6:bb:f0:3a:fb:dc:8e:12:84:73:1a:3e:4b:5a:67:34:55:
b4:a6:df:eb:13:98:11:61:c9:67:62:d0:2e:a3:f9:a7:e5:e5:
08:06:92:8b:3a:4d:f6:10:d3:11:09:7d:16:b6:0e:26:d4:a1:
04:23:4d:27:c2:24:14:52:99:61:24:5d:7a:ad:c8:fd:da:11:
df:7c:b6:5d:91:cd:9e:8c:96:5c:2d:1c:eb:4b:a6:6d:b8:c1:
92:5f:91:12:fc:d0:33:28:a6:78:53:93:5b:0f:33:53:aa:30:
26:53:f1:1b:eb:4b:9a:df:e2:f9:cd:fa:c9:6e:de:6b:76:3d:
cf:04:1b:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 17:05:49 2025 by rpki-client