Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json)
Hash identifier: jaVcwbHwwHFCuEs9Y/f5g3IBI4GPKoiAf6nS6zrChvc=
Subject key identifier: A1:B1:9A:42:15:9B:F6:EE:DE:D0:2D:65:29:E2:A0:58:FF:8E:E5:39
Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Certificate serial: 019EB98FF83F577518D410BEDC1077EAD9A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
Manifest number: 133F
Signing time: Fri 12 Jun 2026 02:01:20 +0000
Manifest this update: Fri 12 Jun 2026 02:01:20 +0000
Manifest next update: Sat 13 Jun 2026 02:01:20 +0000
Files and hashes: 1: FU4n6XNa33EeNcK1pVjnryUAJ6g.roa (hash: vAyZ21gv2CupNTDwhYo/hiCxZiQKD0Xxe9J+fN5P0S8=)
2: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: b6+TzDBvJAjH+L7EdR94Yr9X6Eyb7r2PtRe+XR1I/2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 02:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:f8:3f:57:75:18:d4:10:be:dc:10:77:ea:d9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6
Validity
Not Before: Jun 12 02:01:20 2026 GMT
Not After : Jun 13 02:01:20 2026 GMT
Subject: CN=a1b19a42159bf6eeded02d6529e2a058ff8ee539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fc:63:55:48:cc:9a:26:d2:24:85:8f:c9:73:
bc:c1:02:75:24:d0:f9:5d:f4:31:e1:52:af:67:9d:
42:87:05:35:cd:8f:52:13:13:bc:d8:7f:a5:29:39:
d4:28:43:f0:db:ad:6d:3b:63:d3:4f:73:75:0e:c4:
79:e9:c9:f1:31:55:fe:4e:06:ab:db:15:d1:21:51:
cf:b7:62:eb:92:35:ca:84:54:72:42:ee:47:50:ae:
95:5f:b3:2c:c4:0e:80:31:7d:e9:50:dc:20:77:a0:
d4:ee:2e:b3:f4:07:91:ec:61:82:51:67:4d:36:82:
e8:63:71:68:7b:06:1a:11:44:41:68:99:c2:98:2e:
da:b0:7f:4e:98:1d:f4:c6:e5:f4:4e:b5:a7:62:39:
26:fa:b6:ce:79:3b:e0:a9:be:94:db:35:d7:d5:6c:
8a:a9:09:36:58:36:e0:ce:b8:99:93:ef:9a:b9:aa:
0f:24:a4:b1:ff:7f:fd:08:3a:bf:30:0d:1c:ef:0f:
c1:36:0a:b6:5b:b2:3e:63:2b:ae:16:97:da:9c:c0:
de:a3:f6:63:7a:f4:45:f0:a4:a4:48:26:4b:d9:43:
b8:63:62:0b:e3:72:70:37:96:0b:e3:28:94:d5:50:
2b:3f:b2:c9:bd:86:0b:4e:9b:17:c7:93:1f:72:33:
69:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B1:9A:42:15:9B:F6:EE:DE:D0:2D:65:29:E2:A0:58:FF:8E:E5:39
X509v3 Authority Key Identifier:
keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:a7:89:58:21:f9:e4:fc:92:58:e0:56:13:85:f7:ec:a6:ba:
6f:3a:21:05:75:08:91:28:82:54:bf:bd:f1:3c:d6:f2:f1:93:
35:f7:3b:52:b9:20:40:e6:6f:01:ec:ee:a7:5b:cb:b5:f2:41:
9a:68:d3:fc:29:aa:85:e4:8b:d2:cc:b6:85:7c:1b:ed:6a:99:
4e:05:ca:05:d9:49:37:2c:b5:a2:79:7c:dd:60:c7:1b:a8:ba:
ca:a8:d3:6b:58:c5:16:e1:f5:9c:20:ba:60:51:44:ff:a2:ba:
40:ce:d5:48:50:17:02:1d:b3:9a:8f:1a:e3:d2:75:bd:0b:b2:
18:3d:9e:b3:bc:a3:ac:67:d0:b8:26:9c:b2:e6:73:ca:77:52:
b8:6f:a8:b6:44:64:5a:f8:cf:ed:24:b9:ed:a9:b3:0e:f9:82:
c4:50:07:65:3f:0f:5f:4b:00:4c:5f:68:dd:20:80:dc:5c:7a:
a3:8c:63:c2:6c:39:17:35:86:f5:7a:9b:78:33:08:d0:74:fc:
b1:b1:c3:23:01:e6:65:f8:ea:59:8d:ab:62:ee:02:d3:8e:fc:
f1:73:78:5c:57:b2:7a:ae:dd:bf:a0:c9:e5:69:06:dd:ee:82:
c3:5d:33:52:cb:0d:4c:8f:41:2c:33:80:0e:4c:6d:a7:d6:9d:
be:6b:81:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:53:01 2026 by rpki-client