Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: mzW6LUDmurATT8AXVAKlXu1e/73aq6VCc4zz4j0y1gw=
Subject key identifier: 4F:DA:61:2A:AE:91:F0:F7:BA:AA:23:2D:C3:61:7F:20:5E:C4:DF:92
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 019E29CC22B233B2179D40E1A60EA22F2349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 039D
Signing time: Fri 15 May 2026 04:01:44 +0000
Manifest this update: Fri 15 May 2026 04:01:44 +0000
Manifest next update: Sat 16 May 2026 04:01:44 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: dpR4glTW1//tAisadGYLZfnrUZNlOVLYkVXSgyNeQjY=)
2: tW6tlYVnkXnq9oP8owXcbYW47kU.roa (hash: g2+Pc2wN2E52WWpsZZidSy7PbjRy5/I1OGghh4rSkGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:cc:22:b2:33:b2:17:9d:40:e1:a6:0e:a2:2f:23:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: May 15 04:01:44 2026 GMT
Not After : May 16 04:01:44 2026 GMT
Subject: CN=4fda612aae91f0f7baaa232dc3617f205ec4df92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:38:a6:91:61:58:cb:67:b4:11:50:a4:83:d6:
7b:d6:ce:3d:68:11:d9:43:b7:4e:c6:e6:98:0e:25:
71:2b:c2:78:54:69:bb:9e:10:a3:68:0e:7b:8a:02:
2a:aa:14:9b:f5:62:2c:15:43:d3:91:d3:4d:b7:4c:
48:9a:7e:62:fb:5c:61:49:ca:cf:54:2c:3b:1c:26:
d4:ac:ec:ef:e7:e0:36:55:4f:29:ea:15:09:2a:6d:
6c:25:f9:48:87:83:46:55:95:97:d1:b0:8f:b7:10:
1e:3a:07:58:6d:f9:f8:f7:e5:e2:50:7c:88:37:b8:
0c:53:0e:7b:53:a4:40:d9:ff:45:86:78:a5:80:54:
17:1e:41:7e:bf:0c:d7:66:39:5c:25:fb:7e:0b:8b:
85:a2:ec:cf:3c:a6:db:46:7b:c4:1e:f0:89:98:1a:
c5:90:98:c8:dc:40:ee:e1:36:f2:20:66:45:45:e7:
0f:f5:28:5a:03:10:d4:34:cc:5c:9a:ff:52:cf:8f:
20:15:f1:86:25:88:30:ed:69:d2:81:77:9d:57:90:
ae:5b:cf:e2:a9:0d:af:ca:d1:09:b2:a9:ad:cd:ee:
b5:e1:94:4d:12:c8:86:3f:20:9c:62:c3:79:fd:9d:
36:8b:1d:e3:8b:06:76:14:b1:02:5e:21:dc:96:5f:
97:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DA:61:2A:AE:91:F0:F7:BA:AA:23:2D:C3:61:7F:20:5E:C4:DF:92
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:5c:32:6a:2f:08:99:61:e7:fd:7c:8c:9f:f8:d6:f8:01:63:
e0:24:ed:55:80:d6:0d:28:26:fa:23:2e:ca:93:a8:7c:07:03:
e5:9e:d9:81:c6:2f:14:db:7e:ac:f7:2f:ab:db:ef:af:d6:0b:
34:01:10:56:e5:79:16:99:3f:30:27:43:fb:b8:35:ab:ba:43:
8b:e4:16:ee:d3:62:ef:aa:27:18:16:3d:71:14:8a:ab:37:1e:
96:24:13:e9:1b:d5:b5:94:8f:be:c6:05:de:18:10:23:a5:8b:
71:91:ff:81:f4:bf:07:f0:9d:3c:39:42:83:56:54:18:dc:4c:
bd:5d:9c:04:ba:ec:c4:4e:4a:cf:f0:7e:37:53:d8:90:dc:d0:
a9:22:22:d7:f9:bd:b6:89:cb:34:e5:8b:56:91:a5:00:4f:69:
a3:6a:4f:f9:eb:53:11:fd:8a:10:44:41:14:fb:f9:04:01:4d:
71:42:88:1c:ce:72:6b:b2:91:5f:16:2d:7c:31:6f:e2:09:dc:
26:a6:a7:a2:ae:1e:20:d6:7a:f1:0c:2e:34:a4:4c:cc:1b:ab:
4a:97:ec:e1:bb:49:3f:df:38:d1:ab:4d:c4:6a:e3:7a:5f:49:
5e:85:2a:71:fc:22:46:47:48:a2:c4:38:ed:58:fd:52:80:63:
25:88:aa:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:02:18 2026 by rpki-client