Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: x/jcg/Rz1TdzFUrwfSXNaIrCaQZuI3XKErjG30wEpbs=
Subject key identifier: 06:9A:F4:44:8D:7D:88:10:99:38:78:3A:94:5D:A0:4F:A0:CA:19:A8
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 019D38661996D47FC7286FC939FE9BEB30A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 0320
Signing time: Sun 29 Mar 2026 07:01:48 +0000
Manifest this update: Sun 29 Mar 2026 07:01:48 +0000
Manifest next update: Mon 30 Mar 2026 07:01:48 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: +DrWu1x6ODK6YfcbB04cP4EwwbC9DaIs9H2qeTQAevk=)
2: tW6tlYVnkXnq9oP8owXcbYW47kU.roa (hash: g2+Pc2wN2E52WWpsZZidSy7PbjRy5/I1OGghh4rSkGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:19:96:d4:7f:c7:28:6f:c9:39:fe:9b:eb:30:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Mar 29 07:01:48 2026 GMT
Not After : Mar 30 07:01:48 2026 GMT
Subject: CN=069af4448d7d88109938783a945da04fa0ca19a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:94:f5:e4:02:bc:fd:e8:67:ad:10:ce:3d:d9:
aa:7b:f4:32:4e:7f:fe:41:34:a4:32:2e:a5:8a:d3:
e0:37:0e:0d:b5:67:b2:93:72:72:d6:90:74:f6:0c:
5e:1f:54:3b:4f:53:74:7c:79:c5:a1:eb:b6:64:4d:
4e:f6:cb:48:55:36:38:fd:7b:ad:cc:a4:95:ea:33:
17:72:e4:62:2d:96:b3:3d:10:2f:a6:77:7d:57:91:
e3:1a:b2:ae:93:56:ca:fd:bb:d9:55:93:2f:7b:d2:
b5:2c:06:a1:8a:ef:bb:b6:25:e6:96:52:7b:ae:2d:
fb:96:b3:a5:0a:7c:b7:f3:5c:ce:b6:f0:d1:d1:b6:
4c:48:e0:61:82:23:55:ce:70:58:ae:96:5a:e2:20:
90:2b:21:db:8c:6a:b4:1c:e3:80:37:bc:0b:e9:b6:
f8:8b:91:bd:b3:60:96:b1:17:35:0e:3f:ea:11:be:
b9:e6:35:d9:99:a1:19:57:12:47:d0:14:f7:e1:66:
23:e5:73:87:fb:cf:a4:60:2a:a6:fc:20:ee:e5:1e:
b3:96:7e:8c:61:9b:f7:d0:c2:ca:af:c0:b0:58:d3:
f7:56:25:7b:4e:b9:d8:5d:62:7c:31:18:4c:1f:cb:
fc:80:a9:75:f9:5a:74:06:6b:78:52:92:4e:7f:d3:
16:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:9A:F4:44:8D:7D:88:10:99:38:78:3A:94:5D:A0:4F:A0:CA:19:A8
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:5e:3f:26:90:89:d4:b7:5a:d6:84:78:2f:8a:00:74:88:9a:
85:b2:06:91:87:ac:6d:9c:bf:c2:9a:17:c2:fd:fb:17:04:20:
af:61:ba:04:b8:df:9b:4f:9b:3c:76:81:d6:20:ef:f8:9a:15:
08:72:b4:79:4d:fa:20:a5:ec:b0:08:1a:8a:32:90:ab:61:a9:
b9:c1:dd:c0:62:a2:8f:2c:bb:59:a4:f0:f4:76:76:63:3f:2e:
0f:a0:da:2c:fb:d0:3d:d5:a7:7e:9f:9c:a4:36:80:50:68:74:
3a:aa:be:63:1e:12:b5:ed:49:26:2e:0b:f1:78:01:c0:d4:aa:
4e:58:99:cf:1d:e8:42:48:2c:77:0e:9e:73:20:96:d9:73:f2:
e5:02:03:a6:bb:e1:3f:5d:86:e1:dc:57:d4:ba:be:e1:d4:68:
7a:c6:c6:94:10:8c:6f:b1:43:ee:f7:9a:05:f1:10:c0:86:65:
af:95:7e:fd:94:51:07:2f:fa:a2:6a:55:72:ba:39:60:c4:64:
27:a8:b8:7a:73:82:1a:a0:81:66:9c:a8:e2:52:e0:19:dd:a4:
ca:e0:ff:c7:77:e1:82:36:9f:74:de:dc:69:c0:65:9e:4f:bb:
f4:28:93:0a:4c:19:00:35:dd:89:bd:be:0e:74:a4:4b:29:99:
0c:2f:30:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:56 2026 by rpki-client