Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
File: PUM0D60kZGXejmFNA5VjppllfY0.mft (raw, json)
Hash identifier: 5bDK29P1jVwXrOR3N7wcC5iU+fg9i2PtCNBqA6uGE1g=
Subject key identifier: 83:92:56:B5:C2:E1:BC:8E:00:57:FC:53:10:DF:42:9E:74:0B:3A:E3
Authority key identifier: 3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
Certificate issuer: /CN=3d43340fad246465de8e614d039563a699657d8d
Certificate serial: 019F1189F0349B19B829FB0D7EE679ADC00A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
Manifest number: 0415
Signing time: Mon 29 Jun 2026 04:01:20 +0000
Manifest this update: Mon 29 Jun 2026 04:01:20 +0000
Manifest next update: Tue 30 Jun 2026 04:01:20 +0000
Files and hashes: 1: PUM0D60kZGXejmFNA5VjppllfY0.crl (hash: gVMY/ZU2+BGMCjUMTBT2JpUPHeAhfTYvFmdlsgSfsyI=)
2: tW6tlYVnkXnq9oP8owXcbYW47kU.roa (hash: g2+Pc2wN2E52WWpsZZidSy7PbjRy5/I1OGghh4rSkGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:89:f0:34:9b:19:b8:29:fb:0d:7e:e6:79:ad:c0:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d43340fad246465de8e614d039563a699657d8d
Validity
Not Before: Jun 29 04:01:20 2026 GMT
Not After : Jun 30 04:01:20 2026 GMT
Subject: CN=839256b5c2e1bc8e0057fc5310df429e740b3ae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c0:5f:18:d8:af:c7:96:a0:27:ae:2f:c6:7f:
d4:c1:fd:8d:01:94:0d:ef:11:c5:5c:6c:94:51:3b:
f1:e1:49:09:59:19:0a:ef:9b:a5:79:21:75:7b:61:
37:aa:32:66:8f:fe:19:88:16:44:3f:93:9d:94:4b:
f1:5c:83:9a:ea:7e:66:d5:8b:c1:b0:cb:5d:32:bd:
73:c9:f1:99:e1:d8:d8:13:ce:d7:c0:ed:2a:ec:50:
a7:e9:e7:e3:a2:3b:ef:f0:f1:5c:c1:be:e9:90:fd:
3d:21:a7:7e:cc:d9:e5:1d:11:b3:1b:66:ab:29:c2:
a3:5e:40:ea:b8:e2:e6:c3:1c:5b:a9:48:20:4f:6b:
8b:50:f4:19:c7:28:5e:d2:f3:6b:3e:b7:2f:67:04:
19:ea:19:04:73:fe:78:44:b0:82:c8:7b:33:51:db:
f1:1b:df:87:ba:74:a5:9c:be:dd:99:54:eb:fc:33:
c6:3b:2e:70:ea:f2:0f:5d:bb:ff:8d:1b:9c:85:d9:
64:6f:1a:a4:79:70:7c:61:53:82:bd:ab:15:97:d1:
56:54:6c:b8:5d:b4:7b:1b:70:6e:b5:0b:85:d8:ca:
76:b1:2d:28:f3:aa:87:b3:cb:e0:6d:57:2d:7d:10:
af:42:09:1b:bd:4f:0f:17:46:23:b8:30:dc:98:59:
a8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:92:56:B5:C2:E1:BC:8E:00:57:FC:53:10:DF:42:9E:74:0B:3A:E3
X509v3 Authority Key Identifier:
keyid:3D:43:34:0F:AD:24:64:65:DE:8E:61:4D:03:95:63:A6:99:65:7D:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUM0D60kZGXejmFNA5VjppllfY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6ce922-cdce-4c7a-b346-a437ce892841/1/PUM0D60kZGXejmFNA5VjppllfY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:ef:69:1f:a4:21:4b:d3:d6:7c:17:6c:58:7c:6f:87:ad:f5:
27:5e:e1:a8:5a:12:46:16:65:45:81:41:e5:bc:a8:cf:0a:8b:
48:9c:51:79:53:ab:af:80:fa:72:f2:ac:90:55:84:de:05:c9:
2b:a8:48:33:31:97:d8:6e:5e:1c:b6:98:a4:44:9b:3c:b1:6f:
dc:14:27:17:df:9d:62:ce:a6:d9:26:1d:f4:ff:ff:85:e6:69:
e9:5c:ae:4f:0a:f3:ff:74:60:d0:f4:88:62:71:67:21:e2:7f:
a9:e1:2d:c1:93:a7:ba:35:8e:aa:6e:27:0e:c2:64:f5:94:c0:
73:ab:46:25:fd:0f:e0:28:e2:e6:7a:b5:3f:31:1d:35:b9:3b:
15:e3:d0:ad:72:27:56:49:3b:15:e9:be:cb:70:cd:5f:bc:72:
8e:df:90:ea:df:cc:23:04:c3:4a:6d:27:6e:06:d6:28:ca:5f:
69:29:ad:9a:14:e9:68:47:e9:a5:cb:6d:14:6d:a4:81:9a:35:
bd:c1:a2:17:06:93:df:e0:ae:eb:34:e4:90:d0:1d:1a:ac:e3:
44:ea:fd:a5:33:88:d7:a3:f7:31:4c:da:8c:79:54:8a:9a:a4:
11:b0:7d:e8:02:81:c8:a7:5e:ec:48:60:82:fd:34:d2:92:81:
cd:fb:ab:03
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RifA0mxm4KfsNfuZ5rcAKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkNDMzNDBmYWQyNDY0NjVkZThlNjE0ZDAzOTU2M2E2OTk2
NTdkOGQwHhcNMjYwNjI5MDQwMTIwWhcNMjYwNjMwMDQwMTIwWjAzMTEwLwYDVQQD
Eyg4MzkyNTZiNWMyZTFiYzhlMDA1N2ZjNTMxMGRmNDI5ZTc0MGIzYWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcBfGNivx5agJ64vxn/Uwf2NAZQN
7xHFXGyUUTvx4UkJWRkK75uleSF1e2E3qjJmj/4ZiBZEP5OdlEvxXIOa6n5m1YvB
sMtdMr1zyfGZ4djYE87XwO0q7FCn6efjojvv8PFcwb7pkP09Iad+zNnlHRGzG2ar
KcKjXkDquOLmwxxbqUggT2uLUPQZxyhe0vNrPrcvZwQZ6hkEc/54RLCCyHszUdvx
G9+HunSlnL7dmVTr/DPGOy5w6vIPXbv/jRuchdlkbxqkeXB8YVOCvasVl9FWVGy4
XbR7G3ButQuF2Mp2sS0o86qHs8vgbVctfRCvQgkbvU8PF0YjuDDcmFmo1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIOSVrXC4byOAFf8UxDfQp50CzrjMB8GA1UdIwQY
MBaAFD1DNA+tJGRl3o5hTQOVY6aZZX2NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYt
YTQzN2NlODkyODQxLzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82Y2U5MjItY2RjZS00YzdhLWIzNDYtYTQzN2NlODkyODQx
LzEvUFVNMEQ2MGtaR1hlam1GTkE1VmpwcGxsZlkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfO9pH6Qh
S9PWfBdsWHxvh631J17hqFoSRhZlRYFB5byozwqLSJxReVOrr4D6cvKskFWE3gXJ
K6hIMzGX2G5eHLaYpESbPLFv3BQnF9+dYs6m2SYd9P//heZp6VyuTwrz/3Rg0PSI
YnFnIeJ/qeEtwZOnujWOqm4nDsJk9ZTAc6tGJf0P4Cji5nq1PzEdNbk7FePQrXIn
Vkk7Fem+y3DNX7xyjt+Q6t/MIwTDSm0nbgbWKMpfaSmtmhTpaEfppcttFG2kgZo1
vcGiFwaT3+Cu6zTkkNAdGqzjROr9pTOI16P3MUzajHlUipqkEbB96AKByKde7Ehg
gv000pKBzfurAw==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:43:05 2026 by rpki-client