Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: DO6RonCmEW0QUM+hy+6HWClhX48bMLAYyyaKewkBXqY=
Subject key identifier: 78:15:9C:3D:1E:D0:DA:3A:18:78:2F:AE:3B:A2:21:D3:EA:89:7A:E0
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 01989749A7214980C2D59E391F6A70EFEE98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 0307
Signing time: Mon 11 Aug 2025 04:00:42 +0000
Manifest this update: Mon 11 Aug 2025 04:00:42 +0000
Manifest next update: Tue 12 Aug 2025 04:00:42 +0000
Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: TSCzwkHiOMdDRGI/m7v7K9TNoU6nZj+RqwMvDnkGkks=)
3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=)
4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:49:a7:21:49:80:c2:d5:9e:39:1f:6a:70:ef:ee:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Aug 11 04:00:42 2025 GMT
Not After : Aug 12 04:00:42 2025 GMT
Subject: CN=78159c3d1ed0da3a18782fae3ba221d3ea897ae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:2a:11:4d:68:76:9a:04:c3:fb:3a:b7:f9:92:
fb:97:ac:f1:6a:91:df:13:27:c6:9e:b9:e7:69:68:
65:63:dd:d4:85:b6:45:c6:b1:10:d4:23:3e:d3:eb:
63:62:80:a5:0e:74:2b:6a:bc:49:c3:62:c1:25:46:
c3:5a:7d:07:f7:63:e1:95:a9:9a:c8:1f:76:50:9c:
92:80:9e:44:b1:9b:32:3a:16:32:09:5c:d4:4e:e1:
49:f6:d6:e1:69:5a:63:c7:54:c1:d5:3a:35:65:a5:
c4:8c:bd:c7:c9:0d:32:05:e9:24:60:ff:c9:13:4d:
a1:8d:21:52:5d:13:34:55:24:e4:ff:b2:72:9f:da:
4a:a0:b3:e2:13:a3:9a:ac:f3:1d:9c:88:88:1e:e3:
ee:62:7a:a2:8e:36:95:b4:df:57:72:40:71:bc:33:
ed:07:0a:1a:37:7f:32:08:7f:7a:4d:5c:cb:a3:23:
e5:25:c0:08:07:ef:df:1b:60:6b:b8:80:04:a8:d4:
6d:41:59:f4:64:15:5c:a2:b1:2b:6b:48:e7:d8:c0:
77:3a:2e:96:74:25:ce:06:a6:49:f0:f3:c7:d7:6e:
e0:34:ce:c9:48:e5:ec:2d:b4:e2:bd:f2:bb:9b:94:
06:2c:0f:e1:27:02:71:ae:37:04:d3:ae:6f:22:e7:
d5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:15:9C:3D:1E:D0:DA:3A:18:78:2F:AE:3B:A2:21:D3:EA:89:7A:E0
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:06:19:3d:55:8f:4f:c9:65:06:6d:31:0a:fc:bb:2b:22:19:
cd:46:da:11:ea:b6:27:5b:92:e6:7b:58:ee:6b:66:43:7c:d6:
ca:97:4e:e7:30:f9:d4:db:c3:42:c2:91:35:c3:9c:87:63:58:
72:a9:9d:05:89:57:54:f4:4b:ec:1e:75:b1:cf:34:9d:56:df:
b5:d1:66:34:8f:25:25:1a:2a:a4:7c:7e:0c:c7:15:75:1c:d4:
e0:21:09:24:a5:75:c7:0d:4d:81:47:5d:2d:d1:05:a6:bc:73:
fd:7d:e3:21:1f:35:2c:7c:d3:04:32:c6:4c:49:aa:0e:da:a9:
41:f9:a9:9e:82:0c:a7:7b:39:25:b9:5c:c5:67:49:ed:f1:c9:
dc:1d:3c:b1:e7:5b:40:36:66:51:bf:39:22:1f:74:44:87:58:
8e:7f:72:4a:2a:6f:e9:8a:b7:fc:b6:fa:c5:a0:6a:5a:f9:a6:
7d:bb:c7:45:4f:44:dc:8e:b2:b8:ae:f9:1e:dd:17:05:be:0f:
41:a4:cd:e2:8a:0a:73:c5:79:d3:e4:6f:de:2a:ab:5a:ae:6d:
c4:bf:ee:4e:24:3e:89:66:50:1a:59:1b:15:85:84:5a:bb:5f:
2e:76:05:ff:8a:ec:08:08:ea:dc:3c:22:c9:8b:17:1e:10:1a:
70:62:5e:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:21:42 2025 by rpki-client