Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: 9RIJspjkUVmh3rvzE6t0alFjtwFVQrscGBO7qRfWAKI=
Subject key identifier: 10:7A:AD:2E:70:FD:D1:C1:75:02:B0:CE:00:DA:19:D1:96:52:7E:AC
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 019686240A6F3581F4E5E00750BFC886CA2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 01F5
Signing time: Wed 30 Apr 2025 10:00:30 +0000
Manifest this update: Wed 30 Apr 2025 10:00:30 +0000
Manifest next update: Thu 01 May 2025 10:00:30 +0000
Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: 8vbgG86ZBJnDMVxqp+2GSidqQStjKsn+pVTzM4MGW18=)
3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=)
4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 10:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:24:0a:6f:35:81:f4:e5:e0:07:50:bf:c8:86:ca:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Apr 30 10:00:30 2025 GMT
Not After : May 1 10:00:30 2025 GMT
Subject: CN=107aad2e70fdd1c17502b0ce00da19d196527eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c2:fe:ab:24:6d:04:02:e3:a2:a7:a0:65:3d:
93:a6:d4:48:27:29:cc:94:42:aa:2b:0e:5b:56:b0:
af:32:2f:ee:a5:18:4b:68:5a:a9:f7:5b:62:41:ce:
14:f5:4d:e7:8c:07:c8:7b:af:fd:c2:66:d0:fb:b2:
1b:2b:80:3f:1f:d7:99:bb:a8:7b:f7:1a:5d:71:ef:
b9:76:64:f0:76:1f:6b:07:b0:6f:55:6d:6d:44:82:
e1:d8:d2:7d:8a:53:1e:17:f3:f7:35:c5:e1:bd:2e:
fa:9a:6c:ac:21:4c:0d:7a:c1:e9:c6:7b:b3:45:da:
86:33:5d:39:1c:4a:f2:19:7b:ea:2c:b4:88:3d:6a:
71:40:5f:7f:b4:97:49:30:f5:03:3e:21:33:a8:71:
32:4b:a4:fc:f5:81:84:6e:63:70:90:92:23:91:06:
99:41:14:e6:05:59:0b:a0:59:1c:27:8c:44:d1:29:
e5:7d:7f:55:79:86:c8:b0:a7:4a:41:54:44:1c:b2:
92:1e:91:f9:f5:ab:bc:36:dc:4d:e2:61:1b:2d:af:
dc:70:e6:12:f6:39:6a:60:e2:41:36:f9:35:c8:17:
2e:6c:bb:b1:b4:0e:8b:8c:68:3c:84:13:92:e4:d6:
ac:56:d5:a1:67:c5:4b:19:8b:0f:81:65:5e:ee:96:
bb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:7A:AD:2E:70:FD:D1:C1:75:02:B0:CE:00:DA:19:D1:96:52:7E:AC
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:25:7e:70:04:95:74:1a:a2:e4:e6:a1:b3:68:cc:fb:a8:b0:
f1:fd:e2:27:1e:0c:47:71:b2:b8:d8:72:5e:db:15:66:58:ca:
26:be:bc:c4:4e:28:a8:45:8a:86:ae:ae:69:83:d0:e5:e0:fe:
9f:d0:c1:b8:53:a9:b4:b8:c6:48:99:f7:44:87:d1:61:de:fb:
7a:45:1b:4a:6f:f3:e5:a7:e0:fd:53:60:45:48:7b:9e:7b:79:
c3:50:84:50:8b:0e:71:79:d1:7a:4e:51:d1:ad:91:97:6c:08:
f1:54:30:e8:30:c2:0d:94:ad:fe:a8:3f:52:b6:2a:aa:d9:60:
4c:9d:ba:dc:2f:72:29:b4:15:29:0b:c8:54:73:47:82:07:b8:
27:db:23:41:22:84:3a:d4:78:65:ac:a7:01:10:0b:09:e6:94:
e6:4f:c4:bb:a1:54:3d:1b:42:91:82:b9:d4:b9:4d:f7:a7:4e:
f7:13:b3:18:13:57:b9:db:f5:7e:9b:8d:3e:da:b4:4a:97:d4:
12:c9:03:ea:4a:f7:46:cb:c9:46:e2:aa:5e:a1:65:f5:7a:94:
4b:42:d4:a4:ff:4d:3a:7d:54:f5:41:46:39:8c:cd:39:6d:8f:
e5:e0:9d:ed:8c:2b:5a:fd:fd:0e:1f:b9:3d:39:b0:39:ec:e1:
36:f9:5f:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaGJApvNYH05eAHUL/IhsovMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjYTQ0N2ZkMDk3OWI4YTk4OTM1NWMzNTRkMzA0ZDExNGQy
MDcyN2EwHhcNMjUwNDMwMTAwMDMwWhcNMjUwNTAxMTAwMDMwWjAzMTEwLwYDVQQD
EygxMDdhYWQyZTcwZmRkMWMxNzUwMmIwY2UwMGRhMTlkMTk2NTI3ZWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA38L+qyRtBALjoqegZT2TptRIJynM
lEKqKw5bVrCvMi/upRhLaFqp91tiQc4U9U3njAfIe6/9wmbQ+7IbK4A/H9eZu6h7
9xpdce+5dmTwdh9rB7BvVW1tRILh2NJ9ilMeF/P3NcXhvS76mmysIUwNesHpxnuz
RdqGM105HEryGXvqLLSIPWpxQF9/tJdJMPUDPiEzqHEyS6T89YGEbmNwkJIjkQaZ
QRTmBVkLoFkcJ4xE0SnlfX9VeYbIsKdKQVREHLKSHpH59au8NtxN4mEbLa/ccOYS
9jlqYOJBNvk1yBcubLuxtA6LjGg8hBOS5NasVtWhZ8VLGYsPgWVe7pa70wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBB6rS5w/dHBdQKwzgDaGdGWUn6sMB8GA1UdIwQY
MBaAFDykR/0JebipiTVcNU0wTRFNIHJ6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGIt
YTZlZjc1MmM2ZGMyLzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGItYTZlZjc1MmM2ZGMy
LzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOyV+cASV
dBqi5Oahs2jM+6iw8f3iJx4MR3GyuNhyXtsVZljKJr68xE4oqEWKhq6uaYPQ5eD+
n9DBuFOptLjGSJn3RIfRYd77ekUbSm/z5afg/VNgRUh7nnt5w1CEUIsOcXnRek5R
0a2Rl2wI8VQw6DDCDZSt/qg/UrYqqtlgTJ263C9yKbQVKQvIVHNHgge4J9sjQSKE
OtR4ZaynARALCeaU5k/Eu6FUPRtCkYK51LlN96dO9xOzGBNXudv1fpuNPtq0SpfU
EskD6kr3RsvJRuKqXqFl9XqUS0LUpP9NOn1U9UFGOYzNOW2P5eCd7YwrWv39Dh+5
PTmwOezhNvlfjQ==
-----END CERTIFICATE-----
Generated at Wed Apr 30 15:11:11 2025 by rpki-client