Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: SHke7Or4CTOekTQVCrWnYY+ND77DghhhwccZJHQ+krY=
Subject key identifier: 58:B4:71:2B:12:AA:9F:2F:A0:D0:28:2D:D6:7C:2D:7C:86:D5:48:02
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 019CAB344811F84B31B80590EA495A80D1C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 0524
Signing time: Sun 01 Mar 2026 21:00:56 +0000
Manifest this update: Sun 01 Mar 2026 21:00:56 +0000
Manifest next update: Mon 02 Mar 2026 21:00:56 +0000
Files and hashes: 1: 3ozsuY79It-DMdWFEyLhstJbsHI.roa (hash: zjtvqxxsFQq22pHgPm5ML4HBHgnWmrbjfRUKAtA9O/c=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: Q4Lv7BnHCxx+cUaAt3PewKZ162jMbBDA6Qi7yfWJi3Q=)
3: Rfqa8OJ2kQsd8ZG_LegzwW5IjHg.roa (hash: bd9vTzTkuvRXu3qYlvcAWmBvwcVPHwkBDQ7+v06V9d8=)
4: dGvFgDTa9c-WyY5c2fus0GTGmYs.roa (hash: 1KB6ISgMwSKc5X/zQ0taoCJinEVqBhQhQ69Q8uCNRZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:48:11:f8:4b:31:b8:05:90:ea:49:5a:80:d1:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Mar 1 21:00:56 2026 GMT
Not After : Mar 2 21:00:56 2026 GMT
Subject: CN=58b4712b12aa9f2fa0d0282dd67c2d7c86d54802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:17:16:44:39:d5:05:6b:92:50:59:91:9d:67:
59:8e:a7:2d:71:1d:01:c9:64:2d:e4:48:46:85:03:
7e:dd:a8:ec:5c:0a:b0:e0:cd:c2:dc:b2:07:02:70:
e7:ff:e0:54:7a:4d:dc:2b:d5:78:e7:9e:bb:35:fc:
5a:d3:2a:9c:16:76:37:61:e0:ad:c2:4b:14:12:cd:
ea:a2:6c:95:fa:33:4c:28:60:89:c1:59:5d:69:0a:
00:c6:2b:8d:db:1a:5a:64:3f:a0:8a:b8:c9:9a:cd:
b0:75:18:d3:45:32:68:85:f8:3f:49:67:b3:5b:1d:
36:29:65:c4:3b:12:97:27:7b:0a:8b:8c:32:6c:21:
d6:c3:3d:43:d4:1e:c9:b3:c8:d9:48:a1:a3:5e:93:
45:80:fe:e3:f8:60:ed:00:22:c5:eb:17:b4:81:5e:
89:cb:ee:49:63:7b:ef:d3:e0:17:d1:0a:ad:19:63:
b9:f4:34:fa:fb:0a:f7:48:d5:7f:69:97:6b:c4:cb:
42:02:0c:7c:aa:f7:16:19:5f:98:e7:be:31:21:34:
25:50:22:ff:b3:58:3f:0c:ba:6f:14:02:aa:f8:4e:
05:de:a4:b5:6e:01:3b:4f:73:ae:e1:cc:8d:32:33:
2c:88:b6:b8:f8:0a:f2:0a:83:fd:25:77:0d:09:42:
dd:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B4:71:2B:12:AA:9F:2F:A0:D0:28:2D:D6:7C:2D:7C:86:D5:48:02
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:2c:1c:aa:72:34:2b:d1:51:ff:ac:d0:d6:3c:04:13:d2:c4:
0d:81:e1:5c:c4:aa:31:16:7f:68:bb:73:fb:18:52:3a:d9:6b:
be:29:a2:c9:54:a3:60:72:3c:04:7f:a7:2f:f8:d3:33:73:c4:
c7:2a:d7:f6:ca:e6:2e:df:47:7c:5f:8c:93:4e:2c:6f:a0:1b:
cf:46:7b:ee:e5:ea:1d:34:80:89:85:d3:31:66:c0:4c:f5:16:
c6:48:89:08:50:bb:44:87:9e:84:03:b9:76:9f:88:a6:b4:ac:
96:50:41:b5:50:8a:3a:0c:35:85:c8:04:1b:02:40:c3:b6:70:
1b:77:c8:ae:98:59:b4:26:63:6a:b1:8f:2b:bc:7a:02:a7:f2:
21:04:f9:cc:5b:62:8f:66:e3:d0:c3:49:ac:2b:f3:03:df:71:
20:56:c6:d6:87:92:cc:d2:58:6a:ad:b3:d0:82:55:05:19:b0:
e5:73:57:4f:89:42:79:54:fd:43:1b:2e:68:bf:fb:a6:be:d0:
03:8e:bc:a7:eb:63:88:0e:f6:31:79:41:4f:e9:c4:77:ea:56:
c9:26:6d:d1:a4:1e:9e:d7:2e:ca:68:02:45:0c:d2:fc:e7:0a:
41:3c:0d:2a:bb:b4:85:d7:03:f8:8b:90:e8:80:68:4f:e8:b7:
53:05:7d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:15:04 2026 by rpki-client