Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: gdsxlcdGzB0iU2PVO2mHsBRoZnXkvVTX+FSp98wJH6I=
Subject key identifier: 69:A0:FE:8B:FA:6F:84:C8:7B:3A:66:32:A7:C7:52:BA:83:CC:64:B2
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 019D9AAC4BAB5877274DBCBC3CE49AF6DAE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 05A0
Signing time: Fri 17 Apr 2026 09:01:15 +0000
Manifest this update: Fri 17 Apr 2026 09:01:15 +0000
Manifest next update: Sat 18 Apr 2026 09:01:15 +0000
Files and hashes: 1: 3ozsuY79It-DMdWFEyLhstJbsHI.roa (hash: zjtvqxxsFQq22pHgPm5ML4HBHgnWmrbjfRUKAtA9O/c=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: WuvyDhk3Bf7/MUFzl8gp4hXK2y0QuIonc5aeDhCD8tM=)
3: Rfqa8OJ2kQsd8ZG_LegzwW5IjHg.roa (hash: bd9vTzTkuvRXu3qYlvcAWmBvwcVPHwkBDQ7+v06V9d8=)
4: dGvFgDTa9c-WyY5c2fus0GTGmYs.roa (hash: 1KB6ISgMwSKc5X/zQ0taoCJinEVqBhQhQ69Q8uCNRZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:4b:ab:58:77:27:4d:bc:bc:3c:e4:9a:f6:da:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Apr 17 09:01:15 2026 GMT
Not After : Apr 18 09:01:15 2026 GMT
Subject: CN=69a0fe8bfa6f84c87b3a6632a7c752ba83cc64b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:25:ba:90:e2:de:a0:78:1c:cc:09:ec:75:6c:
2a:af:24:18:26:04:8d:aa:5a:e8:17:43:ca:6b:20:
bb:1c:55:b9:a3:0d:97:77:cf:0f:37:df:15:df:de:
e7:83:61:4c:2d:38:c1:5a:59:ef:39:38:02:35:cf:
0d:c7:78:9c:ce:ea:7c:4b:d0:11:77:3e:8d:88:d6:
05:e6:2d:99:e0:e2:f1:c0:81:a6:cf:64:d1:02:ab:
21:7d:10:ed:3f:8c:7f:0c:af:b7:d5:28:34:b8:8a:
66:9e:8a:da:e2:8d:68:09:2f:0f:f8:03:e3:5c:fa:
da:c6:3a:d3:fd:26:51:fc:4c:9b:25:2d:ad:80:b5:
12:8f:94:a5:cb:a0:ac:b3:89:b3:03:ac:89:86:05:
9b:a6:41:3d:61:c3:84:b7:61:ec:0c:52:0d:8e:21:
86:e2:60:88:4b:20:65:a3:e4:84:eb:d3:79:02:c4:
6f:9c:cd:cb:99:e4:10:5d:01:d7:97:db:3d:f6:30:
70:db:c9:b6:36:83:68:8d:07:e0:a8:6b:59:a1:a9:
56:c5:30:14:74:0e:4d:0a:bd:10:33:fa:b4:84:da:
0a:f9:78:c9:39:c2:e9:2f:15:14:9e:19:af:9f:c2:
a1:47:a2:b7:21:51:ce:83:ea:51:5c:37:7e:02:62:
f2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:A0:FE:8B:FA:6F:84:C8:7B:3A:66:32:A7:C7:52:BA:83:CC:64:B2
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:a2:43:2c:8e:ff:d7:ef:d3:3b:b9:7e:f9:98:72:e5:4a:fd:
f5:3c:7b:6f:2c:c8:76:8c:73:7b:90:21:a7:76:53:22:53:3d:
fe:31:a4:77:3a:1b:18:89:58:44:13:3b:c7:ef:10:bf:ea:d0:
b3:b0:d2:3d:f9:b2:26:f1:89:79:f5:5a:84:05:e1:a6:d6:88:
e5:98:c7:8a:e4:1c:c3:9d:a8:5e:00:05:58:0d:17:68:a2:1d:
aa:dc:d9:ed:60:ab:58:e4:a4:d7:91:df:d0:5b:9d:9f:de:67:
8b:f4:67:b2:d2:38:59:a1:5d:75:62:90:97:67:de:eb:c6:de:
00:2b:13:41:eb:e5:d9:b0:e4:2b:0f:df:c9:20:e3:11:3a:39:
60:c5:0e:1e:42:0a:32:66:e9:7d:db:ae:38:82:35:4f:05:d0:
bb:8f:89:36:af:e2:22:92:a9:b1:6d:1e:1d:2d:67:9c:af:04:
48:4f:4a:4e:9b:1b:51:87:78:4f:5b:d3:6c:c8:94:50:e6:44:
bd:92:15:0c:6c:aa:1f:88:f0:ed:08:21:00:46:15:74:5d:71:
9e:a4:4f:05:a8:27:a2:b5:db:4c:7b:67:de:13:c8:59:93:58:
48:7a:2b:8d:4c:e6:83:fa:8d:7e:ee:29:60:c8:89:6b:2b:60:
da:01:e4:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2arEurWHcnTby8POSa9trpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjYTQ0N2ZkMDk3OWI4YTk4OTM1NWMzNTRkMzA0ZDExNGQy
MDcyN2EwHhcNMjYwNDE3MDkwMTE1WhcNMjYwNDE4MDkwMTE1WjAzMTEwLwYDVQQD
Eyg2OWEwZmU4YmZhNmY4NGM4N2IzYTY2MzJhN2M3NTJiYTgzY2M2NGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SW6kOLeoHgczAnsdWwqryQYJgSN
qlroF0PKayC7HFW5ow2Xd88PN98V397ng2FMLTjBWlnvOTgCNc8Nx3iczup8S9AR
dz6NiNYF5i2Z4OLxwIGmz2TRAqshfRDtP4x/DK+31Sg0uIpmnora4o1oCS8P+APj
XPraxjrT/SZR/EybJS2tgLUSj5Sly6Css4mzA6yJhgWbpkE9YcOEt2HsDFINjiGG
4mCISyBlo+SE69N5AsRvnM3LmeQQXQHXl9s99jBw28m2NoNojQfgqGtZoalWxTAU
dA5NCr0QM/q0hNoK+XjJOcLpLxUUnhmvn8KhR6K3IVHOg+pRXDd+AmLycwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGmg/ov6b4TIezpmMqfHUrqDzGSyMB8GA1UdIwQY
MBaAFDykR/0JebipiTVcNU0wTRFNIHJ6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGIt
YTZlZjc1MmM2ZGMyLzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGItYTZlZjc1MmM2ZGMy
LzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkqJDLI7/
1+/TO7l++Zhy5Ur99Tx7byzIdoxze5Ahp3ZTIlM9/jGkdzobGIlYRBM7x+8Qv+rQ
s7DSPfmyJvGJefVahAXhptaI5ZjHiuQcw52oXgAFWA0XaKIdqtzZ7WCrWOSk15Hf
0Fudn95ni/RnstI4WaFddWKQl2fe68beACsTQevl2bDkKw/fySDjETo5YMUOHkIK
MmbpfduuOII1TwXQu4+JNq/iIpKpsW0eHS1nnK8ESE9KTpsbUYd4T1vTbMiUUOZE
vZIVDGyqH4jw7QghAEYVdF1xnqRPBagnorXbTHtn3hPIWZNYSHorjUzmg/qNfu4p
YMiJaytg2gHk+g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:03:34 2026 by rpki-client