Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: birYW4gfvAjrupSt6utly3P4xKm97RSaGenTFjn9bTs=
Subject key identifier: 27:F6:AC:3F:8F:9F:CB:AA:1E:90:94:F3:95:C9:3D:50:12:F4:CA:35
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 019A4F994AB8F47954238ACAED0DB3AA9604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 03EB
Signing time: Tue 04 Nov 2025 16:00:37 +0000
Manifest this update: Tue 04 Nov 2025 16:00:37 +0000
Manifest next update: Wed 05 Nov 2025 16:00:37 +0000
Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: p6z7uZGlcwCuvArAcRmfaasJwwZ4lGh4xDXLpvFWN7E=)
3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=)
4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:4a:b8:f4:79:54:23:8a:ca:ed:0d:b3:aa:96:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Nov 4 16:00:37 2025 GMT
Not After : Nov 5 16:00:37 2025 GMT
Subject: CN=27f6ac3f8f9fcbaa1e9094f395c93d5012f4ca35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:09:a5:70:cd:22:ac:5a:fe:57:d9:b9:c2:32:
db:b0:a5:a2:3d:d3:b0:ef:97:29:ad:09:c8:4e:fb:
32:58:d0:ef:a0:2d:40:a2:7a:3f:8f:65:cd:f5:4b:
22:d6:b7:d7:60:25:4f:eb:93:02:fb:38:34:f1:f3:
b8:ec:0a:20:f2:6a:39:59:fc:78:81:68:ce:1a:3b:
1d:5e:00:ad:78:7e:cc:af:4d:68:14:12:d1:34:27:
63:84:5a:88:8c:9e:99:83:30:23:f3:94:89:42:6d:
47:91:99:d8:5c:ad:a7:9f:38:9e:db:1a:c8:1c:d5:
95:7e:8e:d8:7b:cf:98:be:10:ca:33:b5:72:7e:1c:
aa:c1:93:80:f0:d3:b9:67:f4:c4:5c:e0:88:e1:7e:
9c:11:6a:9d:ad:73:1d:77:7d:89:57:c0:1b:53:f7:
34:70:2f:b5:af:a9:73:3a:e5:53:92:cc:ae:74:d7:
ad:03:d6:fa:ec:3f:5e:cc:9a:52:94:cd:a1:64:a6:
d6:69:11:bb:fc:fd:57:08:d3:aa:d9:c8:15:c2:cc:
55:d8:d8:3d:ee:0a:ae:58:a6:b7:68:00:18:6f:32:
67:9d:7f:f3:2e:d1:c5:66:5a:18:eb:1c:7f:a4:fe:
bf:97:51:cd:62:97:17:10:8c:b1:94:b4:83:71:87:
2b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F6:AC:3F:8F:9F:CB:AA:1E:90:94:F3:95:C9:3D:50:12:F4:CA:35
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:0c:c4:87:c4:29:21:75:62:c2:9b:01:42:14:81:ba:a3:dd:
ac:24:8b:24:dd:68:44:8a:82:69:f8:39:ab:fc:ed:94:9b:44:
77:15:d5:a3:ad:f7:81:a7:98:50:ae:dd:7f:6c:d7:fa:03:6b:
0c:38:3f:1c:fb:03:87:ee:ae:f6:09:f0:62:63:f1:99:9e:cf:
b7:c2:49:8d:dd:95:1c:9b:8f:82:f3:8d:d9:20:c8:fb:40:48:
84:74:62:aa:ba:af:8b:6b:22:4c:eb:68:62:ff:d9:c0:3e:b9:
7e:1b:dd:b3:12:76:70:ce:5d:70:6a:42:5d:ab:57:02:82:ce:
1f:35:b1:dd:8c:e8:83:81:1c:42:bf:8f:e1:f2:69:ad:23:c6:
76:15:3d:d3:c3:e3:c7:1c:6a:f1:44:c6:6e:66:87:5d:da:bb:
0f:48:d4:bf:d9:5c:4a:1a:ba:df:8d:e9:7a:f1:dc:5e:14:49:
18:58:4b:d7:2f:4f:dd:86:46:f7:6f:d9:f6:a6:20:8c:98:a7:
71:c1:49:a1:64:21:37:79:4b:8a:3a:ef:fb:cd:ac:f7:97:32:
5d:c6:05:eb:7b:21:e8:4d:e6:72:e1:45:12:df:64:5b:f3:da:
b3:5f:de:87:d4:ae:c8:40:f6:40:a1:9b:b7:51:b6:da:ab:cf:
20:52:43:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPmUq49HlUI4rK7Q2zqpYEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjYTQ0N2ZkMDk3OWI4YTk4OTM1NWMzNTRkMzA0ZDExNGQy
MDcyN2EwHhcNMjUxMTA0MTYwMDM3WhcNMjUxMTA1MTYwMDM3WjAzMTEwLwYDVQQD
EygyN2Y2YWMzZjhmOWZjYmFhMWU5MDk0ZjM5NWM5M2Q1MDEyZjRjYTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2AmlcM0irFr+V9m5wjLbsKWiPdOw
75cprQnITvsyWNDvoC1Aono/j2XN9Usi1rfXYCVP65MC+zg08fO47Aog8mo5Wfx4
gWjOGjsdXgCteH7Mr01oFBLRNCdjhFqIjJ6ZgzAj85SJQm1HkZnYXK2nnzie2xrI
HNWVfo7Ye8+YvhDKM7VyfhyqwZOA8NO5Z/TEXOCI4X6cEWqdrXMdd32JV8AbU/c0
cC+1r6lzOuVTksyudNetA9b67D9ezJpSlM2hZKbWaRG7/P1XCNOq2cgVwsxV2Ng9
7gquWKa3aAAYbzJnnX/zLtHFZloY6xx/pP6/l1HNYpcXEIyxlLSDcYcrJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCf2rD+Pn8uqHpCU85XJPVAS9Mo1MB8GA1UdIwQY
MBaAFDykR/0JebipiTVcNU0wTRFNIHJ6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGIt
YTZlZjc1MmM2ZGMyLzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGItYTZlZjc1MmM2ZGMy
LzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASAzEh8Qp
IXViwpsBQhSBuqPdrCSLJN1oRIqCafg5q/ztlJtEdxXVo633gaeYUK7df2zX+gNr
DDg/HPsDh+6u9gnwYmPxmZ7Pt8JJjd2VHJuPgvON2SDI+0BIhHRiqrqvi2siTOto
Yv/ZwD65fhvdsxJ2cM5dcGpCXatXAoLOHzWx3Yzog4EcQr+P4fJprSPGdhU908Pj
xxxq8UTGbmaHXdq7D0jUv9lcShq6343pevHcXhRJGFhL1y9P3YZG92/Z9qYgjJin
ccFJoWQhN3lLijrv+82s95cyXcYF63sh6E3mcuFFEt9kW/Pas1/eh9SuyED2QKGb
t1G22qvPIFJDZg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:08:30 2025 by rpki-client