Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json)
Hash identifier: 69nsRAlGxbGR0K5lY7twJ9NA7QDHMGkCNgFPwHodMQE=
Subject key identifier: 2C:7A:36:32:6B:A3:05:82:93:08:3E:15:37:05:F8:AA:56:31:F8:AE
Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Certificate serial: 019845BF6657497FBF0E3968DB2FFF5A3947
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
Manifest number: 0EC5
Signing time: Sat 26 Jul 2025 08:00:28 +0000
Manifest this update: Sat 26 Jul 2025 08:00:28 +0000
Manifest next update: Sun 27 Jul 2025 08:00:28 +0000
Files and hashes: 1: 8e7eehP1l-DLf5STdKJWnoHYbKQ.roa (hash: K8SacJP+Z6piM83BegnBqW6J1m/glPf8EgTcnUYrotM=)
2: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: IjcaGeQc7GMiDAJ9fwHZQm9n8THavtdlxtisI10d86U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:bf:66:57:49:7f:bf:0e:39:68:db:2f:ff:5a:39:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Validity
Not Before: Jul 26 08:00:28 2025 GMT
Not After : Jul 27 08:00:28 2025 GMT
Subject: CN=2c7a36326ba3058293083e153705f8aa5631f8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7d:75:4d:d4:1f:5c:38:df:c8:73:65:f8:eb:
e1:d5:f9:06:78:a5:c8:ca:e6:f1:01:42:d7:9e:49:
96:26:40:8c:c5:67:61:d2:40:64:5d:4e:7a:5a:15:
a5:31:74:3f:b4:42:e2:d7:19:ae:de:05:6b:21:d6:
79:82:7c:ac:1d:d4:72:2e:b6:f9:eb:8c:cb:e3:2a:
3a:44:25:1f:e1:e3:d1:21:5c:e6:94:a5:6c:3b:0a:
aa:8a:ad:57:41:aa:76:17:f8:75:d4:c5:e8:4d:e5:
df:17:83:da:ec:b3:b0:3c:f5:9a:84:0d:02:77:5f:
e5:29:41:97:ff:f5:0f:0f:7d:91:a1:29:53:8b:01:
c8:17:4d:72:b0:be:57:06:e8:68:ae:33:e2:4d:88:
57:6d:eb:c3:3a:cb:cf:04:1d:0c:d2:19:28:0f:79:
23:68:45:6c:79:a6:19:c0:de:ea:5d:30:38:6a:77:
f6:dd:60:e8:62:76:0a:83:fe:68:86:f3:fe:75:82:
e0:9d:c9:62:bb:3d:ee:29:c7:af:88:29:fa:63:5c:
42:8b:21:5e:22:bd:f6:9d:5c:59:ff:0f:ae:81:86:
81:6d:e7:11:17:3f:95:e5:9c:f9:78:1e:93:b5:40:
63:72:1c:60:b5:80:5f:f0:c9:fc:29:35:89:c0:82:
b5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7A:36:32:6B:A3:05:82:93:08:3E:15:37:05:F8:AA:56:31:F8:AE
X509v3 Authority Key Identifier:
keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:b3:c4:29:a4:d6:7c:41:49:1d:29:d4:c3:f0:59:d9:c4:9a:
ff:8c:bf:45:d9:d0:86:14:d0:ae:6f:59:49:60:f8:47:71:ed:
19:10:b7:dc:8e:47:a0:12:bd:7e:b0:14:16:fd:c1:f2:97:9b:
29:e3:8e:c7:c0:43:c9:c6:f7:a0:bb:ec:4e:a2:67:bb:9a:7e:
5f:77:77:88:3a:a0:3b:73:d8:ef:27:96:21:df:09:25:0f:dd:
62:f4:7d:86:87:38:2c:61:4b:05:cb:2d:dc:0d:75:d2:97:88:
bd:1a:54:73:bc:2b:18:da:cf:50:df:3f:71:1e:81:5b:72:dc:
ca:12:01:3e:94:ba:8c:1f:09:5b:96:f8:a7:59:14:95:49:87:
71:2e:96:f8:58:1a:52:4a:42:28:4b:1b:92:28:d3:56:45:e8:
d0:43:4b:6c:97:3b:9d:e1:7b:65:9b:e9:d1:26:08:3d:f1:9b:
f3:40:0f:36:56:8d:d5:14:cf:58:35:83:85:8c:4b:31:a1:88:
64:e4:77:ab:a9:87:91:5f:77:c1:aa:c6:aa:79:6a:d1:50:6b:
bd:19:ad:a2:5c:4f:48:24:03:81:d5:78:31:9a:d9:47:da:5f:
57:92:75:36:6e:40:8b:b4:b9:8a:0d:0f:25:5e:db:57:ba:93:
ed:bf:14:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:37:42 2025 by rpki-client