Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: KK6djUa+AUJVNWNmtGs8GTaqb9kH3qO8B7DFWmu8mPI=
Subject key identifier: 70:52:35:28:04:DE:7F:15:D2:1B:F0:67:8D:D9:8C:97:DF:D8:1C:25
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 019D382E4D2F0E5A749D1AF23C51B24D4374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 056D
Signing time: Sun 29 Mar 2026 06:00:51 +0000
Manifest this update: Sun 29 Mar 2026 06:00:51 +0000
Manifest next update: Mon 30 Mar 2026 06:00:51 +0000
Files and hashes: 1: 3ozsuY79It-DMdWFEyLhstJbsHI.roa (hash: zjtvqxxsFQq22pHgPm5ML4HBHgnWmrbjfRUKAtA9O/c=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: 7OdYZ5vXC5icskyZWaVler3gSQSjAtsrmp/ROPUIT8E=)
3: Rfqa8OJ2kQsd8ZG_LegzwW5IjHg.roa (hash: bd9vTzTkuvRXu3qYlvcAWmBvwcVPHwkBDQ7+v06V9d8=)
4: dGvFgDTa9c-WyY5c2fus0GTGmYs.roa (hash: 1KB6ISgMwSKc5X/zQ0taoCJinEVqBhQhQ69Q8uCNRZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:4d:2f:0e:5a:74:9d:1a:f2:3c:51:b2:4d:43:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Mar 29 06:00:51 2026 GMT
Not After : Mar 30 06:00:51 2026 GMT
Subject: CN=7052352804de7f15d21bf0678dd98c97dfd81c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5c:6b:0c:f4:91:16:c2:7a:bb:b5:b6:b3:a4:
ca:1a:15:da:1b:9b:d9:dc:06:5e:0b:40:22:93:fd:
f8:29:ef:63:97:0a:7c:8a:5c:91:3c:2c:73:3a:90:
ac:d2:35:bc:d4:d1:a0:6b:84:cb:91:41:35:d2:07:
5e:ec:c1:62:90:05:56:79:4e:47:fa:c9:6e:9e:da:
ec:9f:87:0f:c5:74:03:1b:ff:4a:92:2f:18:c5:97:
d2:19:80:ce:a0:d6:ca:4e:17:d6:0e:08:ca:ce:65:
19:ba:4d:f2:5a:ac:68:ff:09:10:82:9a:31:4a:cb:
c4:76:a2:73:5d:b4:f5:0d:1c:40:20:78:0d:34:78:
32:4d:6f:83:7e:9d:89:00:66:ee:e2:fb:15:2c:b0:
5c:ec:d6:b0:e1:2a:c9:dc:c8:e9:3b:7a:9f:81:e4:
28:eb:14:5e:8f:49:ba:d5:ca:bd:86:b4:a6:4b:53:
46:dd:73:9b:dc:15:ba:0e:e3:5b:85:fd:f6:e9:a5:
9f:02:09:67:b2:08:c5:f3:e6:7f:03:86:b2:92:1f:
f8:ca:a1:cd:da:e3:9e:84:7d:0d:6e:d6:ca:2a:e2:
c5:84:40:bd:86:7d:27:ef:f8:b0:4d:be:b3:b8:6f:
5d:5a:7a:c1:ec:0e:ec:01:bc:e7:02:a7:bd:9b:1f:
65:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:52:35:28:04:DE:7F:15:D2:1B:F0:67:8D:D9:8C:97:DF:D8:1C:25
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:97:37:15:cc:d1:16:1a:a7:63:75:5e:cd:1a:9b:a2:e3:7d:
b8:ec:48:93:56:e6:de:94:c8:34:86:c5:04:f3:12:44:92:49:
88:ca:f7:ae:26:fe:84:a8:83:a7:58:e6:5c:21:fc:4e:ff:b6:
d2:d2:17:e7:5c:65:f8:bc:ac:72:7d:07:1c:c7:7e:d2:9a:4d:
28:70:68:70:6b:52:45:02:df:3b:12:68:63:ed:f0:bd:00:ee:
ec:ab:32:52:44:b9:41:ab:1a:bc:27:15:de:85:02:ca:ad:2f:
c3:4f:8a:9d:ac:46:8f:d3:07:6c:1e:62:87:b6:03:61:6d:35:
d6:c9:57:e9:07:59:e9:45:e2:90:e2:6f:fe:d0:a6:6e:5b:93:
03:70:97:b5:ef:45:f4:77:ae:c0:88:bd:0a:50:49:4f:c1:10:
7a:71:f0:10:17:2d:86:ea:e1:23:bc:d5:2c:be:86:4c:cf:93:
8d:ec:fc:3f:0e:66:90:71:93:64:bb:73:90:a2:f0:be:6f:8a:
11:5c:02:8a:d2:9b:99:cf:0a:ea:51:c2:e8:bd:15:64:40:29:
d7:4d:a3:63:e0:50:d5:cc:e5:38:e0:45:9f:3f:99:3b:fc:42:
79:49:24:ca:68:78:e7:3a:fe:21:05:f3:62:62:f6:f0:93:86:
a8:c9:de:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:30 2026 by rpki-client