Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: x8rz/d7nTQjz95Vt2qafANap3hv+t8oLWCAykS9IPGM=
Subject key identifier: DC:1C:30:76:9D:CE:54:71:D8:41:B4:B9:CD:B4:4C:D8:27:17:0E:B1
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 0199225564E075F9A3D4F474EE9EBB2D8B53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 034F
Signing time: Sun 07 Sep 2025 04:00:45 +0000
Manifest this update: Sun 07 Sep 2025 04:00:45 +0000
Manifest next update: Mon 08 Sep 2025 04:00:45 +0000
Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: /KuYfRFJXO7/efombLYCfCq+UL2AzRwyQYAM0FOkKxg=)
3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=)
4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:64:e0:75:f9:a3:d4:f4:74:ee:9e:bb:2d:8b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Sep 7 04:00:45 2025 GMT
Not After : Sep 8 04:00:45 2025 GMT
Subject: CN=dc1c30769dce5471d841b4b9cdb44cd827170eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0e:db:d7:65:2a:27:a8:f1:ec:9f:82:f9:69:
bc:08:b0:fc:7c:ce:0d:61:07:ea:a0:e9:cf:4d:98:
34:21:9e:e7:cf:0e:d2:eb:07:3f:c1:6d:95:e2:4a:
b4:4e:79:c0:bb:ac:29:2d:6b:69:f9:00:6d:2d:a1:
59:db:d4:5c:ca:82:a6:e4:02:b1:de:b2:a5:96:f9:
ba:bf:4c:00:61:5f:c0:d8:77:db:d3:7c:6c:3e:98:
96:c4:5b:64:8a:e7:1f:c0:16:de:02:4b:cb:d8:e4:
64:b0:8c:41:ef:62:ba:bc:cb:d8:de:f2:89:4e:e8:
86:54:a6:e3:89:70:0d:39:64:fa:7f:7a:b4:40:96:
65:a8:2e:e9:53:f2:48:a8:23:8b:58:5a:31:e2:45:
1f:97:ba:f4:20:e7:39:94:14:92:13:28:68:32:1f:
b3:82:e1:90:9e:ef:a6:2a:15:aa:77:39:57:cd:1c:
9c:aa:01:9e:3c:94:0b:d6:62:2a:e6:64:8d:8e:18:
40:03:c9:58:c4:bc:92:cc:60:29:3d:31:19:63:43:
11:07:b5:12:09:6c:5c:a7:6d:8e:d6:3c:a4:56:dd:
88:21:6f:db:06:cc:e2:7d:b5:d6:3e:8a:90:04:e0:
bf:0c:67:5f:91:f4:f1:7b:19:8a:18:5c:8f:cc:a0:
a3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1C:30:76:9D:CE:54:71:D8:41:B4:B9:CD:B4:4C:D8:27:17:0E:B1
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:1e:7a:87:28:13:b1:b6:bf:3d:82:a4:2c:d1:94:61:31:94:
76:d1:73:f5:6d:49:71:f5:62:df:23:0c:08:4c:c4:4b:e7:d5:
32:6b:a7:1d:85:33:39:70:df:a9:f0:b5:41:b5:99:05:8b:dc:
39:10:b8:f2:2e:6e:ce:44:01:8b:14:2c:f2:e3:67:7d:53:6f:
ba:72:95:f5:b7:b4:5a:6e:50:5e:7d:85:94:69:4e:18:15:58:
8a:28:cb:aa:16:d8:a7:d5:eb:3e:26:fb:a0:d7:bb:a8:57:ba:
2d:9d:3d:9f:de:09:1c:34:d4:b8:00:7f:64:ad:6e:a0:95:b8:
b2:fc:d9:15:16:f4:eb:ea:94:e7:16:67:48:f5:f7:31:22:69:
e5:bb:49:33:5a:bb:13:1a:b8:70:11:7b:59:ca:b7:3e:cd:81:
5e:c1:15:e4:9b:6d:86:ed:32:8a:09:2e:96:e4:54:5e:e7:56:
e8:61:76:2f:04:bb:9b:58:08:f6:5b:33:92:c8:13:d7:89:e7:
7c:85:d2:cd:26:0a:1e:d6:71:50:15:af:64:f8:82:55:47:7a:
16:60:43:40:27:6e:3d:33:b7:9c:12:f3:47:84:c4:f7:b5:ca:
11:3e:aa:18:05:f7:2c:33:03:8d:9c:40:45:9c:cc:ca:11:14:
0e:34:ad:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:42:37 2025 by rpki-client