Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json)
Hash identifier: y5FC38at3WYYqEPFULzasvLpUZzpey/YJdAILGHwilo=
Subject key identifier: 81:90:92:DE:A9:05:00:01:9B:93:4D:DF:68:D9:E5:F4:86:6A:81:F5
Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a
Certificate serial: 019A725C44022015B04A3CF5DD3616555312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
Manifest number: 03FD
Signing time: Tue 11 Nov 2025 10:00:40 +0000
Manifest this update: Tue 11 Nov 2025 10:00:40 +0000
Manifest next update: Wed 12 Nov 2025 10:00:40 +0000
Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=)
2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: 9x5Qds2copkmQnVSyEqpVMDuO/EtPcEUSIDYWG3PMxY=)
3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=)
4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:44:02:20:15:b0:4a:3c:f5:dd:36:16:55:53:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a
Validity
Not Before: Nov 11 10:00:40 2025 GMT
Not After : Nov 12 10:00:40 2025 GMT
Subject: CN=819092dea90500019b934ddf68d9e5f4866a81f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:28:66:53:4f:39:11:a9:fe:45:95:78:19:37:
84:9e:b6:75:fa:fe:28:ac:1d:30:01:e7:b4:46:de:
39:bb:19:07:4a:fa:3d:28:ed:d5:f0:bb:36:80:ca:
35:2a:84:f4:51:bf:28:58:af:18:58:5e:f4:46:1e:
4f:aa:17:4c:c0:10:53:92:7f:19:eb:f3:44:bb:d4:
bb:39:6c:cf:1d:13:80:a4:7d:02:a3:49:76:70:e1:
c3:74:e2:96:40:c8:f4:17:0c:e8:fc:b6:76:b1:01:
0f:a0:2d:07:55:58:d8:76:74:82:6f:68:70:ed:a3:
8a:b4:4d:39:3f:2a:c1:00:2b:3b:50:a3:b4:ff:cc:
28:a1:47:32:81:9c:8b:90:2a:d8:71:48:28:04:0c:
53:80:9b:69:9a:fb:89:4c:46:a8:29:dc:3a:93:4c:
26:35:f9:9f:28:a9:1d:52:67:11:28:e2:b3:89:a4:
b8:49:5c:f7:24:0e:dc:e7:9f:c9:dc:c5:0b:32:89:
bd:19:e2:cc:59:76:c7:d9:05:2f:52:b9:ad:b3:d2:
68:07:8d:d6:1c:b4:9f:a8:1a:3c:ae:01:63:d9:e6:
89:aa:32:8e:f7:be:43:6b:e4:87:51:00:b8:9f:75:
1b:c1:db:0f:90:59:bc:46:29:5a:48:3e:52:82:bd:
9c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:90:92:DE:A9:05:00:01:9B:93:4D:DF:68:D9:E5:F4:86:6A:81:F5
X509v3 Authority Key Identifier:
keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:29:76:7e:8d:b0:50:5f:70:e1:5c:83:8e:3f:d9:4b:62:ac:
d3:5c:e1:29:40:fc:cd:c8:0c:46:26:92:6c:0b:2b:f3:b0:ac:
02:09:22:97:1d:a1:e4:f1:45:f2:c0:cd:a8:10:e1:99:58:d1:
0f:26:00:be:62:61:09:2d:84:94:b2:ac:12:7b:da:a8:3b:64:
09:7b:60:eb:7b:ad:09:4a:ae:ba:3d:b5:e8:81:8b:18:35:75:
5b:bd:56:6a:fb:b5:ce:c8:7e:b3:4d:74:06:9b:4f:af:59:38:
d4:19:09:8f:b4:84:ff:eb:e1:43:32:70:c9:42:14:e2:f8:1d:
9e:de:9a:32:b1:19:32:9f:e6:46:d4:ac:53:b9:cb:3e:83:63:
89:a4:be:01:fd:28:d4:43:6f:37:d0:95:34:ba:4e:84:e2:4e:
71:f2:49:4e:17:11:aa:36:9e:87:d0:00:5b:f1:9a:aa:82:fe:
25:66:a6:cf:c2:6d:75:80:0e:24:77:f0:67:8c:03:c4:c3:84:
9c:59:cb:7f:8b:83:b5:40:b1:04:91:ee:e0:23:fd:a6:9d:39:
20:b8:7d:cb:9a:90:71:f8:3d:22:39:3f:03:34:5a:ba:ba:d4:
21:46:b1:6c:67:11:8b:c3:db:84:95:e4:6e:c5:5f:1c:c3:54:
8a:4f:df:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:56:53 2025 by rpki-client