Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json)
Hash identifier: 04077jZJRZAycYz/Y+09j+muWRMPUw1xSW3drUY/bso=
Subject key identifier: E7:03:A7:2B:C9:AF:16:CE:8D:03:A2:BF:96:B8:52:D2:E1:4B:8B:3C
Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Certificate serial: 019E209153AEBB646D988DDD6550537BBB50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
Manifest number: 11CE
Signing time: Wed 13 May 2026 09:00:55 +0000
Manifest this update: Wed 13 May 2026 09:00:55 +0000
Manifest next update: Thu 14 May 2026 09:00:55 +0000
Files and hashes: 1: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: 9Eq+Y/2dBuIzx7NMPkEXEjrcE54nEWKcn8C8TOthHG0=)
2: wumUMMWvHiUrTabZLhTSravhO6c.roa (hash: p2VcOKl2dOd/4+FLAlcMShjCSyG2pmnKtd0Km8VqtxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:53:ae:bb:64:6d:98:8d:dd:65:50:53:7b:bb:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Validity
Not Before: May 13 09:00:55 2026 GMT
Not After : May 14 09:00:55 2026 GMT
Subject: CN=e703a72bc9af16ce8d03a2bf96b852d2e14b8b3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:01:43:42:92:11:c0:a4:12:00:56:0e:06:57:
a6:34:ef:94:bc:7b:45:5f:f5:c6:54:42:07:9b:d3:
93:17:c4:cc:34:fc:f5:34:be:e9:da:99:81:0c:2b:
7f:81:9a:a0:a6:80:8e:01:2b:8d:b3:28:88:50:5a:
f9:b3:27:8f:cb:b5:c0:f0:e3:f8:b6:84:a9:42:67:
35:58:0e:22:b7:af:0b:00:77:7c:1a:63:83:86:f2:
22:f1:90:23:10:8c:2b:eb:06:ba:a4:68:f5:3e:b4:
5a:12:c7:7e:9e:e8:38:5d:68:cf:52:16:1c:94:39:
c4:69:b2:56:b9:3f:07:92:5a:07:8b:3f:29:8b:79:
a0:e0:a4:5c:15:91:f9:a7:85:e9:26:7d:1f:07:6a:
de:41:43:22:ea:f6:0a:12:69:8a:45:ed:f4:35:59:
32:20:f6:02:02:71:6f:cf:96:1a:05:6b:64:23:d7:
ca:62:88:3f:6f:98:fd:1d:fe:aa:af:81:df:f8:c5:
c8:d9:2b:bf:ca:ae:70:06:37:9d:bc:09:84:94:81:
0d:7f:bb:6e:56:6d:5c:b3:a2:c4:e4:8d:d5:af:1f:
7f:80:82:12:df:ae:72:9e:9e:ea:73:c8:3d:bf:90:
6f:4d:3d:13:76:c6:60:d0:5e:ac:9c:8a:e3:e2:23:
70:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:03:A7:2B:C9:AF:16:CE:8D:03:A2:BF:96:B8:52:D2:E1:4B:8B:3C
X509v3 Authority Key Identifier:
keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:4e:09:1e:4a:c4:9d:6b:2d:26:cd:a5:30:4f:fc:e7:4e:88:
e7:06:31:6d:87:be:12:2d:28:87:52:c1:74:d7:8c:78:28:e9:
a7:82:97:9c:08:df:c8:6d:c6:d0:22:d2:79:b0:17:a0:22:52:
cd:fe:00:17:16:f2:e5:6d:f4:23:82:5f:ad:51:21:5a:79:03:
dc:0d:1a:ea:4b:65:33:78:6d:56:9e:e8:0a:d8:4f:62:a4:0f:
e2:25:1d:3f:f1:72:14:95:bd:57:b6:e1:c2:7e:31:d9:9e:ec:
74:b8:10:b7:64:3b:2b:e0:ec:49:ac:04:59:3d:99:9b:f1:84:
8a:1e:0d:a8:fa:93:99:75:ba:4c:4a:be:e8:6a:66:1b:8f:b8:
d9:08:97:64:16:71:89:d1:86:8c:f5:e2:8f:88:53:d7:09:8f:
7a:fc:89:89:48:a9:0d:c6:cc:0c:9f:6f:87:39:db:18:8b:c4:
bc:bf:a3:33:de:4c:11:2b:d4:46:46:4e:2a:4c:44:5c:74:cc:
ee:ce:89:4f:74:83:a0:41:7a:9b:00:1a:02:c2:35:19:09:73:
ca:49:eb:a4:16:63:1c:26:90:00:a7:d5:ba:0c:9a:6d:77:51:
7a:14:e8:76:bf:d5:53:d9:58:3d:1b:d5:34:3d:75:8c:36:36:
9d:5f:ee:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gkVOuu2RtmI3dZVBTe7tQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkMTYwNzJjYTAyNTJmYWI1MDY1OGQ3MzZmZjJjNjBjMTYy
OWRjNzYwHhcNMjYwNTEzMDkwMDU1WhcNMjYwNTE0MDkwMDU1WjAzMTEwLwYDVQQD
EyhlNzAzYTcyYmM5YWYxNmNlOGQwM2EyYmY5NmI4NTJkMmUxNGI4YjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAFDQpIRwKQSAFYOBlemNO+UvHtF
X/XGVEIHm9OTF8TMNPz1NL7p2pmBDCt/gZqgpoCOASuNsyiIUFr5syePy7XA8OP4
toSpQmc1WA4it68LAHd8GmODhvIi8ZAjEIwr6wa6pGj1PrRaEsd+nug4XWjPUhYc
lDnEabJWuT8HkloHiz8pi3mg4KRcFZH5p4XpJn0fB2reQUMi6vYKEmmKRe30NVky
IPYCAnFvz5YaBWtkI9fKYog/b5j9Hf6qr4Hf+MXI2Su/yq5wBjedvAmElIENf7tu
Vm1cs6LE5I3Vrx9/gIIS365ynp7qc8g9v5BvTT0TdsZg0F6snIrj4iNwKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOcDpyvJrxbOjQOiv5a4UtLhS4s8MB8GA1UdIwQY
MBaAFD0WByygJS+rUGWNc2/yxgwWKdx2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yZmJmMmMtNTQyZi00Yzk4LTk5ZGIt
YTRlNWRlOGVlNzE2LzEvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8yZmJmMmMtNTQyZi00Yzk4LTk5ZGItYTRlNWRlOGVlNzE2
LzEvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkU4JHkrE
nWstJs2lME/8506I5wYxbYe+Ei0oh1LBdNeMeCjpp4KXnAjfyG3G0CLSebAXoCJS
zf4AFxby5W30I4JfrVEhWnkD3A0a6ktlM3htVp7oCthPYqQP4iUdP/FyFJW9V7bh
wn4x2Z7sdLgQt2Q7K+DsSawEWT2Zm/GEih4NqPqTmXW6TEq+6GpmG4+42QiXZBZx
idGGjPXij4hT1wmPevyJiUipDcbMDJ9vhznbGIvEvL+jM95MESvURkZOKkxEXHTM
7s6JT3SDoEF6mwAaAsI1GQlzyknrpBZjHCaQAKfVugyabXdRehTodr/VU9lYPRvV
ND11jDY2nV/uUg==
-----END CERTIFICATE-----
Generated at Wed May 13 12:32:13 2026 by rpki-client