Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json)
Hash identifier: J2j2KhTsPwlkk2ujlbFHmYpZwwRl42dLRirkDVZ7qtw=
Subject key identifier: E7:E1:06:DD:03:ED:A2:DB:59:3F:87:10:97:43:B3:7D:B4:55:DA:17
Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Certificate serial: 0198D4A860A128CB185403757FD6682867A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
Manifest number: 0F0F
Signing time: Sat 23 Aug 2025 02:01:01 +0000
Manifest this update: Sat 23 Aug 2025 02:01:01 +0000
Manifest next update: Sun 24 Aug 2025 02:01:01 +0000
Files and hashes: 1: 8e7eehP1l-DLf5STdKJWnoHYbKQ.roa (hash: K8SacJP+Z6piM83BegnBqW6J1m/glPf8EgTcnUYrotM=)
2: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: LOLiCHaeYTa+4Fm+h11KPOr8Ql8920rjcPfwKdXuJC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:60:a1:28:cb:18:54:03:75:7f:d6:68:28:67:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Validity
Not Before: Aug 23 02:01:01 2025 GMT
Not After : Aug 24 02:01:01 2025 GMT
Subject: CN=e7e106dd03eda2db593f87109743b37db455da17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:69:24:23:41:89:43:c5:4e:af:75:4a:a6:10:
43:94:13:00:e8:3e:f4:25:9c:78:f8:1b:f2:c2:49:
c9:c2:77:01:04:84:58:41:aa:ef:da:84:d1:81:16:
b4:9b:3a:ed:d1:0e:5c:e2:66:04:c8:19:ed:13:d8:
1c:52:d6:fd:5a:19:20:64:45:73:64:e2:fa:e4:51:
34:48:09:b1:3b:2b:c2:13:46:4a:14:74:2a:1b:34:
44:ba:0b:3f:42:9b:bf:2e:db:22:88:47:2a:f5:0d:
ae:34:5f:f9:bf:a2:30:3e:a0:42:46:51:1f:5e:56:
38:21:8e:a5:2e:90:45:5a:3e:7d:6d:4d:6d:e3:85:
fd:c7:1d:60:67:0a:28:6c:75:73:a5:39:c8:e0:29:
a8:09:ba:cb:82:d3:5b:d6:42:39:2c:46:62:6e:b1:
89:f2:78:86:45:8e:07:90:66:61:f1:ee:6b:49:97:
be:98:cb:85:3f:08:7b:28:26:47:9a:7a:83:07:d9:
1e:ec:29:24:1b:19:73:fd:d8:ab:8a:cb:8a:73:e5:
be:24:a3:79:99:89:10:f2:01:33:2e:b7:59:ef:10:
e9:de:2c:f5:07:98:f0:5e:0a:01:2e:cc:f4:b3:ee:
64:fb:46:d1:aa:c0:3c:14:e6:50:22:e6:5c:e7:cd:
50:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E1:06:DD:03:ED:A2:DB:59:3F:87:10:97:43:B3:7D:B4:55:DA:17
X509v3 Authority Key Identifier:
keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:48:19:bd:60:cf:ae:54:f5:d5:33:0a:74:03:18:e2:cb:7c:
26:27:14:88:df:34:27:fe:2f:ef:7e:2c:f9:c2:fc:6c:80:3c:
45:28:6d:ce:b7:2a:f8:dd:f4:5a:50:dd:b2:32:66:c5:f2:7a:
cd:35:85:e6:86:c0:63:50:7e:40:07:c8:38:f2:67:20:d7:3a:
66:0b:c3:4f:b5:a6:8c:4c:ec:18:29:e7:43:15:03:2d:f4:6b:
e8:31:e9:89:95:4a:cf:6c:87:cb:53:7d:17:1d:d4:e0:94:bf:
1e:5f:ff:ce:52:07:d9:17:9a:12:98:13:19:c0:37:5b:74:78:
9d:49:3f:3a:a2:0b:7c:d1:47:eb:6e:90:ba:29:3d:1a:6f:d3:
23:a0:4b:41:a2:08:d3:90:9b:1d:d9:ad:ae:90:de:b1:a2:fb:
5e:3d:21:3b:79:01:e8:49:2e:9d:ba:51:d9:4e:7b:f8:4e:fa:
c0:21:9f:56:50:63:20:f7:79:42:fc:34:f1:31:92:8f:ba:7a:
a0:82:96:f9:22:f5:01:12:13:cb:70:f2:ba:f6:ae:79:d6:6f:
7b:84:52:d5:96:69:8f:ad:e0:2d:95:b0:be:09:bf:4a:22:a2:
aa:54:2a:ac:80:f1:89:ef:34:d2:a4:c5:59:3b:02:99:38:c4:
68:30:2f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:07:48 2025 by rpki-client