Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json)
Hash identifier: 5VNuWVB6JjANWrfI0E38kS/Ua0HfKB1QQvUKiOhPHt0=
Subject key identifier: 4F:1F:91:63:34:77:E4:03:16:25:3F:C7:AE:4F:21:73:32:5C:C5:C9
Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Certificate serial: 019D2772EEC3A121B6B408813D00C5442795
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
Manifest number: 114D
Signing time: Thu 26 Mar 2026 00:02:16 +0000
Manifest this update: Thu 26 Mar 2026 00:02:16 +0000
Manifest next update: Fri 27 Mar 2026 00:02:16 +0000
Files and hashes: 1: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: 9DIG/5LfEnVw3uJKChBHgep6YWG79xqIM3dTym4Zx3g=)
2: wumUMMWvHiUrTabZLhTSravhO6c.roa (hash: p2VcOKl2dOd/4+FLAlcMShjCSyG2pmnKtd0Km8VqtxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:ee:c3:a1:21:b6:b4:08:81:3d:00:c5:44:27:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Validity
Not Before: Mar 26 00:02:16 2026 GMT
Not After : Mar 27 00:02:16 2026 GMT
Subject: CN=4f1f91633477e40316253fc7ae4f2173325cc5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:05:81:22:3f:70:47:fc:31:60:5a:b0:f7:7f:
13:ab:d6:11:59:20:cd:06:26:9e:38:be:55:bd:72:
26:ca:e0:05:2d:71:2b:86:31:ec:d4:08:4f:8b:3b:
d6:09:58:6c:45:13:b2:c5:24:77:2b:d3:4d:50:39:
3b:71:3d:92:fe:89:65:a6:38:f7:1c:b6:f5:67:f0:
45:3d:9e:38:39:23:4d:25:68:92:44:0c:a6:5b:6d:
28:16:0b:79:fa:3e:88:52:ce:bd:de:85:b5:de:5c:
05:53:6e:8e:06:c2:9b:c1:f3:0d:62:2a:4c:88:40:
25:3e:88:36:79:be:82:fc:d3:12:d6:35:59:22:b1:
df:39:30:c5:78:97:4c:e7:70:85:64:37:4b:02:16:
e9:3c:f6:66:de:fb:13:21:ed:69:bf:81:5e:89:c1:
ce:6d:98:8d:b8:25:82:6e:92:f8:6a:6d:85:71:39:
ee:03:01:fd:ae:40:7e:87:e4:3d:c7:31:10:f4:67:
65:fc:2b:73:54:b0:9a:29:ee:34:4e:93:29:75:4f:
ca:6e:2e:16:d1:8b:38:e6:5d:64:b2:c4:64:f3:a8:
05:f1:37:fb:3b:fa:40:3d:3f:06:64:f3:84:07:0b:
95:36:bc:dc:f0:41:12:77:1e:f4:6e:31:2e:4b:13:
b4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:1F:91:63:34:77:E4:03:16:25:3F:C7:AE:4F:21:73:32:5C:C5:C9
X509v3 Authority Key Identifier:
keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:cb:d2:2b:f5:3f:af:7d:cd:37:7a:ce:fb:8f:8c:5b:24:69:
7b:74:d8:28:a2:ef:ed:07:56:3b:69:20:fa:b5:3b:4a:a7:64:
5b:b9:30:54:75:1f:b6:ca:10:68:1f:82:ec:15:e0:e6:1c:46:
3b:a1:cf:7b:98:e9:79:e0:72:75:58:df:49:ac:ca:42:bd:d9:
fe:8f:fb:b2:64:14:6c:85:64:c4:9d:6f:01:ef:9a:dc:b0:34:
03:f3:f6:6a:dd:7e:9d:19:1c:66:02:a8:f1:c0:5a:40:2b:0e:
f9:87:ff:8b:c0:9e:a4:d8:9b:12:07:f7:51:18:27:92:0c:59:
90:7a:c9:0b:06:b5:b1:52:31:58:86:e3:84:17:b7:8d:9a:36:
62:28:17:b4:cf:c7:a4:4d:94:cc:87:33:a4:b2:59:c5:54:de:
d9:8c:ea:02:2b:22:f9:4d:f3:7e:8a:0d:4e:a9:45:66:9b:07:
73:0b:a8:f4:a8:39:01:10:f3:1d:a5:ae:fc:1f:1c:6a:bc:4d:
71:83:cf:17:09:47:94:e3:b5:9b:08:3a:5f:29:27:2b:e6:e7:
1d:f1:9b:aa:3f:20:ab:1f:5e:63:17:7e:02:f2:7c:43:71:53:
17:43:90:51:9a:e5:06:39:dc:42:51:4e:c8:37:0f:0a:f1:4d:
2a:38:b7:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncu7DoSG2tAiBPQDFRCeVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkMTYwNzJjYTAyNTJmYWI1MDY1OGQ3MzZmZjJjNjBjMTYy
OWRjNzYwHhcNMjYwMzI2MDAwMjE2WhcNMjYwMzI3MDAwMjE2WjAzMTEwLwYDVQQD
Eyg0ZjFmOTE2MzM0NzdlNDAzMTYyNTNmYzdhZTRmMjE3MzMyNWNjNWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogWBIj9wR/wxYFqw938Tq9YRWSDN
BiaeOL5VvXImyuAFLXErhjHs1AhPizvWCVhsRROyxSR3K9NNUDk7cT2S/ollpjj3
HLb1Z/BFPZ44OSNNJWiSRAymW20oFgt5+j6IUs693oW13lwFU26OBsKbwfMNYipM
iEAlPog2eb6C/NMS1jVZIrHfOTDFeJdM53CFZDdLAhbpPPZm3vsTIe1pv4FeicHO
bZiNuCWCbpL4am2FcTnuAwH9rkB+h+Q9xzEQ9Gdl/CtzVLCaKe40TpMpdU/Kbi4W
0Ys45l1kssRk86gF8Tf7O/pAPT8GZPOEBwuVNrzc8EESdx70bjEuSxO0jwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE8fkWM0d+QDFiU/x65PIXMyXMXJMB8GA1UdIwQY
MBaAFD0WByygJS+rUGWNc2/yxgwWKdx2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yZmJmMmMtNTQyZi00Yzk4LTk5ZGIt
YTRlNWRlOGVlNzE2LzEvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8yZmJmMmMtNTQyZi00Yzk4LTk5ZGItYTRlNWRlOGVlNzE2
LzEvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASMvSK/U/
r33NN3rO+4+MWyRpe3TYKKLv7QdWO2kg+rU7SqdkW7kwVHUftsoQaB+C7BXg5hxG
O6HPe5jpeeBydVjfSazKQr3Z/o/7smQUbIVkxJ1vAe+a3LA0A/P2at1+nRkcZgKo
8cBaQCsO+Yf/i8CepNibEgf3URgnkgxZkHrJCwa1sVIxWIbjhBe3jZo2YigXtM/H
pE2UzIczpLJZxVTe2YzqAisi+U3zfooNTqlFZpsHcwuo9Kg5ARDzHaWu/B8carxN
cYPPFwlHlOO1mwg6XyknK+bnHfGbqj8gqx9eYxd+AvJ8Q3FTF0OQUZrlBjncQlFO
yDcPCvFNKji3Sw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:13:17 2026 by rpki-client