Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json)
Hash identifier: aZIQwRkGNDMyYQVEoO/XOuaKaqzr6YHl+0ZNOx+/JPk=
Subject key identifier: 7D:51:04:AE:14:50:BE:3F:8B:C5:CB:C0:90:4A:96:9C:0A:E7:3D:9B
Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Certificate serial: 0199FFFE50AB4AD0C5BECFE61181865606FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
Manifest number: 0FAA
Signing time: Mon 20 Oct 2025 05:01:20 +0000
Manifest this update: Mon 20 Oct 2025 05:01:20 +0000
Manifest next update: Tue 21 Oct 2025 05:01:20 +0000
Files and hashes: 1: 8e7eehP1l-DLf5STdKJWnoHYbKQ.roa (hash: K8SacJP+Z6piM83BegnBqW6J1m/glPf8EgTcnUYrotM=)
2: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: dn0YY3qzP8G7eg69sWBunzrn6WYgqCoo3A5h9pG3DyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:50:ab:4a:d0:c5:be:cf:e6:11:81:86:56:06:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76
Validity
Not Before: Oct 20 05:01:20 2025 GMT
Not After : Oct 21 05:01:20 2025 GMT
Subject: CN=7d5104ae1450be3f8bc5cbc0904a969c0ae73d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4e:6f:90:c1:1a:30:36:5e:5d:c8:b6:29:0d:
24:83:58:6e:ec:8d:0f:43:00:70:eb:bd:92:09:0b:
09:85:19:47:ef:80:96:6b:0d:26:34:ec:ca:b6:cb:
68:6e:0c:fe:fa:fc:cc:31:90:84:69:16:92:96:f8:
af:c8:1d:2c:db:f4:8f:75:64:08:27:85:68:b1:9d:
7c:ee:31:5f:d1:d0:e8:3c:ab:74:4d:cd:73:69:7b:
d1:d4:e6:94:25:10:77:bc:52:ce:ae:27:9e:a6:78:
40:25:7e:a8:16:2d:8e:71:d3:c9:4f:9c:b2:af:c1:
5d:19:d5:6d:03:cc:44:58:71:fd:3b:89:9d:63:da:
f2:74:b1:10:ff:00:9a:89:02:96:68:46:c1:e6:7b:
d1:e6:b6:e6:cb:3f:52:1e:cf:9b:dc:72:6c:9c:22:
9d:ac:75:75:c0:8b:7d:8e:d1:e0:56:2d:67:50:40:
c4:96:56:f5:b5:94:02:1d:0a:42:25:78:de:1a:51:
21:9b:dd:18:83:97:e3:f1:e7:16:e7:f7:e5:8b:b1:
16:e2:7e:e4:c9:38:31:98:5e:ce:75:3b:d4:f0:19:
93:11:fb:73:0c:16:76:40:dc:75:e6:16:11:8d:ab:
54:fd:14:b5:e2:38:cc:46:8c:f3:15:07:d3:7d:03:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:51:04:AE:14:50:BE:3F:8B:C5:CB:C0:90:4A:96:9C:0A:E7:3D:9B
X509v3 Authority Key Identifier:
keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:92:71:ae:50:5b:d2:6c:57:33:aa:3a:ea:76:6a:9d:83:65:
47:68:16:46:36:79:c5:86:e9:22:5f:49:2c:6b:2c:39:32:da:
41:21:0c:1c:6d:ee:bb:e0:4c:bc:57:25:5c:49:4f:32:c8:51:
53:8c:26:49:26:82:59:fb:2a:54:b7:2d:f0:d9:b0:60:0c:09:
3c:b5:3e:32:04:72:34:f8:ad:8f:cf:eb:47:38:49:f4:c6:72:
d8:42:12:ec:6a:3c:c5:7f:9c:d7:a9:33:d0:9b:b6:dd:68:cd:
b7:28:30:02:4b:18:03:fc:52:1c:67:42:33:b3:01:11:b1:c5:
cb:0e:43:d7:4b:5a:ed:83:78:55:8a:e6:e3:e8:af:36:60:74:
2c:56:de:ad:90:60:02:70:49:d5:3d:92:e2:a2:8c:2d:39:fb:
3b:7f:b9:89:e5:0e:aa:16:7f:ba:f2:2d:09:eb:0f:4a:b2:79:
17:6f:7e:19:31:48:c7:55:d1:c9:62:96:fa:87:fd:40:40:20:
1f:53:cb:77:32:16:f1:ae:b8:0d:25:63:6c:82:82:bf:f6:a7:
02:88:c7:f6:33:e3:64:9d:bb:2f:68:1f:e8:d0:cc:7c:16:fd:
38:72:ed:f7:ea:2c:20:83:80:66:a3:ca:d8:d2:65:d6:12:b1:
cc:cf:cc:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:09:26 2025 by rpki-client