
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: M0QqkZMj8TFYtiV2BYbBxsyhjockOuQwacgKHYSeayA=
Subject key identifier: A3:42:A2:B8:42:74:33:F8:9F:FC:C3:3B:0C:CA:E8:E5:D3:69:D6:C7
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 0199FC21A1DF6B482A58987812DE8DA886EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 1673
Signing time: Sun 19 Oct 2025 11:01:26 +0000
Manifest this update: Sun 19 Oct 2025 11:01:26 +0000
Manifest next update: Mon 20 Oct 2025 11:01:26 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: +k9ZDkOsMl5XBrHi5FD23wq77fv7xP0XicexlG+cK/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:a1:df:6b:48:2a:58:98:78:12:de:8d:a8:86:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Oct 19 11:01:26 2025 GMT
Not After : Oct 20 11:01:26 2025 GMT
Subject: CN=a342a2b8427433f89ffcc33b0ccae8e5d369d6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:27:e7:27:18:6b:1d:d4:47:7f:57:0d:d0:
84:40:f1:52:ec:3f:7a:1c:46:37:8e:3b:2b:e2:b0:
90:eb:9a:85:a0:b8:d7:ad:71:ab:e2:b3:d6:1a:45:
cf:95:b0:1b:48:8b:92:9e:29:bc:4f:78:dc:25:fc:
ef:4f:de:11:c3:da:6e:38:62:9c:e0:51:33:83:ca:
9f:97:63:bf:2b:62:b9:23:06:f0:4a:2e:1d:3b:a6:
ee:f9:6b:a5:69:b4:ae:89:cf:7b:86:47:02:3a:4a:
fd:88:31:1b:90:57:c6:6f:4d:64:2c:55:95:68:7d:
2d:e5:a2:6e:fb:66:47:81:37:b4:bd:69:a5:02:58:
56:14:ba:b3:a2:85:69:12:37:66:28:47:90:e1:71:
c8:81:16:5c:98:de:34:c1:4a:c6:2d:52:b6:5a:74:
92:bc:f2:dc:97:25:8b:d8:33:c1:6c:e1:14:58:28:
ef:ce:10:65:81:56:24:31:ec:46:63:b3:93:b1:fe:
81:c1:22:8d:0a:b4:d8:97:2e:87:c8:24:07:d7:75:
68:86:b6:76:14:1c:73:62:ce:3c:fb:96:07:04:ad:
b6:7d:2e:21:ea:d7:68:fc:d9:8a:c4:fb:f1:de:b7:
3b:1f:d3:be:de:49:1d:9b:ef:e0:af:4d:d9:6e:9f:
c2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:42:A2:B8:42:74:33:F8:9F:FC:C3:3B:0C:CA:E8:E5:D3:69:D6:C7
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:6f:a5:ff:c4:b3:e0:af:b7:80:a0:fe:ad:48:1d:49:33:90:
c5:ca:65:ce:01:c4:50:bd:99:67:f4:4e:c2:08:f1:23:1b:41:
f1:71:bb:df:8d:3f:71:68:e9:91:e5:fa:33:60:a2:02:72:64:
9a:70:3d:d6:6b:3f:e5:34:e2:0d:79:e3:9e:0f:6d:4a:1b:2b:
cc:d9:f9:06:e2:c4:8e:9d:a5:d1:10:20:69:18:cf:56:a8:08:
54:e1:71:59:7f:f5:04:dd:a4:55:35:71:de:84:8b:9a:e6:7c:
ed:88:5a:71:bd:82:48:e2:e8:ab:a6:69:d6:0b:95:b2:d0:fd:
2a:3f:60:5b:cc:29:a1:e4:56:7d:3f:f9:59:eb:e7:dc:d8:77:
1c:e1:f6:55:5d:bb:4e:61:34:c2:08:55:30:57:bf:4e:79:93:
b0:94:f1:77:a2:e1:f8:cb:8f:de:79:7c:1c:0a:f0:cd:98:9e:
a8:74:c0:ee:b4:33:12:5f:48:07:f3:6f:38:3e:77:12:6c:15:
43:51:34:de:fd:c0:47:82:54:0f:87:c0:37:6c:dd:ec:3c:0d:
b8:06:ec:d3:00:4f:2c:a1:6c:cc:92:9b:a4:b2:fa:bc:f7:9e:
c8:3e:ab:d7:03:f4:cd:ef:ce:31:50:46:f5:3b:e9:54:7d:d7:
87:b3:ce:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:00 2025 by rpki-client