Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: +2K/YqJfrxm54WaCeesDUSemzXY4Q3wuOx8jj/QsTf0=
Subject key identifier: CD:E5:5D:4D:68:F0:00:2F:F4:12:D8:83:F6:E2:37:14:2E:57:DE:68
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 0197B70E64C95EF0D660A68314E9A193D28E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: DA
Signing time: Sat 28 Jun 2025 15:01:03 +0000
Manifest this update: Sat 28 Jun 2025 15:01:03 +0000
Manifest next update: Sun 29 Jun 2025 15:01:03 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: BuReXuBuyyKCcuqQEk6SE6c8wKtETORuCZPfSKW/ajA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:64:c9:5e:f0:d6:60:a6:83:14:e9:a1:93:d2:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Jun 28 15:01:03 2025 GMT
Not After : Jun 29 15:01:03 2025 GMT
Subject: CN=cde55d4d68f0002ff412d883f6e237142e57de68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e6:12:ea:5a:86:09:cf:fb:29:e3:84:b7:ad:
43:e5:77:1a:50:fb:ca:6a:33:cb:22:63:8d:cb:4e:
da:2e:ae:af:d4:9d:71:c4:ec:4a:0e:d2:fe:12:e4:
db:ab:b6:b0:a3:55:d1:8a:0c:41:78:97:58:ec:aa:
92:fd:6c:08:95:3f:53:d0:90:a8:b6:b6:42:b4:24:
56:0e:b1:f0:40:0b:d1:8e:28:79:f1:62:d9:a4:a0:
05:9d:a2:93:fc:49:26:6c:15:3c:f8:b6:6f:df:f0:
a5:75:86:b5:b5:ad:4f:34:86:0c:cf:88:39:ff:4b:
90:e5:81:8c:3f:1b:48:28:3c:a3:06:30:92:aa:61:
62:58:5f:0b:13:24:7d:4f:ea:c9:a7:36:df:7f:0f:
31:13:32:ee:d4:a5:9c:27:7b:cf:01:21:6f:2b:7c:
c0:21:1d:44:3d:d8:66:08:f9:a5:01:3a:d3:3f:f3:
ce:a9:c4:05:81:f6:3f:dd:ef:52:70:1b:ee:72:83:
c3:a7:86:ce:d7:95:2b:87:25:6c:fa:84:04:f7:71:
59:e4:45:3e:d4:4c:b7:7d:95:34:b8:52:d7:e7:df:
6f:4f:e9:0c:62:7e:3c:3a:99:f0:05:3b:24:f4:db:
4f:ba:83:fe:02:95:94:83:f2:f0:14:45:43:a6:8a:
0b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E5:5D:4D:68:F0:00:2F:F4:12:D8:83:F6:E2:37:14:2E:57:DE:68
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:96:24:3f:7a:2a:4f:7b:c0:f5:15:71:38:82:c9:63:5b:3c:
0b:69:46:c9:58:72:88:31:64:fc:f4:72:94:b2:85:3a:00:4e:
a4:b9:0f:20:8d:15:05:94:d2:21:c9:83:d6:76:53:6b:ff:d1:
0a:93:6f:5a:61:a8:e7:f6:0d:14:85:99:fd:77:17:f2:3c:b1:
ad:fe:71:ff:4a:2d:6a:12:da:44:0a:86:79:57:16:84:70:6d:
37:b9:88:1a:1e:bc:06:81:cc:9c:15:8c:fe:a2:c0:08:dd:b2:
53:6f:73:15:70:f8:0d:45:d8:08:82:bf:bc:38:4f:69:d0:0f:
0b:c8:ca:f3:e6:f4:9d:d7:eb:c2:32:98:20:c5:29:48:79:6e:
6d:ad:58:7d:e0:4c:6f:ed:31:7a:ed:92:3f:ec:ab:7e:a7:76:
d6:45:29:f2:2c:2f:02:b8:38:c0:a7:4f:a3:9f:80:9d:23:23:
58:25:c1:ff:3b:79:04:73:4c:ff:ce:36:c1:c7:4d:88:9f:12:
64:cb:15:46:1a:2e:a5:58:5a:53:4e:cd:84:ff:3e:6b:b1:41:
4f:02:61:f8:2f:a8:2d:c5:03:d6:81:b5:cf:02:0c:4a:61:e9:
d0:ed:65:d0:da:5e:07:eb:e2:60:7a:d3:e4:1a:e0:ed:a3:8a:
a5:77:37:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DmTJXvDWYKaDFOmhk9KOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ODQ2MWUwNjBmZGY0OGNkNDFkMzNhZDkyNzFjODA3ZDQy
NGViNDIwHhcNMjUwNjI4MTUwMTAzWhcNMjUwNjI5MTUwMTAzWjAzMTEwLwYDVQQD
EyhjZGU1NWQ0ZDY4ZjAwMDJmZjQxMmQ4ODNmNmUyMzcxNDJlNTdkZTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOYS6lqGCc/7KeOEt61D5XcaUPvK
ajPLImONy07aLq6v1J1xxOxKDtL+EuTbq7awo1XRigxBeJdY7KqS/WwIlT9T0JCo
trZCtCRWDrHwQAvRjih58WLZpKAFnaKT/EkmbBU8+LZv3/CldYa1ta1PNIYMz4g5
/0uQ5YGMPxtIKDyjBjCSqmFiWF8LEyR9T+rJpzbffw8xEzLu1KWcJ3vPASFvK3zA
IR1EPdhmCPmlATrTP/POqcQFgfY/3e9ScBvucoPDp4bO15UrhyVs+oQE93FZ5EU+
1Ey3fZU0uFLX599vT+kMYn48OpnwBTsk9NtPuoP+ApWUg/LwFEVDpooLXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM3lXU1o8AAv9BLYg/biNxQuV95oMB8GA1UdIwQY
MBaAFIaEYeBg/fSM1B0zrZJxyAfUJOtCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYt
NTlhYjk2YmMzNWM2LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYtNTlhYjk2YmMzNWM2
LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXpYkP3oq
T3vA9RVxOILJY1s8C2lGyVhyiDFk/PRylLKFOgBOpLkPII0VBZTSIcmD1nZTa//R
CpNvWmGo5/YNFIWZ/XcX8jyxrf5x/0otahLaRAqGeVcWhHBtN7mIGh68BoHMnBWM
/qLACN2yU29zFXD4DUXYCIK/vDhPadAPC8jK8+b0ndfrwjKYIMUpSHluba1YfeBM
b+0xeu2SP+yrfqd21kUp8iwvArg4wKdPo5+AnSMjWCXB/zt5BHNM/842wcdNiJ8S
ZMsVRhoupVhaU07NhP8+a7FBTwJh+C+oLcUD1oG1zwIMSmHp0O1l0NpeB+viYHrT
5Brg7aOKpXc33A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:46:48 2025 by rpki-client