Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: qADveBIQzir2zN4v3UFBtfAv9U5wbWdWoDlrH9oLOAI=
Subject key identifier: 68:0D:B6:CB:F0:5E:AA:64:AD:73:60:01:D6:84:BA:8D:57:03:B8:4D
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 0198D4E0120D88118DB87681B4E7930FD035
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 016E
Signing time: Sat 23 Aug 2025 03:01:50 +0000
Manifest this update: Sat 23 Aug 2025 03:01:50 +0000
Manifest next update: Sun 24 Aug 2025 03:01:50 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: AfQWPDDh0bAahYHrzzw+x7EAVVOlHy0/GDkZYItnqeI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:12:0d:88:11:8d:b8:76:81:b4:e7:93:0f:d0:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Aug 23 03:01:50 2025 GMT
Not After : Aug 24 03:01:50 2025 GMT
Subject: CN=680db6cbf05eaa64ad736001d684ba8d5703b84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d5:3c:32:4d:9d:dc:30:88:bb:86:74:8e:f0:
0d:e3:ca:d4:51:65:77:03:6e:cd:e1:6e:91:16:27:
0d:4d:3d:c5:be:85:a1:a4:a3:59:8e:aa:75:aa:f3:
c2:17:1a:a2:b0:82:c2:11:fa:af:a8:b2:f8:70:4f:
5f:1f:65:46:40:d6:9b:c4:a3:58:b9:47:56:76:a2:
79:53:61:29:13:bf:ff:4d:bb:5a:9e:f5:e2:68:37:
dc:cf:5b:eb:89:1c:e8:7b:ed:62:13:1e:96:8b:bf:
1d:fc:c1:fd:38:ee:9b:8a:0d:bd:de:62:8b:32:68:
55:df:2c:a3:23:4c:08:b4:35:e4:1e:f9:ba:f1:5f:
7e:55:a2:b3:10:9d:24:b1:98:0b:07:34:2f:4d:c7:
5e:9a:3e:2a:3a:f9:00:99:85:39:7c:6b:b4:8d:62:
91:b2:af:ad:3b:b3:d4:3a:95:99:96:42:63:70:50:
c0:e0:16:38:3f:08:36:0d:c9:a3:2a:80:39:11:89:
67:f6:85:74:f1:94:96:5a:56:6d:f5:a7:eb:36:f3:
7f:2b:0f:87:37:05:82:cf:5c:3b:9e:d6:f6:bc:1c:
f6:b5:dc:4b:e1:a5:87:4c:d6:3e:a3:f1:70:db:98:
3f:47:1c:41:47:65:92:bf:98:2f:1f:c5:84:f6:02:
69:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:0D:B6:CB:F0:5E:AA:64:AD:73:60:01:D6:84:BA:8D:57:03:B8:4D
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:c3:75:28:ed:f6:66:b9:f3:b8:89:85:a5:f8:68:28:c4:68:
55:9d:e8:11:f9:6d:c4:11:5c:ae:c9:b5:91:02:3d:4d:4e:4a:
65:d3:7b:36:11:cd:c8:37:c4:58:87:6a:eb:2c:ad:d4:b4:4b:
bc:f5:06:12:06:1a:63:48:f2:99:c5:cf:4b:e6:c8:db:f9:2e:
fc:1a:50:f7:6e:83:a8:77:df:b4:0d:58:ac:61:91:e8:16:07:
7c:42:20:b9:4c:2d:97:e2:f9:0f:b5:ab:f2:29:d3:bc:04:d6:
05:16:7b:95:70:19:80:db:37:87:6e:62:02:30:74:d6:37:a1:
35:8b:86:e1:eb:43:33:b7:d0:3a:01:5b:6b:76:ff:98:34:cb:
ed:8f:34:f5:68:c3:1b:68:1b:59:54:bf:b9:05:c7:0d:7f:b5:
3f:fd:d3:85:3e:fd:95:f7:03:dc:c2:0c:a7:ba:21:43:08:5d:
7e:5e:8e:1c:bc:29:e8:cc:0a:3f:16:f3:f8:8e:71:76:1d:4b:
ed:e0:84:7e:f1:9c:dc:c0:71:6b:8e:b5:db:58:94:90:97:d9:
3c:88:eb:19:f7:03:ad:10:c7:ac:54:12:3d:44:da:51:be:1d:
50:7a:da:98:11:2d:01:d4:a2:3a:04:65:ed:71:7a:4f:6a:f2:
e6:08:e7:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:51 2025 by rpki-client