Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: Jh//bW2/yBhWDxXWR00GpvYdt+H/9JBVEAZihVbFKbw=
Subject key identifier: EE:5A:6D:2E:F6:3E:A0:6B:C1:CA:1C:3B:FD:A8:EB:B5:AE:17:83:56
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 0199FC5856F89B8A567B6E32D6706F04512D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 0207
Signing time: Sun 19 Oct 2025 12:01:11 +0000
Manifest this update: Sun 19 Oct 2025 12:01:11 +0000
Manifest next update: Mon 20 Oct 2025 12:01:11 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: +vzjWWuu5Y/9aeMPqtzMfeRQQ0UOb5xsiCkNlzEUvss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:56:f8:9b:8a:56:7b:6e:32:d6:70:6f:04:51:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Oct 19 12:01:11 2025 GMT
Not After : Oct 20 12:01:11 2025 GMT
Subject: CN=ee5a6d2ef63ea06bc1ca1c3bfda8ebb5ae178356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:89:9d:40:16:f2:5d:34:51:4b:73:2e:bd:de:
3a:0e:63:4b:c7:c8:e2:ae:bf:ac:97:1a:85:82:30:
c6:fc:8e:4f:87:58:e3:bd:24:ba:95:0a:88:f4:82:
3b:5f:19:d0:0f:93:10:8b:41:79:cf:2e:39:89:17:
b2:bc:d5:a0:26:c9:cb:64:54:56:23:32:c5:43:88:
27:86:8c:f9:d3:a0:3e:d1:df:77:90:fa:85:c4:68:
2d:b5:3c:d4:ac:f0:71:cc:86:f5:ff:63:54:48:6a:
c6:d3:86:5a:de:8d:75:a6:2f:a7:75:e0:70:d5:3d:
71:fd:f3:03:8f:8c:05:e1:a3:2f:f9:b9:98:72:0c:
3b:b0:4a:24:48:d5:d2:a7:1d:3a:01:12:b4:cd:58:
44:fa:33:ef:65:e5:5e:27:ad:88:b7:d5:ce:8e:d8:
e1:00:01:dd:a8:8b:4a:f6:db:b2:97:08:d2:e7:a5:
52:0b:1a:12:fe:47:c5:7c:fa:f2:d9:d8:d6:c4:8a:
59:89:d8:1f:9f:6d:47:2b:e9:66:a5:96:ed:04:23:
dc:d5:52:45:bf:c7:cc:8a:90:e2:f7:7a:3a:13:48:
b5:5a:59:6d:92:4c:9c:ad:87:80:0d:1b:02:fd:61:
f5:8d:02:61:a5:6c:c4:88:e1:96:39:a2:f4:73:18:
ab:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:5A:6D:2E:F6:3E:A0:6B:C1:CA:1C:3B:FD:A8:EB:B5:AE:17:83:56
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:4b:95:cb:ae:f7:a1:b6:98:52:02:ee:f7:6d:3b:c8:f1:8e:
4d:57:2b:91:53:59:9a:e5:6c:aa:ce:3c:05:07:12:6f:a5:b9:
b1:b7:8f:76:b1:f6:f2:22:a6:27:9f:41:99:f5:76:7f:d3:c8:
eb:3f:58:e1:26:b7:c6:83:f6:b4:d8:b7:08:59:70:14:08:6b:
10:31:50:d4:af:c2:66:67:e5:be:92:7c:08:4f:8e:e3:ab:b6:
02:b5:11:3c:64:ba:93:48:67:c6:87:18:0e:4c:67:19:8f:c7:
51:57:ed:c9:07:29:f1:59:f3:0f:f2:df:26:3d:b3:03:55:e4:
e6:d0:96:02:29:2b:3f:93:ea:ae:10:a3:c1:45:6c:ce:a2:41:
92:51:b9:02:7d:19:00:1a:0a:e7:b9:4a:98:35:e8:a6:5a:88:
f6:07:1a:bf:d1:3d:4c:bc:14:a7:94:d3:20:0b:27:0b:87:3b:
bc:a3:ba:e5:e1:49:9f:ca:b8:7a:59:15:04:7a:61:9e:9f:d7:
b0:18:7b:0f:00:0b:41:3f:10:31:08:62:39:1d:99:95:4f:d1:
c6:9b:c2:13:5c:2b:21:d1:73:5c:01:9d:68:1b:33:1e:5e:bf:
06:3c:c2:3c:3c:6f:c0:5a:a2:aa:f2:d2:94:05:f4:ab:4f:0a:
a5:ac:6c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:16:00 2025 by rpki-client