Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
File: RhU-isRttc5XS6fjnoforwlsGok.mft (raw, json)
Hash identifier: PWkyAXVtiwrBbiZNuGi5Ns2eSPip7QiQ7/2l0IWPQ5I=
Subject key identifier: D8:67:07:59:E8:25:63:61:F0:97:DA:E0:DD:D9:E5:1C:18:EE:ED:53
Authority key identifier: 46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
Certificate issuer: /CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Certificate serial: 019A533F819DAFC21ECA12B93823B4C3DF93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
Manifest number: 05E7
Signing time: Wed 05 Nov 2025 09:01:02 +0000
Manifest this update: Wed 05 Nov 2025 09:01:02 +0000
Manifest next update: Thu 06 Nov 2025 09:01:02 +0000
Files and hashes: 1: RhU-isRttc5XS6fjnoforwlsGok.crl (hash: 5+Rh3GKo+oLp6VIBziKW/1Tdv82vfS0t389ir5+y1Tc=)
2: yOFjl_Pxx0Rc441XIFCRbQAh0C8.roa (hash: xKAfXgoPQJ/4slkyXjKOtsYsgtyUmgpiHM6n61mT42s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:3f:81:9d:af:c2:1e:ca:12:b9:38:23:b4:c3:df:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46153e8ac46db5ce574ba7e39e87e8af096c1a89
Validity
Not Before: Nov 5 09:01:02 2025 GMT
Not After : Nov 6 09:01:02 2025 GMT
Subject: CN=d8670759e8256361f097dae0ddd9e51c18eeed53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:aa:09:b8:71:b4:68:eb:35:70:89:5b:00:d6:
a2:90:03:28:da:13:76:51:11:00:65:68:93:25:82:
7d:cd:6f:e1:fd:9e:b7:a5:03:62:6c:32:7b:c9:00:
ff:4b:02:59:bd:75:00:21:40:f4:ef:11:c0:40:74:
a1:14:6c:be:44:48:a1:8c:eb:b1:b3:39:8f:0d:5f:
bf:8a:43:df:91:59:90:8e:99:b1:19:8a:47:56:29:
4f:8c:9a:d1:58:f8:bd:36:df:18:11:9d:1c:50:14:
12:e6:85:29:00:08:e3:fc:26:30:c1:43:20:97:6b:
62:aa:a9:74:fc:a7:65:4d:ac:9b:af:64:53:f9:2e:
b2:b6:6b:db:55:12:5c:50:83:34:a0:35:f6:11:e8:
b3:7e:04:3b:ba:bf:84:aa:e3:1a:43:f2:8a:6f:13:
1b:76:39:aa:7b:09:6b:a5:99:c2:a9:fb:66:e2:b5:
c4:e0:cc:cc:18:3c:06:b7:39:87:7c:ad:9a:6e:f7:
60:e9:aa:fa:c0:2a:93:58:f7:2f:0f:9e:3c:d9:dc:
6f:87:3b:a0:c2:4f:2b:f2:26:4c:9d:93:60:26:f9:
cf:5d:35:79:96:bd:26:68:b6:e1:1b:76:5d:9e:2c:
e3:e7:b7:e5:4b:16:fa:8c:7e:52:57:8c:a4:db:fc:
30:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:67:07:59:E8:25:63:61:F0:97:DA:E0:DD:D9:E5:1C:18:EE:ED:53
X509v3 Authority Key Identifier:
keyid:46:15:3E:8A:C4:6D:B5:CE:57:4B:A7:E3:9E:87:E8:AF:09:6C:1A:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhU-isRttc5XS6fjnoforwlsGok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/0d1172-4bb2-492c-b511-78dc7b2c3e88/1/RhU-isRttc5XS6fjnoforwlsGok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:d0:70:6e:2d:c7:c6:0f:49:cf:ad:85:b9:b8:d7:2e:5a:5d:
6c:be:e3:49:34:b3:1c:4f:24:7b:09:69:b6:20:87:28:0d:6a:
fa:5e:d2:3e:41:0a:17:b8:1d:25:60:fe:ae:68:3e:6b:2e:61:
86:86:13:ba:42:bb:1e:05:ab:93:dd:4b:a4:8c:51:c3:95:ff:
ed:44:76:8d:00:53:a9:1b:e1:a3:08:5a:d2:d9:2c:77:3c:78:
3b:7e:b5:c9:07:4e:f6:ed:8c:ef:73:fd:b4:06:01:21:a0:70:
7b:31:34:98:f6:8f:ab:c8:6d:7b:e4:69:b8:c9:93:7d:16:2e:
32:36:70:b8:73:fa:66:05:05:56:15:77:5e:c5:b3:8f:a7:97:
74:bf:41:61:af:b9:6a:e0:3c:78:bb:5d:28:06:83:f4:54:ac:
60:41:a3:88:83:dd:5a:92:4b:20:c4:3c:4d:28:4c:04:09:c8:
da:82:c1:ce:1a:89:fd:a8:5c:aa:9a:8a:24:1c:28:28:4d:93:
2c:4b:74:2a:6f:2b:58:b0:54:2f:4a:d8:3c:9a:a5:3d:d1:f2:
a9:75:b6:5e:20:93:c6:91:af:5f:17:d3:4b:eb:08:1e:ba:1d:
9a:2e:c9:a4:14:d3:f7:ef:7c:e5:8b:7e:94:2c:d0:9c:cb:fe:
df:51:ff:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:46:49 2025 by rpki-client