Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: 9QAX8yrRVRGFNo3Yx0fppy0CdGZ/vl5Ii4HZg10WOLI=
Subject key identifier: 2C:E7:51:EC:57:45:B8:8E:6C:6F:CA:3E:49:32:8A:D2:B5:EA:87:8A
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 01976DAC160C9EED82FA936553DA35FA8C4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: B4
Signing time: Sat 14 Jun 2025 09:01:23 +0000
Manifest this update: Sat 14 Jun 2025 09:01:23 +0000
Manifest next update: Sun 15 Jun 2025 09:01:23 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: xb0uZZyvX2a3oDwtGvu6ZJWa5mKmIpEGsyj8ORWkyn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 09:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ac:16:0c:9e:ed:82:fa:93:65:53:da:35:fa:8c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Jun 14 09:01:23 2025 GMT
Not After : Jun 15 09:01:23 2025 GMT
Subject: CN=2ce751ec5745b88e6c6fca3e49328ad2b5ea878a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a3:3a:fd:6c:cb:86:4b:f9:5c:3a:f8:22:e0:
9a:8d:76:62:08:c7:ca:7f:bb:87:bd:00:f0:30:91:
7e:db:23:1e:b0:77:87:29:19:38:4b:37:e0:c9:32:
b2:8a:52:e0:88:22:c2:46:9c:17:94:58:52:13:b4:
df:da:2a:6c:96:09:f0:ae:2f:1e:1b:71:44:82:7a:
09:23:0d:07:33:1e:2c:2b:9b:f1:b5:6d:95:69:cc:
5e:14:61:c7:90:73:3e:b1:b6:40:8d:a3:bc:41:b9:
5b:48:0f:a9:75:81:02:67:59:e9:af:eb:e8:36:fb:
dc:ef:cb:e5:bc:3c:8e:e7:de:8d:e2:f3:36:9b:56:
68:dd:4c:48:25:36:43:2c:90:74:04:b1:67:9a:6f:
23:e0:23:6f:94:04:75:d4:dd:2c:2a:cf:8d:c4:79:
b1:b2:e6:f8:14:d8:0b:d7:cb:14:1a:27:28:b4:a3:
78:57:76:de:36:98:18:30:80:59:8f:75:95:bd:9c:
19:ca:90:d8:8c:82:91:b8:6b:03:e5:70:30:b2:4a:
07:46:ee:7c:a9:dd:a8:20:25:d7:c3:57:83:67:52:
85:61:c6:f8:84:91:f6:b9:bc:1b:3d:e2:cf:b7:e2:
b2:e1:26:e5:74:22:25:66:2f:63:18:44:40:bf:a6:
3f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E7:51:EC:57:45:B8:8E:6C:6F:CA:3E:49:32:8A:D2:B5:EA:87:8A
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:f7:dd:e0:2b:a2:f3:5e:4b:da:47:df:fd:35:62:2b:f1:49:
50:71:bc:a6:1f:90:6a:d9:e2:ce:86:59:14:5d:12:f3:0a:42:
1a:55:64:b0:d8:bc:f9:a3:e7:b6:8d:5e:6e:91:76:05:30:bb:
67:a7:04:a9:c5:55:f9:8c:01:4d:24:81:ff:27:1a:f3:0a:5c:
27:b8:b6:f3:fe:66:8e:e2:a1:f9:2c:d4:fa:9e:2c:ba:ae:14:
5b:d5:42:2d:df:07:b2:0c:b8:36:bc:19:3e:68:78:3a:a1:8d:
37:cf:dc:09:14:01:f6:9c:b3:f2:9f:0b:60:62:23:7c:d2:18:
0d:14:b0:53:38:0c:31:24:67:93:eb:6b:29:fe:b6:9e:12:f0:
22:a9:c1:d3:29:3b:ce:05:33:4d:f3:79:ad:24:06:ac:bd:74:
4a:e5:ab:50:61:9f:10:15:fe:e9:e8:0b:bf:28:32:89:c4:c7:
00:c8:21:37:d9:56:f4:88:72:cc:8d:76:dd:7d:41:6f:a4:95:
78:fe:44:24:f4:9b:d3:f1:5b:5c:d8:c0:51:f8:6a:46:a9:c4:
b2:9b:63:6f:96:cb:cc:be:1c:8e:82:11:0b:97:60:e6:db:fc:
a6:8f:a6:ab:4e:92:55:f0:27:36:fe:9e:1a:59:36:65:58:07:
5c:a1:fa:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:30:09 2025 by rpki-client