Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: P5DOUhgFuP2/7TSEzLY3eMc2hwEeslakPpORhOYFU20=
Subject key identifier: E6:42:EC:C5:97:67:76:DA:E0:42:15:73:C5:42:99:75:AF:2A:C7:F7
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 01987DF7FBA63DD8D244B1BF8A3405BE2095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 0141
Signing time: Wed 06 Aug 2025 06:01:00 +0000
Manifest this update: Wed 06 Aug 2025 06:01:00 +0000
Manifest next update: Thu 07 Aug 2025 06:01:00 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: y0/Ay4fagn0UDnfzBrzq4tAVbcn0RV6PRrQBj73jc8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:fb:a6:3d:d8:d2:44:b1:bf:8a:34:05:be:20:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Aug 6 06:01:00 2025 GMT
Not After : Aug 7 06:01:00 2025 GMT
Subject: CN=e642ecc5976776dae0421573c5429975af2ac7f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b0:2e:20:bd:c0:dc:f0:ee:ec:51:9c:c2:a8:
7b:ec:44:36:f4:df:89:e7:56:16:5f:e9:e2:bc:ee:
e1:97:8b:d7:f0:89:ad:54:95:60:f3:43:2d:35:0f:
dc:17:38:04:28:8f:b1:53:73:c5:fc:db:a4:17:8f:
e9:35:49:ef:0b:13:e4:b9:22:4b:fa:b0:06:5d:56:
2e:6f:09:36:76:d3:16:e8:c5:d5:99:a4:42:c6:0c:
ab:fd:10:9d:b8:c0:df:53:a0:f5:bd:e1:37:7e:d5:
f6:ed:17:a5:5f:5c:e7:9b:ee:d0:11:fa:11:0b:9f:
ef:a9:18:d6:3b:07:f4:5b:23:bc:09:b4:96:5f:36:
67:99:5f:8d:75:75:01:f7:22:77:f6:f2:21:b1:a2:
2f:ec:54:db:cb:b6:28:48:80:25:24:3c:89:43:c3:
5f:7b:54:5e:15:a7:70:ec:bd:c1:8b:11:cb:d1:65:
b0:60:3a:95:d0:2b:da:92:97:a8:bb:6e:7c:bb:c4:
66:0f:2c:37:46:6f:5a:28:ed:9e:87:ec:61:3d:6f:
d2:ab:bd:e8:25:1e:be:a4:92:5f:bf:21:3a:4d:12:
23:44:d8:1d:5b:3a:28:ca:9f:34:d8:b1:f3:5e:58:
08:c2:c4:fc:2c:cb:81:8d:1e:11:a4:c9:52:df:36:
75:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:42:EC:C5:97:67:76:DA:E0:42:15:73:C5:42:99:75:AF:2A:C7:F7
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:83:16:ed:e9:f4:6a:9a:b7:5a:2d:64:34:92:fd:c3:a5:3e:
85:e9:c5:4e:c9:1c:2b:da:40:89:dd:4c:3e:03:95:40:c1:31:
a4:e5:c9:82:ca:3f:14:80:66:28:06:ab:18:9c:78:44:80:b3:
59:db:36:62:a8:6b:58:6f:3c:6d:a7:73:7f:67:2d:db:bd:15:
4e:aa:47:45:1e:af:79:26:14:a4:c5:21:a3:30:5c:4a:ec:40:
5d:f0:6f:13:bb:6f:10:33:86:7e:de:a8:d2:3f:23:9a:26:f5:
b3:04:39:4f:cf:e2:f3:95:3b:02:58:45:91:b3:1e:2f:95:38:
b7:da:db:4d:46:5a:88:33:5d:7f:b8:23:54:1e:07:8a:a7:34:
50:5c:89:53:88:a4:d8:9d:0f:07:f5:b6:43:53:98:5f:73:74:
25:3c:e7:bf:81:47:7d:59:d3:84:50:50:4f:c0:2a:53:9e:c7:
2f:80:97:7e:f3:f4:ef:ae:c5:f2:d7:56:21:be:85:e4:e0:e6:
73:51:5b:c1:e0:e2:70:d6:bd:aa:48:29:c7:b2:49:60:b2:1f:
24:ce:07:83:48:cf:c1:16:5b:7a:73:0c:af:86:d2:86:45:a3:
1b:0b:3b:f6:fa:8d:4e:0b:d5:cf:5c:d7:d1:d3:76:80:e0:2e:
3f:bf:f3:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 07:50:56 2025 by rpki-client