Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: RVLZj2nngYgmOqoj+rTZq+C8/cN33ajtdvheFOk38IU=
Subject key identifier: CF:1B:64:04:C7:3D:B0:0C:F9:30:C8:60:49:ED:84:88:3E:12:B6:13
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 019A5150D7B968026DB88B6BAA407F691927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 0233
Signing time: Wed 05 Nov 2025 00:00:43 +0000
Manifest this update: Wed 05 Nov 2025 00:00:43 +0000
Manifest next update: Thu 06 Nov 2025 00:00:43 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: HQsz/8c9GpHRdilolhXkWlXg8jSadkLqaigjflW2MXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:d7:b9:68:02:6d:b8:8b:6b:aa:40:7f:69:19:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Nov 5 00:00:43 2025 GMT
Not After : Nov 6 00:00:43 2025 GMT
Subject: CN=cf1b6404c73db00cf930c86049ed84883e12b613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:40:20:c1:80:c0:c8:6f:65:fb:e8:82:ab:d4:
5f:fb:bc:0a:74:65:9b:d7:a8:ca:9c:08:d6:9f:da:
b0:eb:87:83:81:65:14:92:ab:e8:99:e7:38:41:90:
61:12:e0:19:6c:e5:63:e9:fe:c8:51:45:77:77:78:
87:24:b2:96:42:76:92:ea:ac:6d:67:b9:f6:22:4b:
e8:7b:26:dd:99:92:bb:5d:7a:a3:ac:4f:be:d0:58:
57:36:a8:6f:51:f7:bf:35:f0:52:42:5c:d1:6d:60:
9d:86:91:a8:76:6f:56:11:31:a6:c5:d2:52:3c:c0:
92:4b:21:51:7f:10:eb:d8:7a:71:85:93:b7:02:ce:
b0:ae:66:07:17:65:6b:60:6b:98:2c:99:5a:83:1a:
47:cf:ea:9c:29:24:35:cc:04:c7:77:69:13:57:6e:
09:21:3b:15:83:4f:8f:b3:d9:7e:cc:ba:72:b2:3e:
8b:34:d6:0d:8d:34:7b:2f:5e:68:e4:8b:d1:ae:3e:
22:f0:53:56:e9:ae:29:0d:82:1e:4e:3e:06:ee:be:
97:3b:9a:7a:2a:b3:ee:67:71:8e:17:ff:9c:37:a7:
73:2d:0f:4d:2b:b7:c2:17:c0:8c:30:3c:5a:6d:dd:
5a:db:c9:5b:cd:8f:19:28:6d:69:06:dc:c9:68:a8:
1b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:1B:64:04:C7:3D:B0:0C:F9:30:C8:60:49:ED:84:88:3E:12:B6:13
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:c9:83:86:0c:73:aa:44:82:81:92:7c:c8:34:06:2b:2e:7c:
37:ca:87:8b:c6:57:5c:c3:d5:f2:67:e1:a1:f3:e6:75:69:92:
75:6e:28:56:96:c8:dd:a3:9e:3d:04:e9:09:fd:34:dc:25:b5:
39:b0:54:5a:59:24:4e:b8:8c:06:87:83:dd:ec:4c:cc:80:75:
c5:8d:29:17:ac:b3:cd:27:33:c6:02:36:65:ef:a2:27:d2:2d:
6d:f5:ea:f2:46:46:b9:46:02:9e:d9:d2:44:84:f6:a1:a5:07:
4d:61:a9:07:69:fe:ca:7d:4c:bc:08:ab:db:bc:27:41:cb:c4:
6b:f1:0c:8c:f4:8d:2c:7e:b5:10:f1:f5:c5:55:68:f2:53:43:
e1:07:25:d2:24:cb:ae:3e:40:c2:4c:75:74:08:4e:2f:f2:90:
12:9c:63:e1:45:e8:96:4a:67:3e:b7:a8:86:38:d9:bf:ae:9c:
bc:7e:95:e2:73:a6:6d:2e:47:11:2e:33:43:d1:36:33:67:b4:
eb:35:2a:57:55:77:d5:c2:10:4f:87:2f:04:4b:67:0a:87:86:
05:37:f5:39:56:e0:b9:1b:69:b5:3a:d7:28:f7:20:96:25:89:
31:a5:ce:0d:63:41:8f:e2:36:82:f8:9f:83:83:d7:e2:ff:43:
3d:b2:24:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRUNe5aAJtuItrqkB/aRknMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ODQ2MWUwNjBmZGY0OGNkNDFkMzNhZDkyNzFjODA3ZDQy
NGViNDIwHhcNMjUxMTA1MDAwMDQzWhcNMjUxMTA2MDAwMDQzWjAzMTEwLwYDVQQD
EyhjZjFiNjQwNGM3M2RiMDBjZjkzMGM4NjA0OWVkODQ4ODNlMTJiNjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUAgwYDAyG9l++iCq9Rf+7wKdGWb
16jKnAjWn9qw64eDgWUUkqvomec4QZBhEuAZbOVj6f7IUUV3d3iHJLKWQnaS6qxt
Z7n2IkvoeybdmZK7XXqjrE++0FhXNqhvUfe/NfBSQlzRbWCdhpGodm9WETGmxdJS
PMCSSyFRfxDr2HpxhZO3As6wrmYHF2VrYGuYLJlagxpHz+qcKSQ1zATHd2kTV24J
ITsVg0+Ps9l+zLpysj6LNNYNjTR7L15o5IvRrj4i8FNW6a4pDYIeTj4G7r6XO5p6
KrPuZ3GOF/+cN6dzLQ9NK7fCF8CMMDxabd1a28lbzY8ZKG1pBtzJaKgb0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM8bZATHPbAM+TDIYEnthIg+ErYTMB8GA1UdIwQY
MBaAFIaEYeBg/fSM1B0zrZJxyAfUJOtCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYt
NTlhYjk2YmMzNWM2LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYtNTlhYjk2YmMzNWM2
LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfsmDhgxz
qkSCgZJ8yDQGKy58N8qHi8ZXXMPV8mfhofPmdWmSdW4oVpbI3aOePQTpCf003CW1
ObBUWlkkTriMBoeD3exMzIB1xY0pF6yzzSczxgI2Ze+iJ9ItbfXq8kZGuUYCntnS
RIT2oaUHTWGpB2n+yn1MvAir27wnQcvEa/EMjPSNLH61EPH1xVVo8lND4Qcl0iTL
rj5Awkx1dAhOL/KQEpxj4UXolkpnPreohjjZv66cvH6V4nOmbS5HES4zQ9E2M2e0
6zUqV1V31cIQT4cvBEtnCoeGBTf1OVbguRtptTrXKPcgliWJMaXODWNBj+I2gvif
g4PX4v9DPbIkZg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 07:50:59 2025 by rpki-client