Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
File: hto1bCqGENEdNM24pH0rkFGfvTU.mft (raw, json)
Hash identifier: ejPvlFmi/gUtuh/9zy8oJqmc1wDAOa06DgwdNZjJ0IQ=
Subject key identifier: 4B:AC:6D:F3:5C:1A:5B:3C:DB:A4:11:8F:4F:A3:95:DA:A6:B8:B6:F3
Authority key identifier: 86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
Certificate issuer: /CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Certificate serial: 019A4F62D698C5C8FD9D55562B1262A9BD04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
Manifest number: 1414
Signing time: Tue 04 Nov 2025 15:01:08 +0000
Manifest this update: Tue 04 Nov 2025 15:01:08 +0000
Manifest next update: Wed 05 Nov 2025 15:01:08 +0000
Files and hashes: 1: e2SQSmJ5Uij4VeGzNgyMcf8tHqM.roa (hash: /jn7jwBSYHJhjR+sZRgi9zex0zsrMd1Ejp9Gj9O6Ons=)
2: hto1bCqGENEdNM24pH0rkFGfvTU.crl (hash: D+g4MAlCvVtzK0d+yDAyT6gf7E5HunBBwigJKXEo6ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:d6:98:c5:c8:fd:9d:55:56:2b:12:62:a9:bd:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Validity
Not Before: Nov 4 15:01:08 2025 GMT
Not After : Nov 5 15:01:08 2025 GMT
Subject: CN=4bac6df35c1a5b3cdba4118f4fa395daa6b8b6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:11:0b:29:ff:7f:9e:1e:39:67:6a:ea:b9:df:
1b:57:96:e4:ae:7c:6f:ea:98:ad:6e:39:c3:59:c2:
86:28:f1:90:68:b3:52:a4:cd:41:3f:12:06:a3:75:
74:2b:20:26:36:3a:d5:bf:b7:69:fe:67:4a:9a:ac:
d0:0d:bf:2b:c7:1b:5c:b0:f1:e8:b6:30:12:31:51:
cc:0d:5e:92:16:af:9c:8e:af:6a:fe:e8:98:d3:df:
88:18:6d:1a:eb:63:d3:d2:db:a7:45:bf:a6:29:3b:
2c:13:05:b0:b3:c5:28:e8:db:58:15:c4:6f:ef:7e:
f2:a8:ab:70:80:49:4c:b3:51:0b:17:d8:03:5a:03:
09:b9:f3:1c:02:d5:8d:4b:d4:28:60:86:ab:e4:13:
a0:ae:04:71:9c:ca:5f:24:64:cc:87:2b:c6:f1:e3:
33:4b:7e:4f:00:0e:a6:fc:79:35:84:ac:36:74:ee:
56:6d:18:e4:2e:93:02:7c:a9:08:7d:df:e5:36:09:
ab:fd:7e:dc:87:32:29:a6:9d:c0:26:75:01:72:c8:
1a:01:e1:8f:20:d8:bd:a5:85:b0:1c:e6:7e:f8:01:
22:c6:1d:12:e6:d7:40:05:84:da:e9:65:e7:5f:5a:
ed:75:05:28:d3:77:60:60:a2:47:c3:66:21:b8:27:
a1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AC:6D:F3:5C:1A:5B:3C:DB:A4:11:8F:4F:A3:95:DA:A6:B8:B6:F3
X509v3 Authority Key Identifier:
keyid:86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:91:d2:c0:a1:6f:4e:47:ab:76:31:13:9c:60:6e:04:4c:9e:
75:8a:0d:88:7c:a3:96:13:da:06:7c:36:3b:44:12:72:c7:be:
02:f4:14:28:f6:ec:02:e1:ef:e7:c8:cf:c3:e9:ed:80:70:a0:
ee:a6:2f:87:45:17:cf:98:a1:95:20:2a:6d:74:1e:6d:76:b2:
7a:00:a6:d8:e4:64:a2:62:77:56:84:cb:12:0c:bb:92:68:39:
1f:36:e8:b3:1a:3d:3d:d5:33:b8:e3:18:94:b2:2b:1a:ee:b1:
87:af:b1:8a:3e:12:4a:42:de:f6:f3:a3:be:38:2a:38:0a:1c:
af:97:65:31:1c:1c:d9:ef:06:ff:0c:27:ed:bf:dc:fc:cd:f5:
4d:30:be:b6:80:02:e3:37:f1:e1:06:da:55:4f:86:ce:10:ca:
ab:ad:17:78:c7:51:cd:c7:f0:e4:6f:4e:7d:61:1f:f9:b9:19:
36:d2:8a:84:d7:8a:ef:cd:13:d9:1d:eb:9e:ad:c2:c3:bd:92:
ff:7d:91:75:dc:f6:3e:bb:17:b7:02:da:6e:02:f4:22:d0:62:
40:97:de:c3:f5:dd:35:6b:81:d5:a3:32:e8:0d:5d:32:c2:56:
b3:a2:3f:6a:8c:5a:c8:7e:ef:fb:3c:99:00:e0:2b:31:8a:a3:
ed:d9:98:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:32:45 2025 by rpki-client