Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
File: hXosdK9aRNmq5HoLiUJfpPf8fBk.mft (raw, json)
Hash identifier: c62larFpq9okX9wUmFEjdGde6RCnuLrlvBkicXDlXs0=
Subject key identifier: 48:42:D2:6F:D9:1C:13:E8:E2:61:F8:81:35:DD:59:74:E3:E0:41:78
Authority key identifier: 85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
Certificate issuer: /CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Certificate serial: 019A24780C37B190B9EA0348FC239B018A13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 07:00:38 +0000
Manifest this update: Mon 27 Oct 2025 07:00:38 +0000
Manifest next update: Tue 28 Oct 2025 07:00:38 +0000
Files and hashes: 1: 2ocBNxmBQmUkoRPjhlhWgOYgiMs.roa (hash: vHBT5RZYwMgp/JaFcd7djyz4ta6PJ5W0BzdunzoRb3k=)
2: GLrf-4476lN-mWAGatfWehKzDpo.roa (hash: UBhmVRo+40lzdmL/jOTwvI0uo4yogaRRq+nqy+WHQ4s=)
3: bAf4pYlPQH01VJAbtj0tnC5SXTs.roa (hash: Is6byuQI/ji+q5pWZ94ZQraf9joydkFIunAau5zwEaA=)
4: hXosdK9aRNmq5HoLiUJfpPf8fBk.crl (hash: BSpoH4OxRlO9Qttg36jlUHwheCedfj9s0RY11Zm56nU=)
5: t7q0gRp_Rjm1TKofQQJGVXRxiQ4.roa (hash: 8i0M18hNbssP3r3dcfAr+F0zW7Rf4keL31Nq8c6T/TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:78:0c:37:b1:90:b9:ea:03:48:fc:23:9b:01:8a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19
Validity
Not Before: Oct 27 07:00:38 2025 GMT
Not After : Oct 28 07:00:38 2025 GMT
Subject: CN=4842d26fd91c13e8e261f88135dd5974e3e04178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:25:59:97:ef:7e:78:c8:63:53:2b:48:e8:26:
0d:d9:b1:6b:fe:ac:98:c3:34:04:76:0b:04:b3:2b:
6f:d9:14:a3:88:e6:a3:b1:5f:05:a5:6f:1f:57:e8:
ce:64:5d:1f:9b:49:e0:0e:99:c4:cd:e0:4b:8f:c1:
18:9a:6a:26:d4:71:70:92:19:c5:75:1d:fb:87:70:
15:cc:50:a9:6a:01:77:e1:5a:c8:9f:44:42:46:56:
92:ee:26:46:4b:78:4b:0f:4c:de:a9:20:1f:59:38:
fc:09:8b:25:3e:f3:07:8d:0f:a6:c0:d9:1b:87:26:
3e:f7:8d:69:af:b2:fc:42:2f:4c:06:d6:c9:89:b8:
88:35:f8:31:03:0e:7b:8a:d8:2e:ea:86:9e:9a:5c:
7f:6e:d8:31:b1:e6:c4:66:e6:61:fb:9d:21:b3:9d:
a8:07:0b:b0:c2:46:51:91:23:6d:83:10:c0:77:1d:
8a:d2:eb:e3:88:cb:c7:33:2a:28:75:35:9e:e4:0d:
6c:ef:1d:dc:4e:60:65:7a:89:57:4e:72:d0:6a:72:
39:ad:f0:2b:98:82:99:84:30:25:13:e4:5b:fe:5b:
c3:1d:c6:69:f7:8d:39:f6:12:c6:ec:ad:b9:89:89:
48:af:0b:1f:57:66:45:c9:4e:dd:fb:c2:82:0e:df:
a8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:42:D2:6F:D9:1C:13:E8:E2:61:F8:81:35:DD:59:74:E3:E0:41:78
X509v3 Authority Key Identifier:
keyid:85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:a7:b5:51:3d:97:17:a0:57:9c:2d:41:6f:8e:b4:d1:6f:88:
75:83:6f:0e:82:42:f8:6b:d6:ca:44:c4:ac:53:73:b5:73:c2:
35:ac:78:b7:7d:fd:94:42:02:ef:9d:f2:28:16:00:ff:2a:1a:
82:c7:53:b0:47:48:6f:62:0b:fe:08:99:21:23:a8:d3:1b:e3:
e4:8d:79:ac:f5:9f:6c:a7:df:f6:6f:f4:db:57:17:62:e3:8b:
22:e9:54:5e:cc:89:81:f9:11:9b:d6:e8:1e:ce:48:54:8d:1a:
d9:4a:35:48:6e:1c:18:ff:9d:07:54:8c:ff:fb:14:62:f0:ff:
d2:c4:b6:49:33:7d:58:b3:ff:34:34:69:66:e7:c5:67:7c:9b:
27:fc:39:72:37:fc:5d:97:d0:ed:5f:30:4c:b8:b8:09:69:0a:
e2:87:4a:4d:30:40:c5:40:c4:e1:a8:09:5f:cc:10:ad:34:62:
36:32:fd:8b:4d:7c:fd:fe:b4:5d:78:d7:a0:f1:e5:c4:e3:2a:
d0:3b:af:54:07:27:ad:d6:61:8e:23:38:6d:8b:5c:b2:60:87:
0c:02:72:8b:b7:2f:00:4f:09:65:2a:44:84:2a:84:58:fe:a2:
15:1d:be:01:6c:61:3d:28:3f:d6:8e:e7:4e:a2:d0:19:97:19:
77:eb:d1:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZokeAw3sZC56gNI/CObAYoTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1N2EyYzc0YWY1YTQ0ZDlhYWU0N2EwYjg5NDI1ZmE0Zjdm
YzdjMTkwHhcNMjUxMDI3MDcwMDM4WhcNMjUxMDI4MDcwMDM4WjAzMTEwLwYDVQQD
Eyg0ODQyZDI2ZmQ5MWMxM2U4ZTI2MWY4ODEzNWRkNTk3NGUzZTA0MTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAliVZl+9+eMhjUytI6CYN2bFr/qyY
wzQEdgsEsytv2RSjiOajsV8FpW8fV+jOZF0fm0ngDpnEzeBLj8EYmmom1HFwkhnF
dR37h3AVzFCpagF34VrIn0RCRlaS7iZGS3hLD0zeqSAfWTj8CYslPvMHjQ+mwNkb
hyY+941pr7L8Qi9MBtbJibiINfgxAw57itgu6oaemlx/btgxsebEZuZh+50hs52o
BwuwwkZRkSNtgxDAdx2K0uvjiMvHMyoodTWe5A1s7x3cTmBleolXTnLQanI5rfAr
mIKZhDAlE+Rb/lvDHcZp94059hLG7K25iYlIrwsfV2ZFyU7d+8KCDt+ocQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEhC0m/ZHBPo4mH4gTXdWXTj4EF4MB8GA1UdIwQY
MBaAFIV6LHSvWkTZquR6C4lCX6T3/HwZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8wYTlhMzMtOTlkYy00YjkyLThjZWQt
ODM2YWM5N2MwMWJiLzEvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My8wYTlhMzMtOTlkYy00YjkyLThjZWQtODM2YWM5N2MwMWJi
LzEvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYae1UT2X
F6BXnC1Bb4600W+IdYNvDoJC+GvWykTErFNztXPCNax4t339lEIC753yKBYA/yoa
gsdTsEdIb2IL/giZISOo0xvj5I15rPWfbKff9m/021cXYuOLIulUXsyJgfkRm9bo
Hs5IVI0a2Uo1SG4cGP+dB1SM//sUYvD/0sS2STN9WLP/NDRpZufFZ3ybJ/w5cjf8
XZfQ7V8wTLi4CWkK4odKTTBAxUDE4agJX8wQrTRiNjL9i018/f60XXjXoPHlxOMq
0DuvVAcnrdZhjiM4bYtcsmCHDAJyi7cvAE8JZSpEhCqEWP6iFR2+AWxhPSg/1o7n
TqLQGZcZd+vR1Q==
-----END CERTIFICATE-----
Generated at Mon Oct 27 12:42:42 2025 by rpki-client