Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
File: hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft (raw, json)
Hash identifier: cImP1i/HeOcFtz5VagMU50K0F1hUGfrNucg+y5Rt5Dc=
Subject key identifier: 25:7A:B5:C8:FA:5E:C8:30:2C:DA:10:3D:EB:70:26:E3:CD:AB:29:31
Authority key identifier: 85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
Certificate issuer: /CN=852bc145c5b22394d6feae996bc0bb25254801c6
Certificate serial: 019CAA90001B8440F129C5A889CADDFB8FCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
Manifest number: 0555
Signing time: Sun 01 Mar 2026 18:01:29 +0000
Manifest this update: Sun 01 Mar 2026 18:01:29 +0000
Manifest next update: Mon 02 Mar 2026 18:01:29 +0000
Files and hashes: 1: 0vS9LuHI8LHmYBf-04B_4EqaTyM.roa (hash: 1w3MTNAtMdbpQhZieDMx1aqfKs/uZi4c3hurmf5nWQk=)
2: YqpC5sn3lPh34dXLCKoe6SIqByY.roa (hash: t3wpEBucnLMbpU9d5Q7NM5fRdV7jRAGiRx7mg/CI4SQ=)
3: hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl (hash: ULQD5sZkxLRJrXHXu4EzHQtfk1G/4stcl+90kaqWk9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:90:00:1b:84:40:f1:29:c5:a8:89:ca:dd:fb:8f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852bc145c5b22394d6feae996bc0bb25254801c6
Validity
Not Before: Mar 1 18:01:29 2026 GMT
Not After : Mar 2 18:01:29 2026 GMT
Subject: CN=257ab5c8fa5ec8302cda103deb7026e3cdab2931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4d:5e:c3:a2:76:bf:9b:7f:a2:46:e4:a7:df:
ee:89:fa:90:c9:82:28:82:02:54:00:69:7a:bb:0c:
92:1a:d1:02:7e:3c:85:25:d4:a5:17:d0:10:77:7b:
e4:18:f0:61:a0:b0:48:0e:0e:ea:71:02:4a:d7:5b:
6c:a1:5f:96:2a:e2:ee:23:29:8e:75:00:1a:ec:0b:
44:3e:02:75:25:30:64:3c:84:ec:4f:4c:53:c5:af:
63:0e:ca:36:5c:b6:d1:35:a5:b9:cf:7a:46:c9:7b:
e1:1b:5c:13:a1:3b:6e:2d:b6:99:22:22:65:62:06:
43:c8:97:b9:a4:b2:f8:78:2e:f9:38:23:18:cc:3c:
6a:02:1a:c9:73:fb:c3:40:55:c5:44:cb:51:0a:88:
5d:23:f9:d9:58:8d:f4:88:72:87:37:0a:5d:a0:b0:
2c:83:28:12:2d:2e:12:df:43:e6:57:24:a7:b8:39:
4d:97:6f:d6:bc:94:11:a9:e4:de:9e:80:c7:05:dc:
95:88:c3:50:d3:7e:cd:80:32:ff:4d:d3:56:bd:8a:
6c:8c:67:14:f5:37:3f:f3:2d:d9:95:b3:a5:d1:30:
21:0f:09:ab:c3:1e:44:30:5a:21:34:54:d0:cc:41:
d5:a6:ab:f1:ae:10:ef:4a:0c:6e:c1:84:55:b2:ee:
7d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:7A:B5:C8:FA:5E:C8:30:2C:DA:10:3D:EB:70:26:E3:CD:AB:29:31
X509v3 Authority Key Identifier:
keyid:85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:82:46:2c:2a:08:ca:c9:93:6a:52:2b:97:ba:02:d3:a0:b1:
59:85:72:85:03:82:2d:50:d0:03:61:07:dc:86:07:ee:5e:6b:
ef:bf:ae:b4:6a:52:d3:04:17:a0:dd:1e:e6:69:c5:34:0e:36:
c7:a4:03:1d:9a:53:47:99:7d:43:1a:96:b7:08:f6:1d:25:04:
20:f6:99:70:27:43:22:6e:65:fb:bb:e9:a4:ef:c4:12:56:24:
c1:2d:f5:ab:d1:98:31:db:71:49:7e:c0:39:0f:40:0a:50:62:
10:0d:7b:5b:f3:b4:ec:f3:8c:b8:d1:03:6b:cf:18:64:96:dc:
87:9b:e9:a0:d3:9d:b5:f7:f0:20:51:66:64:63:95:79:12:e2:
21:30:27:8e:60:7e:db:0e:31:55:09:7a:da:a7:29:74:1a:7c:
80:13:63:a3:14:c3:db:84:3c:c6:ed:1e:f9:f2:2e:20:aa:9f:
be:bf:fb:67:51:65:b2:18:57:24:0b:3a:8e:f8:e3:62:6d:d5:
9f:2f:3b:26:c8:84:b1:3c:6d:63:02:e3:7d:a5:a6:ff:e8:3a:
3b:89:09:7e:24:d7:6f:dd:fb:d9:4e:4e:7f:3f:e2:2c:45:ce:
6e:7d:b6:6b:10:af:6e:a1:ba:3c:7d:38:a0:bc:1c:14:06:08:
1f:96:93:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:42:02 2026 by rpki-client