
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
File: hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft (raw, json)
Hash identifier: AZQLz/OGnUmvw/j5ZnZEtyZrsfkiWLGShOnd5bS4Upo=
Subject key identifier: 8E:85:5F:F8:D6:99:8C:99:04:A7:CD:35:E1:7B:C2:71:35:C4:42:1A
Authority key identifier: 85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
Certificate issuer: /CN=852bc145c5b22394d6feae996bc0bb25254801c6
Certificate serial: 01987F791202A45FB07868CC8463AB5FAA8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
Manifest number: 032C
Signing time: Wed 06 Aug 2025 13:01:37 +0000
Manifest this update: Wed 06 Aug 2025 13:01:37 +0000
Manifest next update: Thu 07 Aug 2025 13:01:37 +0000
Files and hashes: 1: UUl9tjMfoZ7A5klfeBDKB274xTs.roa (hash: SBvHQQieYmwuldne0ESh4KLqZuA1XSHveZCrpCqrHvQ=)
2: hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl (hash: VVKfyCDKnShOX29gRzHvCh5RTlxM92029U+icK4sZGU=)
3: k3kU5aAomwikuRNdsT68Tqjcik4.roa (hash: wCPtZXM9gkCUtgXFEirTaWeSRaiZvXJy0sUEtKPb0ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:79:12:02:a4:5f:b0:78:68:cc:84:63:ab:5f:aa:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852bc145c5b22394d6feae996bc0bb25254801c6
Validity
Not Before: Aug 6 13:01:37 2025 GMT
Not After : Aug 7 13:01:37 2025 GMT
Subject: CN=8e855ff8d6998c9904a7cd35e17bc27135c4421a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:59:cf:ac:8f:94:a5:98:11:11:3b:39:c1:d2:
9a:1f:ad:ec:30:65:39:5c:1b:3c:57:77:12:84:4d:
81:81:64:4f:fa:ea:ff:be:9d:d5:fd:84:7c:2b:98:
41:44:cd:4d:d1:62:8e:db:90:38:fe:66:d4:95:7b:
70:e2:3d:32:01:ae:1d:48:fd:d8:73:cb:82:02:b7:
68:73:df:83:55:5f:15:43:95:f5:da:15:25:93:27:
6c:13:e2:20:c6:15:4f:ff:2c:00:9c:1e:55:32:fe:
21:28:52:d8:84:36:bb:c0:78:d1:3f:06:02:96:52:
3d:8d:eb:0f:9e:7f:d1:64:c7:b0:30:a3:8c:7f:d7:
c3:7b:f5:29:f7:f3:a7:41:05:66:7b:bc:be:59:58:
be:36:29:ce:6c:dc:80:c6:85:7b:9a:14:88:1b:cf:
08:68:9d:ee:f2:d9:4b:93:0e:28:65:27:af:32:c6:
11:54:89:fd:2e:a4:3e:24:6c:00:6f:9a:99:f4:fb:
fa:3f:52:bd:ae:7c:37:27:25:c1:be:85:90:cf:b5:
d1:bf:18:d7:9a:8b:34:83:7e:eb:ee:a3:74:6d:9d:
96:1e:54:9b:2e:f7:e2:f4:9b:79:cc:05:85:1f:d1:
32:72:2a:e8:7a:58:41:1d:e4:10:62:0c:60:76:d8:
64:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:85:5F:F8:D6:99:8C:99:04:A7:CD:35:E1:7B:C2:71:35:C4:42:1A
X509v3 Authority Key Identifier:
keyid:85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:c1:51:ca:03:a1:e9:ec:22:07:a9:17:91:eb:02:bc:25:cc:
c2:4a:3d:03:2a:70:b8:ee:c0:e1:cb:fb:f2:0a:2f:f1:8f:58:
2f:ed:5c:5e:5b:35:50:51:a2:85:99:fc:f0:72:51:c1:be:bc:
48:9e:48:77:d8:70:c9:e5:18:cc:53:33:c5:75:23:b4:16:1c:
4b:8d:32:9d:76:40:16:78:04:44:c9:b8:55:c3:a1:0e:0e:76:
45:1a:f2:e2:6a:0b:ca:aa:4a:00:43:f5:7c:ff:ff:6f:e8:62:
ad:d0:86:72:af:b5:ea:41:24:91:2f:77:00:d5:33:3f:8e:94:
e0:09:2a:91:62:0b:3f:19:10:ff:b7:3c:58:08:54:b5:b7:4a:
0b:f7:87:c6:65:f5:b8:9d:b3:20:99:96:f8:c5:56:90:40:7c:
ef:ec:92:23:7e:20:f8:33:77:fb:5d:29:46:c4:54:b4:d8:ec:
b1:45:f5:f4:2e:96:c3:c4:6d:03:15:4c:de:e5:e2:34:66:c4:
b8:72:de:64:20:ec:5a:fb:f4:32:92:0d:10:cd:46:5d:0d:e4:
a1:94:b9:bb:de:db:aa:31:b1:e4:64:15:52:fa:9f:ad:ad:e0:
db:89:0f:56:9d:36:44:c6:73:86:77:fb:63:9c:09:27:3d:65:
05:64:58:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 19:37:22 2025 by rpki-client