Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
File: hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft (raw, json)
Hash identifier: 5+7fYIhQvVvcOtVu+snfwc8A1rdXj/TLE7aG4KtofZc=
Subject key identifier: 91:9A:53:9E:68:F8:80:71:FC:8C:3C:97:F5:F7:04:77:F0:2D:BC:F6
Authority key identifier: 85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
Certificate issuer: /CN=852bc145c5b22394d6feae996bc0bb25254801c6
Certificate serial: 01976D3DD32CCBBC2E7353E456DD6369C496
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
Manifest number: 029E
Signing time: Sat 14 Jun 2025 07:00:57 +0000
Manifest this update: Sat 14 Jun 2025 07:00:57 +0000
Manifest next update: Sun 15 Jun 2025 07:00:57 +0000
Files and hashes: 1: UUl9tjMfoZ7A5klfeBDKB274xTs.roa (hash: SBvHQQieYmwuldne0ESh4KLqZuA1XSHveZCrpCqrHvQ=)
2: hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl (hash: KvIWs9SwJk2ck6Cz5kJ1nUeE4ILVvGA15HbkRCgIQ4o=)
3: k3kU5aAomwikuRNdsT68Tqjcik4.roa (hash: wCPtZXM9gkCUtgXFEirTaWeSRaiZvXJy0sUEtKPb0ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:d3:2c:cb:bc:2e:73:53:e4:56:dd:63:69:c4:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852bc145c5b22394d6feae996bc0bb25254801c6
Validity
Not Before: Jun 14 07:00:57 2025 GMT
Not After : Jun 15 07:00:57 2025 GMT
Subject: CN=919a539e68f88071fc8c3c97f5f70477f02dbcf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:38:97:81:f8:7b:50:6b:d7:c4:ae:70:be:18:
80:c6:8a:8f:b7:61:2e:77:a2:49:58:c1:a3:5b:a2:
2d:3a:7e:f5:bf:3a:ed:1a:37:83:5a:49:ea:0f:18:
46:09:a8:f0:ba:29:03:ec:33:14:58:d1:9b:00:94:
e8:75:f7:9d:46:c9:83:a0:44:31:0a:fa:1d:4d:03:
3c:60:b3:f1:73:e1:68:9c:66:0f:84:88:c4:04:0a:
99:47:c8:aa:cd:16:1c:47:8b:1c:91:fe:55:dc:01:
33:a0:ce:ba:fc:21:7d:a1:a2:1d:c7:b1:fe:8f:82:
d2:46:27:05:9e:d6:72:af:74:63:25:10:93:86:4e:
e0:bd:dc:1d:f3:17:d3:2d:ee:e6:c2:07:ff:1f:c6:
8a:49:16:35:06:a2:81:33:78:fd:6a:22:ef:e1:f7:
fa:55:e4:67:fd:90:e1:50:af:1a:58:72:11:63:ee:
4b:99:d6:8b:d1:ea:42:58:55:37:2d:f4:6b:65:55:
88:a3:f4:1e:00:ac:d4:f9:de:27:6e:43:c3:1e:9b:
72:34:9d:21:ad:db:89:54:c4:e5:d3:95:6b:7e:84:
98:d1:b5:a7:cd:28:e7:74:cb:2c:35:81:e1:e0:54:
fa:a2:6b:3b:81:3d:42:63:68:3b:13:b9:b7:14:a3:
84:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9A:53:9E:68:F8:80:71:FC:8C:3C:97:F5:F7:04:77:F0:2D:BC:F6
X509v3 Authority Key Identifier:
keyid:85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:d1:5a:2b:7d:89:50:37:dc:b4:40:5a:7e:0b:2c:88:af:3c:
98:be:2a:90:bf:0a:7c:e4:c6:20:19:2d:ea:c1:d9:19:f8:f8:
9e:95:81:0b:e0:9b:52:17:ab:db:78:a7:b4:fb:b4:2d:e4:61:
d4:6a:b8:da:76:87:ff:17:a6:bb:6c:7e:68:88:a6:ef:bc:9d:
13:e8:08:54:14:c3:ce:93:a6:51:76:b1:3c:fa:9b:04:ab:ea:
eb:c2:c8:f5:d3:45:6c:92:b3:37:53:56:87:78:82:cc:b8:c7:
03:7e:68:bf:a5:eb:98:24:d5:ca:e2:2d:9f:82:5c:26:d8:28:
2c:c0:dc:5a:65:31:71:d3:7e:ec:46:8a:0c:08:1d:4d:5c:61:
d5:51:94:9c:3b:6d:31:28:87:b5:8c:75:da:3a:20:5f:7d:7b:
3c:81:30:08:bf:70:bd:5a:ce:a2:3f:5f:d6:9e:78:3a:ed:cf:
2d:e7:e9:67:63:4c:05:02:b9:c8:85:2b:1c:6a:64:42:f8:9e:
e7:7d:6b:3b:7d:e4:f7:c9:64:5e:ec:4f:bc:b7:15:63:52:26:
04:8a:57:3c:e0:ea:9e:3c:0b:a7:be:bb:ec:47:b4:89:e7:ea:
fd:9f:12:9e:a7:0f:f9:b3:97:1f:63:5b:66:7f:e4:d1:5b:a8:
2d:a8:f0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:13:30 2025 by rpki-client