Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
File: hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft (raw, json)
Hash identifier: gLyPG/2OpBXLKFDVDkZ8ay8LuuHgwslzJkWFGOt8Ppo=
Subject key identifier: D6:61:84:58:E4:73:B2:93:83:B7:4F:72:6B:50:3C:CB:CA:D9:A4:2B
Authority key identifier: 85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
Certificate issuer: /CN=852bc145c5b22394d6feae996bc0bb25254801c6
Certificate serial: 019A4EF536F3A4BDAED6841C9D6E99DC8A5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
Manifest number: 041C
Signing time: Tue 04 Nov 2025 13:01:24 +0000
Manifest this update: Tue 04 Nov 2025 13:01:24 +0000
Manifest next update: Wed 05 Nov 2025 13:01:24 +0000
Files and hashes: 1: UUl9tjMfoZ7A5klfeBDKB274xTs.roa (hash: SBvHQQieYmwuldne0ESh4KLqZuA1XSHveZCrpCqrHvQ=)
2: hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl (hash: b2fLPnPUaDifJgdw46BJQXu6FZYytQNhIL+nwvdR8Wo=)
3: k3kU5aAomwikuRNdsT68Tqjcik4.roa (hash: wCPtZXM9gkCUtgXFEirTaWeSRaiZvXJy0sUEtKPb0ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:36:f3:a4:bd:ae:d6:84:1c:9d:6e:99:dc:8a:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852bc145c5b22394d6feae996bc0bb25254801c6
Validity
Not Before: Nov 4 13:01:24 2025 GMT
Not After : Nov 5 13:01:24 2025 GMT
Subject: CN=d6618458e473b29383b74f726b503ccbcad9a42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:57:96:eb:6a:44:07:4d:e9:68:7a:ff:83:a7:
f1:29:31:29:d7:80:9c:ef:77:9a:8f:23:b0:42:fd:
75:72:1d:47:13:e1:c2:1a:b4:92:63:2e:ae:a8:88:
d1:48:67:45:58:aa:b8:ab:3c:4c:90:4e:a0:fa:9f:
b9:00:e0:6e:93:39:a0:11:0d:8f:bb:a4:16:f9:39:
15:25:e1:b1:1f:6a:82:3a:c4:f5:d7:4a:ff:4c:9d:
e6:93:78:ba:ad:a8:7d:f8:5c:71:67:fc:83:96:5e:
9f:55:6f:4f:3b:be:87:53:30:6d:67:d9:cb:76:36:
e8:df:19:ee:62:c3:82:c0:4a:10:5f:c6:1a:cb:1e:
bc:e0:18:32:b0:29:f6:d7:86:d3:26:67:c8:5a:b3:
52:0f:ee:05:93:c3:51:1c:9a:a0:11:60:c2:e7:81:
15:ac:cc:4a:a9:36:79:bd:5a:c2:41:21:0b:70:56:
76:31:4f:6a:b0:93:f5:23:a3:5f:3d:0f:dc:54:3e:
c5:0c:e3:5e:e6:9a:dc:a2:fb:e9:aa:e0:32:c8:03:
1e:4a:f8:05:61:01:85:63:d5:f8:ce:43:c4:3c:0e:
3f:27:75:ef:f5:f4:ab:76:60:23:53:3b:bc:2f:43:
df:c4:d4:0c:37:f8:19:93:0c:d0:1f:d6:e3:89:67:
33:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:61:84:58:E4:73:B2:93:83:B7:4F:72:6B:50:3C:CB:CA:D9:A4:2B
X509v3 Authority Key Identifier:
keyid:85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:d7:40:0c:77:99:23:c9:de:b2:b8:d9:af:19:ac:6b:4a:01:
fb:4b:b1:89:ce:2c:80:ed:b2:26:55:fe:98:7a:ee:db:46:34:
fd:1f:a9:55:fe:be:30:41:87:c8:58:10:12:ca:82:fa:8a:0d:
64:ee:df:6a:6c:78:39:ac:f1:c1:80:65:b4:60:ef:92:85:af:
dc:45:ff:05:9c:f5:ab:7e:94:62:24:51:15:d4:99:f2:35:14:
07:e7:a9:a3:8f:17:ba:80:29:f6:0f:01:42:97:62:cb:e1:d1:
85:bc:4e:2d:a3:f6:b7:36:4c:eb:cc:3b:83:2a:47:35:03:8d:
cd:8f:88:65:df:dd:9b:7c:52:54:e9:71:7e:42:16:c7:07:d4:
ab:85:16:c2:73:2a:af:98:37:a6:8e:db:08:01:1a:0e:ab:f2:
14:32:10:65:de:23:11:fd:00:cf:02:5e:c1:04:9f:f6:c0:09:
ed:94:00:a0:a2:53:d7:ea:72:93:ca:59:04:9b:16:3d:2b:f2:
b7:9d:52:e9:5d:fd:8f:be:25:8d:28:7a:9f:35:74:ff:3c:5f:
ec:97:34:31:17:08:30:0a:22:10:7f:23:57:32:28:91:34:d0:
a6:03:97:39:d0:13:eb:cc:1d:c5:4a:b8:1a:41:f5:60:c1:10:
81:d9:a2:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9TbzpL2u1oQcnW6Z3IpbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MmJjMTQ1YzViMjIzOTRkNmZlYWU5OTZiYzBiYjI1MjU0
ODAxYzYwHhcNMjUxMTA0MTMwMTI0WhcNMjUxMTA1MTMwMTI0WjAzMTEwLwYDVQQD
EyhkNjYxODQ1OGU0NzNiMjkzODNiNzRmNzI2YjUwM2NjYmNhZDlhNDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3leW62pEB03paHr/g6fxKTEp14Cc
73eajyOwQv11ch1HE+HCGrSSYy6uqIjRSGdFWKq4qzxMkE6g+p+5AOBukzmgEQ2P
u6QW+TkVJeGxH2qCOsT110r/TJ3mk3i6rah9+FxxZ/yDll6fVW9PO76HUzBtZ9nL
djbo3xnuYsOCwEoQX8Yayx684BgysCn214bTJmfIWrNSD+4Fk8NRHJqgEWDC54EV
rMxKqTZ5vVrCQSELcFZ2MU9qsJP1I6NfPQ/cVD7FDONe5prcovvpquAyyAMeSvgF
YQGFY9X4zkPEPA4/J3Xv9fSrdmAjUzu8L0PfxNQMN/gZkwzQH9bjiWczaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNZhhFjkc7KTg7dPcmtQPMvK2aQrMB8GA1UdIwQY
MBaAFIUrwUXFsiOU1v6umWvAuyUlSAHGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFN2QlJjV3lJNVRXX3E2WmE4QzdKU1ZJQWNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jYTRmZjUtNDhhOC00ZWNjLWJhNzMt
OGQwNzEwZjNkMjc2LzEvaFN2QlJjV3lJNVRXX3E2WmE4QzdKU1ZJQWNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9jYTRmZjUtNDhhOC00ZWNjLWJhNzMtOGQwNzEwZjNkMjc2
LzEvaFN2QlJjV3lJNVRXX3E2WmE4QzdKU1ZJQWNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiNdADHeZ
I8nesrjZrxmsa0oB+0uxic4sgO2yJlX+mHru20Y0/R+pVf6+MEGHyFgQEsqC+ooN
ZO7famx4OazxwYBltGDvkoWv3EX/BZz1q36UYiRRFdSZ8jUUB+epo48XuoAp9g8B
Qpdiy+HRhbxOLaP2tzZM68w7gypHNQONzY+IZd/dm3xSVOlxfkIWxwfUq4UWwnMq
r5g3po7bCAEaDqvyFDIQZd4jEf0AzwJewQSf9sAJ7ZQAoKJT1+pyk8pZBJsWPSvy
t51S6V39j74ljSh6nzV0/zxf7Jc0MRcIMAoiEH8jVzIokTTQpgOXOdAT68wdxUq4
GkH1YMEQgdmiWQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 18:19:02 2025 by rpki-client