Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
File: sszaHFSHy5ONV-phzC1i0xBw21E.mft (raw, json)
Hash identifier: JSrTveHq1je46dqcTYHRl05T68kqDhSfoceMk/JkhY4=
Subject key identifier: AA:2F:26:71:C0:4C:F3:C2:C0:D9:10:D8:CD:EF:FC:E1:E4:E1:63:AC
Authority key identifier: B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
Certificate issuer: /CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Certificate serial: 019849652F14A2DE5CA9EE95C06E7CB499B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
Manifest number: 0C08
Signing time: Sun 27 Jul 2025 01:00:24 +0000
Manifest this update: Sun 27 Jul 2025 01:00:24 +0000
Manifest next update: Mon 28 Jul 2025 01:00:24 +0000
Files and hashes: 1: 3_xmC1ho9_8ZqNCvSg_4Ci-eALc.roa (hash: F7LfywH9mxXY2KxRJjRgggVLiwyV5wwnZqXcnTIZ+/Y=)
2: sszaHFSHy5ONV-phzC1i0xBw21E.crl (hash: bDgmoloRC7YrimJ4MVsZPPONnZ1numV8JQrSYAJ+5Fo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:65:2f:14:a2:de:5c:a9:ee:95:c0:6e:7c:b4:99:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Validity
Not Before: Jul 27 01:00:24 2025 GMT
Not After : Jul 28 01:00:24 2025 GMT
Subject: CN=aa2f2671c04cf3c2c0d910d8cdeffce1e4e163ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:63:c9:c2:01:a5:c0:e1:9d:ce:d8:c0:2d:fe:
06:b0:30:34:57:31:a9:96:be:78:11:fc:ee:50:c8:
bf:8e:2e:39:86:fa:50:1a:e5:45:e5:d0:78:91:42:
81:ab:77:98:0b:37:a9:7b:ac:4a:d9:9e:58:0e:7a:
9c:af:53:c1:ca:57:2d:10:94:f8:e7:26:b6:e4:dd:
21:c8:fc:32:a2:42:f4:09:1d:8d:5b:46:c1:82:43:
2c:2d:cd:56:27:2f:1b:02:d7:5c:a8:7a:17:97:69:
80:9c:a9:38:f9:06:4c:b0:86:06:6b:0c:e6:18:37:
de:33:f7:5b:71:60:4d:d2:87:c2:d1:af:f1:93:f7:
14:77:4c:48:2c:83:c9:8c:84:94:c8:8b:7d:51:16:
5c:e3:54:59:16:ff:1e:d6:d8:b5:42:02:a2:cf:26:
74:42:6a:86:b3:9e:94:ea:e9:0b:64:63:6b:91:18:
24:70:16:74:9d:ac:65:d0:ce:1a:b8:cc:0d:8c:c9:
bb:89:9e:ab:6e:52:a9:d5:ad:5c:eb:57:3d:c2:af:
9b:37:d7:db:d9:d2:f8:06:d4:e0:dc:64:ba:cc:8f:
3e:38:7e:cf:79:eb:da:a1:58:8f:02:f4:05:d3:68:
3d:31:84:6b:18:8b:53:c3:a5:b0:9e:9a:e0:66:f4:
68:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2F:26:71:C0:4C:F3:C2:C0:D9:10:D8:CD:EF:FC:E1:E4:E1:63:AC
X509v3 Authority Key Identifier:
keyid:B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:12:9b:6e:4c:07:94:52:d9:86:4b:2f:52:ef:a1:4f:53:4c:
dd:2a:da:2d:88:7e:aa:f5:a7:28:1f:6a:ad:50:38:a9:59:15:
f7:10:d1:f0:3b:a5:f4:9d:dd:0d:b0:61:a2:ac:11:36:0f:73:
de:60:e0:87:b9:f3:1a:7e:ce:ab:56:63:f6:fb:dd:e1:44:3f:
a4:9c:7c:7c:f7:1b:eb:a5:35:2b:34:96:07:90:f1:ab:0e:e8:
81:79:d1:39:58:9a:68:7e:ea:33:b5:ea:97:4f:9f:af:03:2d:
a7:45:9e:66:a8:a5:02:c9:21:bb:4c:16:6f:03:a7:b8:c7:01:
37:59:ea:51:e4:5a:2b:52:20:ad:63:d9:2d:2f:19:14:6c:2f:
ad:14:68:1e:95:ae:b0:cc:90:e3:de:e2:30:8c:aa:f9:55:9a:
92:18:00:8d:2e:ec:45:15:30:d2:cf:9d:4c:d1:23:bb:b9:de:
5c:05:3a:03:8b:6c:48:43:ff:31:87:64:69:d6:6a:70:57:96:
1d:08:eb:b2:fe:01:f1:d5:df:3e:4a:96:29:0c:d2:78:0b:4b:
ec:cc:46:d9:83:95:a4:0c:a9:92:61:31:3a:fb:87:bc:70:ed:
40:69:f0:34:3b:86:0c:b9:f2:a6:47:4d:0c:e5:43:be:de:53:
75:f5:3a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:45:41 2025 by rpki-client