Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
File: sszaHFSHy5ONV-phzC1i0xBw21E.mft (raw, json)
Hash identifier: 5wraZFth9UPeQc7h+qzgoYyJgYjfHd5Mis/roG0hrQc=
Subject key identifier: A2:DA:83:5E:3F:F8:2A:1B:AF:47:FC:40:DE:4D:6A:3E:72:24:D7:83
Authority key identifier: B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
Certificate issuer: /CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Certificate serial: 019E7E56764F7626748E734F5E8EC937B29F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
Manifest number: 0F3F
Signing time: Sun 31 May 2026 14:00:55 +0000
Manifest this update: Sun 31 May 2026 14:00:55 +0000
Manifest next update: Mon 01 Jun 2026 14:00:55 +0000
Files and hashes: 1: 5WXSL9wWB5JNwpdm1UP4ejoSsRw.roa (hash: 2CKZu3jOCHO6Fw6CJElWpqf72yG47yIKnLWAvdNr280=)
2: sszaHFSHy5ONV-phzC1i0xBw21E.crl (hash: 1fguLqDof1OkGp3KPJHnZND/7Wx45qOlg/HFj9UhFJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 11:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7e:56:76:4f:76:26:74:8e:73:4f:5e:8e:c9:37:b2:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Validity
Not Before: May 31 14:00:55 2026 GMT
Not After : Jun 1 14:00:55 2026 GMT
Subject: CN=a2da835e3ff82a1baf47fc40de4d6a3e7224d783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a0:e3:48:e4:8c:5a:34:13:30:64:e7:50:c6:
d7:3a:ed:3d:c0:ee:d3:6e:e8:dd:92:9f:ac:96:da:
ab:a8:07:b3:92:b4:ba:8a:61:a8:af:29:4c:40:f7:
42:4a:74:29:96:b0:5b:85:6e:19:70:bf:48:04:5f:
f4:11:6f:87:29:4b:93:14:53:a3:5d:53:e4:2c:cb:
01:57:9a:42:3f:47:10:d7:47:ec:c2:fd:e0:9f:dc:
03:e1:38:84:6c:b8:87:4c:42:4e:fc:1c:61:3b:62:
1c:41:48:2e:10:5c:09:5c:f9:aa:07:1f:6a:90:73:
4c:31:d3:09:d7:28:44:9d:bf:89:1d:c9:04:8f:a8:
0a:89:0f:3b:61:c9:18:8a:f1:05:ab:62:0c:a9:7e:
ef:70:32:54:49:56:e4:15:00:04:44:1f:8c:41:9e:
fe:63:4e:9f:cc:35:7f:a2:71:a4:25:75:b9:7e:5e:
74:5d:05:59:c6:c0:52:7c:61:2b:35:cc:fa:ee:6c:
29:68:47:56:e3:64:c2:fa:d8:71:5b:35:84:f2:d6:
2d:f1:2a:89:e3:84:30:e9:1a:43:a3:21:09:13:dd:
95:14:a2:c0:a5:27:54:5f:78:ab:5c:ba:31:81:4a:
90:c3:11:27:78:80:18:4c:5e:7d:f7:90:4c:23:12:
98:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DA:83:5E:3F:F8:2A:1B:AF:47:FC:40:DE:4D:6A:3E:72:24:D7:83
X509v3 Authority Key Identifier:
keyid:B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:dc:c6:6f:af:ed:65:ce:e4:27:02:82:e2:af:67:51:03:d2:
20:69:5e:2f:8c:8c:da:d6:0c:9e:e3:45:b8:e0:a7:db:a4:7d:
a9:07:45:56:f4:cc:f1:9d:b9:8b:99:f5:0c:f6:84:f2:26:6a:
02:64:66:35:31:75:ce:c4:72:8b:db:cc:ac:d3:76:5c:fe:de:
33:4e:dd:08:c6:9f:65:b9:07:d4:09:91:84:e9:d3:91:9f:fe:
a0:2d:da:df:a0:cd:79:4a:2f:ad:9a:94:bf:24:ca:3a:f4:47:
b8:ee:f0:4e:53:a6:71:3a:6b:f9:d0:4d:ef:49:77:b9:d8:91:
0b:c3:a1:04:16:45:8a:00:95:30:40:27:a1:9f:83:ab:44:6e:
b6:eb:e8:f3:97:76:15:7c:b7:5f:24:9b:79:dd:d6:eb:28:92:
9c:97:39:02:98:21:d8:ba:07:e4:ca:33:f8:d7:a6:4f:c6:94:
a0:20:4f:66:23:3e:0d:a2:d0:d0:a7:e4:a4:3c:73:21:eb:c0:
16:98:b6:b0:97:ff:e9:4a:bc:5d:a5:22:89:7d:db:e1:c8:f9:
43:82:d5:52:b7:c6:d0:12:ac:94:98:66:f1:61:c1:22:b6:ed:
44:65:d8:1f:b7:18:bf:d8:2d:07:ba:66:61:66:b1:b9:0a:2d:
68:39:d0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 31 18:49:55 2026 by rpki-client