Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
File: sszaHFSHy5ONV-phzC1i0xBw21E.mft (raw, json)
Hash identifier: x0ppv3d0VUuFUJPqGGj1QZEbH0LT6t29oTfo0ntu1XI=
Subject key identifier: CD:7D:E5:5E:4F:C2:52:75:C2:40:8E:76:68:8D:4A:C3:09:70:1D:87
Authority key identifier: B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
Certificate issuer: /CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Certificate serial: 01995009916D36E2B76F6CDB40AB2B5BDA57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
Manifest number: 0C90
Signing time: Tue 16 Sep 2025 01:00:28 +0000
Manifest this update: Tue 16 Sep 2025 01:00:28 +0000
Manifest next update: Wed 17 Sep 2025 01:00:28 +0000
Files and hashes: 1: 3_xmC1ho9_8ZqNCvSg_4Ci-eALc.roa (hash: F7LfywH9mxXY2KxRJjRgggVLiwyV5wwnZqXcnTIZ+/Y=)
2: sszaHFSHy5ONV-phzC1i0xBw21E.crl (hash: tB6Lq9+IxAjljLFDDyhfCXx/KB9W188TstFJfGyabqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:50:09:91:6d:36:e2:b7:6f:6c:db:40:ab:2b:5b:da:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Validity
Not Before: Sep 16 01:00:28 2025 GMT
Not After : Sep 17 01:00:28 2025 GMT
Subject: CN=cd7de55e4fc25275c2408e76688d4ac309701d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:31:3b:8e:41:7b:c8:b9:ee:22:fe:03:fd:98:
1d:9d:d4:8e:24:ee:6e:c3:ae:97:00:57:87:b4:b5:
61:93:b9:28:66:d8:cc:89:51:0d:f2:1f:cf:72:5d:
9c:6c:a8:1f:79:05:4a:71:84:a8:23:e6:7a:1f:40:
e1:3f:1b:d3:6e:73:9b:49:62:f4:e6:58:a8:61:27:
e3:bf:eb:40:1f:60:e8:bf:f1:ab:72:7e:e3:25:e5:
7c:5d:b4:27:ba:73:59:60:45:cc:23:41:cd:59:fe:
09:c1:4f:dc:8f:ad:e3:22:1e:68:96:cb:20:e0:eb:
39:bf:3d:72:16:2f:59:89:52:c6:a0:59:df:ff:15:
f1:38:a6:56:75:72:35:54:00:91:62:ad:9c:be:18:
07:d2:1e:88:47:48:a4:b3:9a:ce:ba:61:54:98:3b:
9a:89:90:e9:00:4b:ac:a1:1b:46:62:07:92:16:94:
f2:de:60:b0:30:1b:f3:12:fd:44:8e:5d:14:5e:f9:
d2:79:01:25:80:c8:a1:e7:77:f6:99:2d:92:5b:e5:
22:ab:94:82:80:a6:52:44:c7:ba:ac:1c:14:10:f9:
5a:75:83:4f:2e:52:2c:05:27:b7:b2:d3:c1:51:08:
7a:b1:6d:62:0c:30:88:3f:84:8b:a2:13:b5:03:b8:
76:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7D:E5:5E:4F:C2:52:75:C2:40:8E:76:68:8D:4A:C3:09:70:1D:87
X509v3 Authority Key Identifier:
keyid:B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:9c:d3:86:80:74:eb:d9:e7:d1:e7:4a:f2:82:6a:2a:6f:d6:
f9:2b:9a:3d:2d:32:d2:57:99:14:2f:0f:db:ee:08:2e:d4:5d:
c1:59:14:3b:18:02:bd:35:7d:c8:30:fa:a7:59:df:33:97:8c:
7f:b7:a9:55:18:3e:72:81:00:58:9e:36:d2:eb:14:fe:e4:cc:
93:80:3c:ff:29:25:ff:4f:12:d1:90:1d:e0:79:8b:f3:74:b4:
af:80:0d:19:1c:f4:c3:25:2b:ca:4f:f8:ba:f8:b9:59:b2:68:
46:d8:74:d7:ea:04:4a:fd:29:48:89:e9:b6:e5:32:99:27:9e:
5e:e7:16:7d:eb:13:89:81:8a:35:88:42:93:5a:86:4d:ed:2a:
1b:6f:0b:80:3f:b4:b5:a2:fe:7d:53:67:f5:6e:4e:2d:b8:bf:
cb:f6:5e:23:70:3a:1d:a2:75:79:30:97:f3:cc:95:08:bc:47:
79:6e:47:5d:79:13:c7:bd:fd:31:8c:5e:e2:d1:a1:87:ec:9f:
45:b9:13:2f:c8:c2:69:d7:3d:f7:45:09:50:26:3e:5e:f8:fb:
65:00:ba:48:22:5c:fe:a0:34:4b:39:18:c4:ee:65:70:25:58:
02:31:3c:03:cc:3d:b4:d6:6c:2e:00:1d:4d:4c:72:57:6c:55:
81:4b:13:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 04:20:18 2025 by rpki-client