Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
File: sszaHFSHy5ONV-phzC1i0xBw21E.mft (raw, json)
Hash identifier: puYt7I+KraxbXZRgM0/ODW6Bqdlna2zoJUIR9CwEgZM=
Subject key identifier: FB:62:C7:94:3C:AD:35:4E:9F:FC:C9:E0:EA:C1:F3:93:EB:9D:07:AA
Authority key identifier: B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
Certificate issuer: /CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Certificate serial: 019A71B90D2584BC9FA80202B0468D3BE698
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
Manifest number: 0D26
Signing time: Tue 11 Nov 2025 07:02:24 +0000
Manifest this update: Tue 11 Nov 2025 07:02:24 +0000
Manifest next update: Wed 12 Nov 2025 07:02:24 +0000
Files and hashes: 1: 3_xmC1ho9_8ZqNCvSg_4Ci-eALc.roa (hash: F7LfywH9mxXY2KxRJjRgggVLiwyV5wwnZqXcnTIZ+/Y=)
2: sszaHFSHy5ONV-phzC1i0xBw21E.crl (hash: EXU7u2c1iLJ461Ja0nNoVXs7VxyMUzZkX4pAlvSuCXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0d:25:84:bc:9f:a8:02:02:b0:46:8d:3b:e6:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Validity
Not Before: Nov 11 07:02:24 2025 GMT
Not After : Nov 12 07:02:24 2025 GMT
Subject: CN=fb62c7943cad354e9ffcc9e0eac1f393eb9d07aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8d:c6:c2:9f:7b:8d:3c:c2:01:51:d5:8e:11:
c7:65:17:d6:7b:fa:02:3d:14:10:d6:da:79:c8:72:
fe:53:b7:f7:72:8e:d9:0c:20:f9:e2:70:cf:52:74:
28:dd:6a:3b:a4:0d:86:8e:9b:5b:a7:e5:90:7b:01:
93:e7:07:b1:cc:bb:ee:56:f5:da:ed:68:4f:50:bc:
a4:58:2f:01:2b:69:63:b2:e7:ae:f1:32:8d:40:6c:
72:62:cf:f2:9f:dd:82:a5:43:b3:3e:ac:1e:63:31:
ed:ec:52:a8:d2:3b:29:d8:22:db:29:29:55:97:c4:
1e:26:24:b0:ba:e2:fb:ef:a0:7b:09:a9:ee:15:c0:
09:7f:4b:fd:38:8e:5a:86:c2:17:2c:d0:51:88:1e:
16:15:63:c1:55:a4:0b:44:ad:7a:82:27:66:c4:a5:
c5:fb:c7:54:f7:3c:0b:d0:e6:d9:ad:d1:b6:75:87:
9d:16:2f:ee:24:c9:9c:79:e0:70:8b:35:ac:6e:9b:
f0:18:48:9e:ec:f1:7c:4a:4c:26:a8:a9:fa:80:1f:
d1:05:fe:3e:6c:d4:bd:db:75:78:c0:0d:35:bc:6f:
29:b1:45:2f:f7:3d:e6:f8:cf:98:e4:92:29:36:5d:
5d:cd:12:a7:fa:d4:cd:83:79:8e:b7:05:ed:b8:dc:
13:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:62:C7:94:3C:AD:35:4E:9F:FC:C9:E0:EA:C1:F3:93:EB:9D:07:AA
X509v3 Authority Key Identifier:
keyid:B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:c9:e0:d9:07:52:1e:f7:e8:1a:27:f8:8f:d6:9f:4a:04:00:
98:65:58:8b:fe:17:87:3e:f3:ca:bb:0e:4b:33:ea:cd:92:1d:
a5:ce:a3:cc:6a:2e:01:be:9f:e8:29:6b:43:e8:41:ea:d9:7a:
19:ba:b8:60:5e:aa:c2:36:c1:c7:cd:3c:82:37:e2:f4:cd:f5:
0b:e3:eb:e7:45:98:2c:10:42:69:34:ef:10:65:df:74:a7:fd:
16:c4:d5:75:74:3f:82:a8:bb:1f:af:65:93:be:89:a6:43:1b:
65:ef:76:78:09:32:bb:0d:2d:a0:eb:3a:f3:22:10:dc:da:5a:
da:d8:1e:5d:98:1d:da:91:31:24:a3:c5:69:25:9f:75:f5:09:
6c:23:71:f4:33:0a:2e:ea:29:f6:f7:ad:7f:70:75:ff:62:46:
e3:b3:7d:77:de:f5:ee:c8:a5:db:83:f3:4d:22:f5:e3:0f:bd:
73:da:f4:d6:72:c1:44:d3:a8:f0:51:01:67:77:2a:9f:9f:41:
ff:82:66:28:a0:11:f3:8f:aa:5c:ca:02:1c:f8:3f:85:2e:9e:
e3:ff:1a:86:e3:68:d3:60:04:d0:f8:05:6b:7f:94:b6:f4:29:
f2:2e:9a:6b:c0:3a:8a:b1:fc:ed:a4:01:2b:89:7f:6f:5e:93:
0d:a6:cb:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:42 2025 by rpki-client