Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
File: su7525PeEaAlPVqoxT7Mrg-cPTM.mft (raw, json)
Hash identifier: nyxzo6HOa7tPo09LcnNBsICn/nCPRXnlUI4yEvQ8D50=
Subject key identifier: AB:62:21:6A:B7:55:D2:70:1E:0B:E5:88:94:E4:C7:AA:8E:FC:F5:88
Authority key identifier: B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
Certificate issuer: /CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Certificate serial: 019D97E1A8A9C11D70C9364C69765CE51F0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
Manifest number: 0C33
Signing time: Thu 16 Apr 2026 20:00:41 +0000
Manifest this update: Thu 16 Apr 2026 20:00:41 +0000
Manifest next update: Fri 17 Apr 2026 20:00:41 +0000
Files and hashes: 1: su7525PeEaAlPVqoxT7Mrg-cPTM.crl (hash: kVsw8LhdAy/b9MHnrrMAZC+l1Hybwosag9d5N5wZdgQ=)
2: yF3cvECO3ZPhk5RL38Usnf_w7zQ.roa (hash: dQz6DpgzE93vbwSPAPy5s6ZmxUE3vTqFatyJPnJweWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:a8:a9:c1:1d:70:c9:36:4c:69:76:5c:e5:1f:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Validity
Not Before: Apr 16 20:00:41 2026 GMT
Not After : Apr 17 20:00:41 2026 GMT
Subject: CN=ab62216ab755d2701e0be58894e4c7aa8efcf588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:b6:91:cc:cb:bf:20:50:cf:4d:78:b5:34:
49:a9:f9:c6:8e:2f:9c:6c:97:e6:67:51:e9:a7:0d:
87:fe:55:e1:96:15:7b:6d:e5:08:89:46:45:f3:ef:
57:46:a6:96:c9:ae:b8:be:c4:34:20:9b:24:d4:16:
f2:96:c1:dc:3c:0b:20:af:b5:55:08:31:2d:b8:f7:
26:87:2d:59:e1:a0:36:b5:27:e9:89:2e:bc:25:72:
fe:71:11:0f:07:d3:6d:05:c5:64:02:e5:22:e9:e2:
67:56:be:52:3b:32:dc:6c:1e:f4:f5:c3:42:98:79:
13:15:4a:0b:b8:f2:89:fe:e5:8e:f3:46:03:94:ea:
79:10:5d:03:b6:8d:53:d5:71:3d:f3:bf:ad:37:2f:
06:63:c3:a5:80:e7:c2:d9:90:d2:f4:84:f9:f8:88:
0a:c9:4b:e5:39:d3:db:fa:9b:ad:ed:cf:fc:96:23:
5e:55:4b:c9:0f:21:76:4e:e7:40:16:fc:8e:b5:e2:
71:80:68:f1:1d:51:0a:d1:26:7e:26:36:36:48:03:
4e:d7:3d:8f:63:b8:0c:0e:61:a4:0b:01:dc:62:25:
eb:d0:fb:06:42:ac:73:b0:b6:bb:7a:6b:2b:fe:ee:
e3:9b:8a:ee:cd:7f:dd:19:a7:54:e6:89:f1:19:75:
25:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:62:21:6A:B7:55:D2:70:1E:0B:E5:88:94:E4:C7:AA:8E:FC:F5:88
X509v3 Authority Key Identifier:
keyid:B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:e0:b0:9c:9a:6d:dc:6f:82:d0:b7:3a:b7:61:bb:5a:a2:e4:
fa:52:3a:7f:ed:23:46:60:77:29:01:fa:f6:95:18:7b:8a:b5:
22:af:b8:c1:de:a6:98:e5:52:a3:44:7f:2c:4d:62:4c:ea:47:
9d:68:f3:87:94:2f:15:e3:13:68:5d:bb:58:7a:e7:a7:6b:cc:
0d:1f:63:ff:1a:b2:a5:c7:32:49:46:57:3a:f4:5a:f0:47:63:
c7:7d:a1:78:36:bd:c4:31:0a:3f:0d:a4:b1:09:ed:c4:0d:e0:
df:21:94:06:e3:42:a8:0f:13:2b:f7:8c:7b:3b:e6:04:65:6e:
f3:de:31:0c:18:22:cb:83:3e:9b:48:a0:bc:1c:48:c9:f3:a5:
2e:04:ff:8c:85:a3:f7:64:c1:c0:91:5d:7e:6e:2c:73:89:0e:
bc:9f:85:3c:23:b9:1e:68:4e:4b:69:7a:a8:a9:ee:8d:03:ce:
c8:b8:c3:89:cd:bb:24:26:65:e3:e6:ac:88:6a:68:4a:4f:af:
fb:76:68:14:cd:40:da:0a:bf:7e:12:54:1a:9e:08:e3:0a:30:
4c:bd:a3:eb:a2:c6:d3:5b:4b:05:a7:2e:c2:95:ef:e3:f2:ce:
32:7e:73:cb:b3:9a:0e:92:25:a9:42:19:df:ba:f7:af:2d:04:
16:d7:81:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:53:35 2026 by rpki-client