Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
File: sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft (raw, json)
Hash identifier: c64nbcVYjdjDoyGRlG7o25Pxl5h0RwBnKLTdfcrPR9A=
Subject key identifier: 03:50:83:0C:3B:37:4D:7A:64:8C:A9:E7:63:1F:2C:92:14:E8:36:62
Authority key identifier: B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
Certificate issuer: /CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Certificate serial: 019CADFEB5B9A2D4EE94193DA98637668682
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
Manifest number: 17C8
Signing time: Mon 02 Mar 2026 10:01:16 +0000
Manifest this update: Mon 02 Mar 2026 10:01:16 +0000
Manifest next update: Tue 03 Mar 2026 10:01:16 +0000
Files and hashes: 1: QBlYbj346qzHUv19Z-I6ndDq6qo.roa (hash: VEZ9eyiW7HYhsOu44s2MXlQaK3GSzzboX5o0voLYcrI=)
2: sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl (hash: N9HSr418TqFoRUHNcGaCiaCrah4eEmyzQZ8rRMGHoUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:b5:b9:a2:d4:ee:94:19:3d:a9:86:37:66:86:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Validity
Not Before: Mar 2 10:01:16 2026 GMT
Not After : Mar 3 10:01:16 2026 GMT
Subject: CN=0350830c3b374d7a648ca9e7631f2c9214e83662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c6:55:e8:cf:4d:6f:24:e1:71:8c:c8:79:74:
ee:75:e4:31:79:18:72:af:22:16:b1:12:3b:1d:ad:
7a:8f:dc:29:5e:6b:d6:66:3d:bf:79:5d:b2:45:df:
47:4d:6f:99:3d:ad:cc:4a:25:b1:6b:2e:c3:4f:36:
f6:d9:f4:9c:b9:fa:c7:a6:32:aa:80:06:75:0c:69:
5e:6d:0e:0f:c9:fc:b2:b1:87:fe:b3:9b:f6:d8:61:
f7:c4:14:76:7e:57:41:b0:3c:d3:a7:39:15:dd:9c:
63:07:9c:2b:a1:b6:ac:d1:08:32:56:22:21:46:9b:
e4:56:33:eb:1c:ad:af:68:c0:df:20:70:34:9a:23:
2b:dd:b7:d4:68:52:cd:4c:ea:28:df:22:05:64:cb:
9f:d9:a2:93:ec:d1:c8:05:61:55:32:1b:c5:11:2c:
ca:ba:a3:ef:72:d5:92:93:66:97:5b:3d:54:46:98:
8f:0c:34:0d:c9:ca:a4:38:67:c6:38:e2:74:4c:0c:
0c:9c:c6:24:7a:f7:19:e6:88:c6:e2:8d:70:52:db:
da:b6:c8:55:b5:46:51:2c:4a:74:b0:05:66:21:08:
36:1a:89:a0:07:06:d2:49:c7:b6:4f:7c:18:e1:c2:
e1:03:7b:0b:e7:d8:87:13:a1:04:71:40:6c:25:ff:
31:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:50:83:0C:3B:37:4D:7A:64:8C:A9:E7:63:1F:2C:92:14:E8:36:62
X509v3 Authority Key Identifier:
keyid:B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:37:e6:aa:0b:9c:c5:7b:70:db:29:93:00:0b:22:fa:88:c4:
c9:fd:80:ff:f9:f3:d2:76:8e:9f:f8:5b:e0:5c:c2:88:c8:86:
85:5e:20:55:d0:ba:fb:a6:c6:c8:7c:18:a4:ea:fc:d0:05:5c:
64:62:78:14:00:30:f4:96:64:3e:ea:ba:a5:aa:cf:cd:09:1c:
4e:10:f5:d7:c3:5d:a6:db:11:7b:b6:fb:4d:aa:9e:3f:b1:75:
7e:1b:61:df:2a:8a:2c:a4:a3:69:5f:78:8f:2b:b4:f0:7e:e3:
59:07:18:12:dc:d8:87:5a:ac:e6:99:c4:8b:4f:6f:ec:30:70:
bd:f0:a5:d5:69:a7:8e:05:37:11:5f:9a:9b:3b:8f:1c:8d:cd:
b6:67:6f:26:30:8a:a0:6b:c3:c6:18:15:f5:5a:c0:ee:69:a8:
70:02:29:72:3b:fa:44:04:c0:0d:40:a2:c7:1e:e6:68:ff:6a:
21:a2:2d:0d:27:31:17:fb:2f:29:6a:2e:05:97:3d:bd:5e:26:
31:fa:b5:f8:fd:1b:60:45:23:aa:57:ce:5b:61:8f:b4:9e:f4:
2e:ea:6a:5d:7a:ab:e1:16:96:f6:fc:a8:08:c9:70:36:64:ae:
a7:22:91:86:0f:c5:29:9a:77:4c:fc:88:00:5a:7d:6b:dd:cd:
2c:3c:33:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:16:18 2026 by rpki-client