Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
File: sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft (raw, json)
Hash identifier: iDH4N3RG9nwEfpz2TPVXvxLnLuk74/O0wGZQqlTCnPo=
Subject key identifier: D2:29:9B:AF:1E:BF:DA:28:AA:47:B6:1B:83:C5:4F:EE:CD:AF:BF:53
Authority key identifier: B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
Certificate issuer: /CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Certificate serial: 019D9D75BACF7D78D5359A8E1BE5D27C63FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
Manifest number: 1844
Signing time: Fri 17 Apr 2026 22:00:31 +0000
Manifest this update: Fri 17 Apr 2026 22:00:31 +0000
Manifest next update: Sat 18 Apr 2026 22:00:31 +0000
Files and hashes: 1: QBlYbj346qzHUv19Z-I6ndDq6qo.roa (hash: VEZ9eyiW7HYhsOu44s2MXlQaK3GSzzboX5o0voLYcrI=)
2: sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl (hash: nzKJcUJHGUCZutbccBjl0vd/GMr94F5zaO0t36FQuiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:75:ba:cf:7d:78:d5:35:9a:8e:1b:e5:d2:7c:63:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Validity
Not Before: Apr 17 22:00:31 2026 GMT
Not After : Apr 18 22:00:31 2026 GMT
Subject: CN=d2299baf1ebfda28aa47b61b83c54feecdafbf53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:27:6c:9a:04:54:18:d0:78:2b:c8:37:d7:2d:
37:91:6e:70:88:44:71:bf:b9:76:cf:be:29:e5:92:
71:3c:95:d2:fe:0b:f7:b6:de:84:19:ea:06:11:50:
2d:9e:89:31:ac:80:c1:88:af:2e:c7:91:85:15:a5:
8b:10:61:e3:65:fe:59:b4:89:35:52:a9:cd:4d:eb:
fc:af:1d:1f:c5:32:2b:e6:73:1d:39:a6:3f:00:68:
9b:2c:59:97:8d:ce:e1:75:89:d3:54:be:ac:b8:db:
10:86:06:96:b1:1a:27:ec:32:3f:81:9d:1c:e6:28:
a7:4f:4c:28:db:b3:e1:71:53:02:4e:54:2d:e8:7d:
60:ea:12:6c:a4:74:a6:70:a8:8d:e3:10:3f:de:c0:
14:a1:ed:63:0e:e3:29:f4:b4:fd:1b:36:75:cd:22:
9c:c8:ff:35:a5:32:8b:94:58:f6:c7:69:8d:3a:2e:
49:bb:41:86:e5:2c:a0:7c:4e:85:0b:09:c7:09:95:
95:fe:29:ae:e8:cc:88:d5:b3:84:4a:46:d9:55:9e:
1b:3f:5c:d1:9a:3a:aa:bb:c0:6f:b9:1c:7a:d3:c4:
88:72:43:91:ba:f9:04:c7:d5:a0:eb:21:e8:e9:77:
8e:0a:0a:f6:f5:9b:e1:2e:9f:49:7d:70:25:0d:bb:
b7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:29:9B:AF:1E:BF:DA:28:AA:47:B6:1B:83:C5:4F:EE:CD:AF:BF:53
X509v3 Authority Key Identifier:
keyid:B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:cc:ae:e8:77:71:44:17:82:d9:24:26:05:cc:45:47:b0:c8:
ed:67:14:00:f0:3e:e3:5a:4c:d8:0e:91:05:a3:7a:e7:44:2a:
88:7c:0d:e4:1f:b9:b4:e2:95:e8:ea:fd:f6:f4:4e:95:b6:3d:
16:f8:41:6b:e7:97:bd:01:ee:38:3c:56:28:58:3e:48:c9:a4:
3b:11:63:7a:60:14:33:9a:f7:ca:c0:b6:7c:25:25:c9:91:07:
78:cc:30:c9:16:e0:4e:05:d4:ec:ee:f1:21:fd:e2:cc:74:3f:
5a:40:7a:eb:dc:3e:cb:34:07:59:bb:90:2a:7d:64:6d:f3:7d:
12:71:54:b9:04:0d:2c:a8:a0:95:f5:f7:25:58:e3:e7:5b:c0:
99:f9:50:fb:cd:c3:ac:64:db:b7:31:93:a7:8e:d7:a9:f2:9e:
56:31:c0:7d:a9:a1:03:91:54:51:46:ba:1b:30:68:63:83:8c:
ff:c2:53:b2:81:bb:fe:b5:5e:48:74:65:47:d5:0a:c2:90:a5:
ca:8a:5d:e1:d7:2d:c6:a2:c3:4b:16:fe:ce:6e:7c:39:5d:d4:
b0:5e:9c:a4:27:8a:42:4a:6e:92:fa:25:c0:50:31:8a:1c:14:
4a:10:94:ef:30:68:97:9c:cd:b6:63:b0:d0:e3:1b:0b:6a:24:
7d:44:c5:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:25:51 2026 by rpki-client