Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
File: sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft (raw, json)
Hash identifier: VsP75tjBqo1bEUV/4Br1PvYBMT+ECHmaHGduIBL40Jc=
Subject key identifier: 3B:DA:C7:21:6C:EF:9C:55:91:AF:B8:6C:E4:22:AF:CB:D6:55:E1:40
Authority key identifier: B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
Certificate issuer: /CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Certificate serial: 019A503DF9BF5E38AC775A700691A5984F27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
Manifest number: 168E
Signing time: Tue 04 Nov 2025 19:00:30 +0000
Manifest this update: Tue 04 Nov 2025 19:00:30 +0000
Manifest next update: Wed 05 Nov 2025 19:00:30 +0000
Files and hashes: 1: F8n_Svao3XVMTZ9Sm-3QBaNvm1s.roa (hash: jXQFrBti/A7a3NKEgrbBnXx/tbixG/ctP16QJsp1XeE=)
2: sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl (hash: h18bJ2E6zqeQT44plZ854mR94oBsnA1L5bi6KVV2gdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 19:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:f9:bf:5e:38:ac:77:5a:70:06:91:a5:98:4f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14658fcab37032dfea96ef0ae68dc9deff6d705
Validity
Not Before: Nov 4 19:00:30 2025 GMT
Not After : Nov 5 19:00:30 2025 GMT
Subject: CN=3bdac7216cef9c5591afb86ce422afcbd655e140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c8:c4:58:de:a0:5b:91:9a:00:b7:2e:c1:de:
8f:17:38:34:f1:71:61:db:e7:bf:37:ca:11:f6:01:
ef:d6:c8:3b:8f:a4:ca:4b:29:88:c8:da:ad:0f:a7:
0d:ca:13:8e:9f:a5:a5:3d:60:e2:ef:80:53:e7:ca:
b6:35:c0:fd:96:ed:74:13:81:c4:94:bd:58:6e:2f:
5c:ba:d0:e9:79:7f:c6:bf:09:d1:97:43:bb:be:3e:
76:2c:07:34:0b:48:c9:59:5f:ca:5f:3e:c1:20:78:
40:fb:14:75:26:db:7d:d1:77:93:1a:1e:91:c7:59:
01:6d:8d:09:69:b7:40:87:9f:9b:e4:5b:23:0a:3b:
e2:70:25:76:68:e7:39:fc:45:fe:1d:2f:12:46:2e:
17:1d:1c:b6:63:29:a8:4a:08:98:c2:55:28:22:9f:
bd:1e:52:d6:48:dd:91:ed:9b:3f:fc:f3:c9:8f:1b:
36:55:26:57:eb:15:b2:6f:cb:d4:c4:2a:1c:db:9d:
d4:7c:a9:ac:24:9d:1b:a9:d0:95:43:cc:c9:55:a8:
a4:a9:f4:c4:e7:76:a3:50:7c:b7:e3:b6:b9:f5:bf:
1c:01:ee:eb:5d:6f:2b:f9:dc:e6:39:d0:67:0b:0d:
f2:c1:bf:c3:dd:98:95:b3:36:0e:70:81:36:e7:d7:
36:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DA:C7:21:6C:EF:9C:55:91:AF:B8:6C:E4:22:AF:CB:D6:55:E1:40
X509v3 Authority Key Identifier:
keyid:B1:46:58:FC:AB:37:03:2D:FE:A9:6E:F0:AE:68:DC:9D:EF:F6:D7:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUZY_Ks3Ay3-qW7wrmjcne_21wU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5f6566-8160-4394-875f-a7ead8ab1273/1/sUZY_Ks3Ay3-qW7wrmjcne_21wU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:23:81:4a:a4:bd:f0:67:50:02:78:ba:da:0f:0b:38:6a:5c:
3b:f6:01:69:87:78:f8:9c:ec:f6:5f:98:e3:54:a4:f2:e0:99:
b4:4b:08:22:a5:45:17:8b:0f:de:38:9a:02:06:a8:c9:98:10:
07:a0:50:47:b2:b6:e5:f5:8b:ba:34:4d:1b:59:37:14:e0:95:
3a:c8:51:58:27:69:73:26:42:ed:ea:b7:ee:33:c0:bb:d6:da:
b2:9f:5a:b0:ff:5c:3f:85:ef:06:e8:84:23:d4:b8:89:38:90:
3f:1d:9d:30:84:74:a9:46:b1:63:27:f2:da:ed:9d:d8:b6:9b:
50:11:d9:02:24:3e:4f:b7:f3:31:80:9d:d3:10:a2:1a:da:a3:
ee:a8:a4:75:36:db:9c:0f:e4:8e:06:3a:e5:48:29:f0:94:f7:
ea:81:e8:11:cb:f8:63:07:9b:1d:00:65:6d:7a:fb:d2:8c:78:
0f:ce:35:21:84:bb:9c:06:3c:06:33:12:4e:02:78:4f:fc:47:
a2:64:76:a6:6e:a3:a6:87:5b:bd:b1:22:3a:53:6b:7c:70:0b:
29:d8:61:85:b5:e4:b8:02:8e:9f:99:5b:c2:85:3e:52:64:c1:
bd:01:a8:02:1f:d1:cc:f8:ef:84:93:fb:fc:05:34:08:e1:5c:
40:f3:72:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:24:53 2025 by rpki-client