Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
File: SujQiQnRha9B0KDDvl6ijDUvAiY.mft (raw, json)
Hash identifier: 9NkCO5d5Fw9iJuJ+iCItod6s0GPEXzUmVTCyu34SRy4=
Subject key identifier: 0A:3C:F9:6C:AC:B4:65:00:A6:CD:9D:0A:2C:05:DF:5F:C3:BA:1E:C9
Authority key identifier: 4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
Certificate issuer: /CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Certificate serial: 019D98BD1CF3536E3506BC868FA670E75BFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
Manifest number: 1740
Signing time: Fri 17 Apr 2026 00:00:23 +0000
Manifest this update: Fri 17 Apr 2026 00:00:23 +0000
Manifest next update: Sat 18 Apr 2026 00:00:23 +0000
Files and hashes: 1: SujQiQnRha9B0KDDvl6ijDUvAiY.crl (hash: s0eLCQ0VBWlisjgTX0ibzGlXMzXnIGZ9Pbp5mz7SC/I=)
2: _kIyn54Kwl02SBVsVFIcVuZztFA.roa (hash: 72qRo50GT69ynWH6rCDwF6eh8ixb9QAqQtQqlDICbx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 00:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:1c:f3:53:6e:35:06:bc:86:8f:a6:70:e7:5b:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Validity
Not Before: Apr 17 00:00:23 2026 GMT
Not After : Apr 18 00:00:23 2026 GMT
Subject: CN=0a3cf96cacb46500a6cd9d0a2c05df5fc3ba1ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:33:10:bd:25:cb:32:47:b4:2f:51:01:a9:b1:
c3:d8:89:d4:b1:60:d0:c3:34:07:cf:8e:a0:fc:a6:
04:6e:b7:b3:44:b0:d1:19:b3:a9:ca:29:50:51:18:
4b:06:4f:64:d6:ef:6d:64:9b:c5:7f:f4:c3:48:c2:
83:c5:5f:eb:4d:e3:2e:72:9d:03:72:8c:af:87:94:
da:42:4c:80:56:d0:d7:88:ee:b1:00:6c:cf:ba:fc:
a7:ab:cc:c9:2f:97:26:af:fa:cc:e0:d3:43:02:0f:
fb:21:9e:4a:b1:77:28:c8:4d:6e:61:7a:f4:9c:7d:
4f:90:a5:be:88:6a:45:5a:20:52:70:28:ea:6d:02:
71:ac:0b:bf:66:44:50:77:c8:79:8b:5b:2c:44:3e:
e6:6a:ef:8a:9e:7a:58:d5:58:d5:f5:92:c3:91:b5:
76:eb:a5:ca:81:02:65:fa:1d:bc:58:ec:10:83:43:
a5:52:f5:aa:9b:1e:e8:f7:cc:6c:a2:a6:17:29:69:
88:fc:61:95:a1:e5:b9:11:8f:4e:7b:e3:48:a8:a3:
c0:8e:de:2e:8a:28:95:89:b6:ff:c8:47:b1:05:ff:
84:e7:55:93:d2:a3:73:27:70:00:db:e3:44:42:42:
3d:7a:34:7a:f5:6b:c7:c6:a7:2a:d1:e8:81:37:ee:
1f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:3C:F9:6C:AC:B4:65:00:A6:CD:9D:0A:2C:05:DF:5F:C3:BA:1E:C9
X509v3 Authority Key Identifier:
keyid:4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ba:01:61:5c:4c:71:df:04:c1:6a:df:87:6d:6b:6d:15:ab:
df:68:1b:1b:68:22:50:ce:91:57:d0:e2:13:a8:1d:7c:e3:c6:
aa:a9:a7:a6:4a:4a:3b:c2:d9:db:58:ad:a9:c4:c0:0e:0f:8e:
90:09:8f:08:4c:91:9a:e5:6b:3a:d4:5a:f6:f2:65:68:99:db:
4d:15:3d:d8:2d:91:10:8a:21:86:f0:f5:47:05:b4:b5:09:62:
66:8a:1e:ea:2b:8c:4c:7b:08:7e:7e:2b:2b:73:e3:3e:68:86:
be:92:ff:3a:e2:94:34:b7:9d:b3:96:39:40:0d:7d:43:b8:fc:
16:16:9a:28:af:9c:1a:da:69:fe:d1:90:cb:60:df:87:37:fa:
12:54:c1:67:d0:59:28:ba:0a:85:93:2d:d0:81:e6:dd:52:87:
d6:00:b4:c1:68:46:07:f2:08:1c:a3:8c:5d:fd:c2:df:f9:e6:
0b:35:e9:c5:d3:f5:bd:f9:df:49:52:57:09:e2:7e:a9:cb:28:
72:85:93:da:65:c0:31:bb:4b:59:82:1c:11:31:a6:5f:94:bd:
b5:0c:ec:f3:e6:28:36:92:bd:10:b5:a3:46:af:ef:5c:70:c4:
96:03:d6:5e:ce:9a:3d:17:29:37:85:51:ca:9a:cb:1d:c4:fa:
c2:68:e4:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:38:47 2026 by rpki-client