Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
File: SujQiQnRha9B0KDDvl6ijDUvAiY.mft (raw, json)
Hash identifier: Br46izJ4mcMLhrhChJIQQ8v/QArfsCnwBvKjb5f/5Ho=
Subject key identifier: E5:B5:61:7C:3D:C8:5B:F9:2A:EA:6A:47:E4:24:63:12:51:52:B5:B9
Authority key identifier: 4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
Certificate issuer: /CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Certificate serial: 019CAB33F75D27072E345C168A90F5E81370
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
Manifest number: 16C5
Signing time: Sun 01 Mar 2026 21:00:35 +0000
Manifest this update: Sun 01 Mar 2026 21:00:35 +0000
Manifest next update: Mon 02 Mar 2026 21:00:35 +0000
Files and hashes: 1: SujQiQnRha9B0KDDvl6ijDUvAiY.crl (hash: NGY8OwUpz/JCwrUgGG3lS1hifdQIPgZA9IqdqnQ7rBU=)
2: _kIyn54Kwl02SBVsVFIcVuZztFA.roa (hash: 72qRo50GT69ynWH6rCDwF6eh8ixb9QAqQtQqlDICbx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:33:f7:5d:27:07:2e:34:5c:16:8a:90:f5:e8:13:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Validity
Not Before: Mar 1 21:00:35 2026 GMT
Not After : Mar 2 21:00:35 2026 GMT
Subject: CN=e5b5617c3dc85bf92aea6a47e42463125152b5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e7:af:eb:a1:ab:bf:9c:79:a9:1e:7b:b9:17:
e5:ba:fc:c6:36:b7:62:da:01:48:6e:77:0e:01:98:
b0:6a:53:8f:58:56:1b:ce:81:4a:27:59:fd:5a:9e:
54:d2:7e:69:54:7b:5d:b4:55:f7:60:e2:15:9f:a3:
bc:1c:02:13:08:c3:21:da:ee:0a:e7:fd:7e:25:65:
a9:10:f8:37:00:97:fd:34:52:a4:eb:67:c6:80:a1:
a8:8c:da:94:96:1c:1a:88:d7:1e:cf:8e:54:15:5b:
08:15:4e:7a:5f:bf:48:50:c2:9b:0c:be:2e:1d:f6:
86:03:40:40:80:f1:a3:0c:b6:6c:a5:7d:d1:97:f9:
3c:c8:4b:03:b4:b6:5f:0f:45:45:65:6d:33:6d:10:
b5:60:c2:26:0f:ec:42:6c:45:1b:1d:37:91:df:c0:
b5:d0:c7:5d:e4:a8:e0:d8:cc:b9:b0:48:ab:30:3d:
78:d5:a0:03:2d:b8:56:a5:7b:c5:56:c1:ad:bb:93:
7e:41:aa:20:0a:bb:8f:99:39:c8:88:35:ce:df:29:
65:0f:7f:20:8d:d1:59:66:62:8b:ee:9a:3c:bf:ef:
c6:c0:57:33:7c:bc:5d:45:e7:5f:01:be:f6:64:ed:
35:fa:6d:e4:d4:82:c8:e7:75:37:0d:7a:7d:ab:83:
d9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B5:61:7C:3D:C8:5B:F9:2A:EA:6A:47:E4:24:63:12:51:52:B5:B9
X509v3 Authority Key Identifier:
keyid:4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:92:0c:20:80:bc:ca:56:08:75:06:99:43:5b:9b:1e:2a:db:
c1:02:c8:bc:1f:fa:e9:4f:da:44:17:2f:00:e7:4c:0c:66:b1:
c4:07:f0:9d:9a:f7:85:d5:a8:af:99:8c:c0:01:33:5f:36:ea:
86:61:cf:d8:b2:5c:20:37:9d:b3:ec:6d:71:27:05:c8:3b:54:
c3:0c:bb:d7:bf:15:6b:0b:1e:c0:11:b1:0a:5b:70:96:da:d5:
cf:79:e6:c6:d3:75:18:e5:8e:20:80:67:45:2e:06:f6:e1:d5:
94:32:38:8a:6a:f0:2b:47:2c:2d:10:8b:e2:76:33:ce:90:1b:
fb:0b:90:ee:da:35:4a:a4:7a:b0:d5:4f:c8:28:6d:e4:17:33:
6b:dc:98:f6:74:7a:f9:ce:7d:48:f6:87:b5:33:b3:7b:60:cc:
e6:a3:7d:05:29:21:ca:ad:ab:fe:b8:bf:68:12:ab:3a:eb:e4:
3c:fb:5c:d8:a4:39:3d:d2:f4:9e:fa:55:59:a7:24:0c:21:c5:
a9:9a:a8:43:28:05:a5:68:9b:a5:40:81:59:50:8e:0d:77:84:
94:87:6b:2f:c5:16:0e:89:88:73:1c:b4:5c:e0:ef:74:0c:02:
77:9b:77:ee:ba:15:14:a8:44:4e:29:06:fc:9b:ee:56:a0:43:
6b:3f:a6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:48:04 2026 by rpki-client