Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
File: SujQiQnRha9B0KDDvl6ijDUvAiY.mft (raw, json)
Hash identifier: NP7tbLeGIgj44XxS/wKmSJTY/2pHNna4TuN92beGVL8=
Subject key identifier: 20:0A:C4:28:16:D5:C2:67:D2:83:5C:F0:D4:72:BA:6B:82:D9:E9:2C
Authority key identifier: 4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
Certificate issuer: /CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Certificate serial: 019A559AFCAC4C62DEDFBD5FE40ED0D40D0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
Manifest number: 158F
Signing time: Wed 05 Nov 2025 20:00:11 +0000
Manifest this update: Wed 05 Nov 2025 20:00:11 +0000
Manifest next update: Thu 06 Nov 2025 20:00:11 +0000
Files and hashes: 1: SujQiQnRha9B0KDDvl6ijDUvAiY.crl (hash: ZoVuNtTxDkzgdByYw4ZJi8cXuQzv25JbEP7zzIW9B3U=)
2: nP21AC5prEFloL4b-rvpds4zVIk.roa (hash: uwmza4+iHSYo9L5fLNkaMpr9S0IJA2DNF48xVtFHmFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 20:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:9a:fc:ac:4c:62:de:df:bd:5f:e4:0e:d0:d4:0d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Validity
Not Before: Nov 5 20:00:11 2025 GMT
Not After : Nov 6 20:00:11 2025 GMT
Subject: CN=200ac42816d5c267d2835cf0d472ba6b82d9e92c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:56:0a:99:73:4a:cd:00:8d:6b:f3:49:87:20:
f4:88:66:a8:c6:e2:27:cc:28:42:ef:7e:88:4a:59:
de:9e:99:93:47:9a:46:2b:3b:50:dd:5a:fd:2b:2d:
9c:bd:6a:83:f4:78:aa:54:e5:47:a3:85:77:9b:95:
c2:f7:eb:e7:89:b4:14:fa:18:86:8e:f9:69:8c:9a:
d3:8e:c1:65:54:db:3c:2c:8e:2c:1d:5d:fc:d4:c9:
f0:bd:e8:2c:10:ac:29:b4:d3:74:13:80:8b:89:53:
bb:de:21:64:62:20:f9:85:6c:3a:54:92:5a:9f:6e:
5d:e4:cc:9d:4c:9c:62:7d:fc:d8:90:df:2e:c1:45:
3d:d8:ee:d0:57:a5:a6:d6:88:f5:86:5f:c5:63:e9:
7e:ef:85:5d:5d:89:af:e6:9b:4d:f5:06:50:ea:ae:
af:f8:36:49:00:7d:7a:a8:df:2b:f8:2c:a4:27:7e:
9f:2b:8d:78:e0:ee:c8:8d:dc:62:b9:e9:33:52:9e:
fb:bd:95:91:2b:78:dc:29:cd:94:44:d8:8b:18:ce:
6e:4b:de:00:c2:95:67:43:07:3e:43:0b:9e:f7:e3:
f3:14:26:a2:23:38:a8:6b:e2:53:ce:09:b9:bb:fc:
a1:4e:cf:d6:92:dd:fc:a8:3f:72:d3:e0:5d:0a:31:
f5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0A:C4:28:16:D5:C2:67:D2:83:5C:F0:D4:72:BA:6B:82:D9:E9:2C
X509v3 Authority Key Identifier:
keyid:4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:7f:0b:d5:ab:b7:28:c9:38:c5:ef:ff:b8:6d:92:c9:65:3e:
9d:04:a3:15:83:ab:26:eb:fa:d5:95:68:0b:2d:35:0b:dd:6c:
10:81:7c:aa:c3:3c:ee:70:ba:fe:0c:aa:f4:f7:76:f2:3f:4e:
48:ef:78:3b:6f:65:52:4e:c3:a6:e1:45:b6:d5:64:23:56:b1:
25:4f:f1:82:3a:fe:e4:fc:d4:12:70:bc:80:ec:58:53:43:d4:
b9:c0:d7:79:77:33:98:49:f5:65:01:d6:7c:f9:c2:e8:92:6e:
8c:f8:0a:7f:b7:e9:6d:36:24:8a:6a:e9:e5:a2:f3:90:b2:b8:
ed:33:2f:42:31:34:3a:22:7d:d0:89:7d:98:b8:b8:f8:bd:07:
d1:24:18:5a:8c:1f:94:c2:b4:ed:57:09:59:02:70:e7:94:05:
ef:80:3b:15:d5:66:35:9e:cc:96:7b:bb:b8:e9:31:9b:5f:6e:
ab:f6:3f:8d:c2:6c:8b:7d:12:f7:f2:11:62:8c:c4:e7:18:7f:
24:33:ae:95:44:41:41:02:fb:73:cb:8f:ab:66:05:61:ec:42:
7e:f7:66:d6:aa:1e:6e:23:29:ba:1b:91:7a:21:2d:26:58:b6:
22:05:5b:16:dc:a3:a7:4c:31:96:b0:80:ae:fd:b6:b0:00:d8:
f5:d0:91:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 01:19:59 2025 by rpki-client