Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json)
Hash identifier: SCncnVlIQtraYMhtKAehNrAjHg1uJvzW0a8hO20DIS8=
Subject key identifier: 3E:C1:72:38:3A:3E:D0:BF:6C:C1:25:19:94:D5:68:C0:5D:CC:CA:42
Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b
Certificate serial: 019A1B74DBCBF5860EC9F423D1B19A201CD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
Manifest number: 140B
Signing time: Sat 25 Oct 2025 13:00:34 +0000
Manifest this update: Sat 25 Oct 2025 13:00:34 +0000
Manifest next update: Sun 26 Oct 2025 13:00:34 +0000
Files and hashes: 1: B8HrelUy9bYGyo-udBZpXQ76dPg.roa (hash: 1JcwupsyhEziaGEtjnyo+5LdSyy6jIrto6vLWzkI9l8=)
2: OgrR2CAd56z5U5HmKNv5p8BkWPc.roa (hash: Rq+kB9vanf4G1JIJ3U+Pnkbq1HZGp2RBfUcOAAvfTYg=)
3: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: wDgCmWDcoA6CRK+rFdbHTBaC7+0TVj2BdFBV9lJ0d6Y=)
4: VqTKdS0wUklb387Znd5hFzPRASE.roa (hash: rDOvuh2F3d3eA0aeY1ATjqwPgZrek24RyHk+1v/gN1M=)
5: hs7LWx99onWfa7NDQgswR8o6gaE.roa (hash: Ass+jNWe5lghZzBAkHny706eHe/Mnq+7tyKFB/O7uyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:74:db:cb:f5:86:0e:c9:f4:23:d1:b1:9a:20:1c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494d7873416510a2fb2346ef342280155522713b
Validity
Not Before: Oct 25 13:00:34 2025 GMT
Not After : Oct 26 13:00:34 2025 GMT
Subject: CN=3ec172383a3ed0bf6cc1251994d568c05dccca42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:24:56:7d:a8:2c:22:4e:fc:50:ac:b9:a7:ee:
38:d8:c6:5f:30:9f:13:4a:10:90:e8:23:2f:61:04:
06:b1:e3:fa:3a:27:41:ed:55:b9:5f:ce:bb:db:ec:
ee:18:f0:5e:1c:71:fb:75:20:2d:5d:00:44:51:6b:
8d:c3:86:54:01:95:64:db:df:a7:88:41:8a:0e:60:
4b:6c:1a:b0:c7:6f:bf:64:3e:8e:02:43:18:26:85:
5f:76:58:13:29:1e:20:12:d2:10:cb:de:da:34:31:
57:1b:0d:eb:df:66:06:5b:87:cb:55:0f:fe:ba:ec:
5f:0a:14:0d:11:47:a6:b6:13:84:39:cb:d4:01:9c:
91:b4:0f:12:d1:ca:5f:d0:3d:19:55:34:06:01:82:
c5:fb:d8:ad:a7:25:99:3b:e8:57:24:01:67:17:5e:
b4:21:ce:56:59:cc:db:35:b7:89:64:b8:da:a8:09:
c2:6b:e7:7b:a9:86:22:4b:ac:bc:37:19:02:14:55:
3c:f6:3b:34:54:07:47:54:43:7b:a8:65:f7:09:ce:
b4:c9:07:20:6b:7f:a7:0d:37:99:12:69:76:3e:4a:
03:32:aa:4a:f5:88:46:f0:93:d2:8d:d4:87:ba:4d:
aa:23:d8:cc:4f:4f:8f:66:0c:51:43:cd:85:21:91:
2b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C1:72:38:3A:3E:D0:BF:6C:C1:25:19:94:D5:68:C0:5D:CC:CA:42
X509v3 Authority Key Identifier:
keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:58:16:5b:ec:3e:8f:ee:cd:e7:46:6b:b8:36:8f:58:d8:cb:
a1:6a:f6:01:55:21:b4:7a:1a:dc:b1:72:d3:1b:ca:87:b4:3a:
fb:06:cf:4e:8d:d9:2d:a8:34:b1:f2:a6:f8:d3:6e:c5:d7:3d:
58:ea:ba:00:33:e0:72:79:de:e3:60:24:8a:31:65:8a:3d:64:
b1:3d:29:a2:95:54:d8:80:d2:dd:1b:95:84:90:18:b1:43:ac:
7d:5e:13:d9:53:08:60:09:f9:2c:7e:6b:8e:d8:bb:3e:db:ad:
32:1c:a9:96:df:f2:1d:a5:c4:97:ac:04:7b:3a:16:8e:62:d6:
a8:73:68:19:cd:95:74:f9:99:61:ee:f5:d6:a8:17:ec:42:54:
34:84:66:ed:9b:4e:7c:5a:82:ca:3d:c9:d4:4e:95:72:28:bb:
7c:d8:0a:7c:fd:6e:e2:f9:dd:bb:ec:ce:a7:c8:ec:b6:73:d9:
1e:72:8a:26:9c:57:c7:98:a4:ad:82:88:21:e7:64:cb:98:cc:
6e:c1:79:00:60:6d:0f:b8:aa:94:5f:89:3c:a8:df:bb:01:f1:
dc:a5:79:86:d3:33:ac:d4:ec:c4:e9:fe:d7:4f:3f:96:4a:04:
59:38:41:95:42:58:02:bb:44:24:f2:8b:0f:d9:79:de:dd:20:
be:4d:73:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 20:01:14 2025 by rpki-client