Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json)
Hash identifier: vKpJF7nBKkyFK6ItoCtWwYYjljIWd1pylg/xWPuE7Lc=
Subject key identifier: 7C:F5:38:4B:FA:F2:66:75:04:53:B0:8A:E6:B9:EE:EB:05:F3:74:B7
Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b
Certificate serial: 019DD72F7B945D4004CF538A964A4DC2A3EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
Manifest number: 15FA
Signing time: Wed 29 Apr 2026 03:01:46 +0000
Manifest this update: Wed 29 Apr 2026 03:01:46 +0000
Manifest next update: Thu 30 Apr 2026 03:01:46 +0000
Files and hashes: 1: 32Nopwa7iDrMzQvWR2AiGUXyxqI.roa (hash: UhsqgA9BDo8hjf2FELCXlR0HFZ2+BdgenG+by3xwFz8=)
2: LjPmzvpwanEzWC7YwFcmuEsNkws.roa (hash: MIJ/J6I5pbMxfY/A5H3VycZbhKC12p0Tut4YaO1yZlQ=)
3: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: 7gYr3UgvjmlwbQ8rDqtzdkYP2/Y8uLiRDb1OqXd4Oi8=)
4: U032uAEUZ0b4mkUs5GY7tAVTTzU.roa (hash: DED8ognEIVQikRQX7YkZQcK+eDMVkhFnX19M3oaeQrw=)
5: UKW6ggBaCeq2EWzJWVDTUUG5C5M.roa (hash: RrnGAk5DcSVwnr4K/OnsZ4KSQkqSg7XT17ThtWs4Qzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Apr 2026 03:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d7:2f:7b:94:5d:40:04:cf:53:8a:96:4a:4d:c2:a3:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494d7873416510a2fb2346ef342280155522713b
Validity
Not Before: Apr 29 03:01:46 2026 GMT
Not After : Apr 30 03:01:46 2026 GMT
Subject: CN=7cf5384bfaf266750453b08ae6b9eeeb05f374b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:58:05:f6:57:cf:0f:dc:5e:d6:8d:49:02:53:
8b:43:6e:a8:33:10:60:4f:2b:71:82:0d:cb:87:ab:
0d:3d:41:4f:a8:73:dc:0f:f5:e1:8a:fc:aa:9d:39:
c6:30:3b:41:3d:73:37:29:71:1f:19:c0:36:14:67:
f7:3e:4a:3d:2a:f3:6d:78:7a:e4:c9:c2:00:64:bc:
1c:4a:09:2a:21:21:f7:1d:9e:85:cc:56:16:f6:c6:
bd:0f:6b:fc:06:d9:83:54:be:38:f5:de:1e:5d:f8:
e2:ec:9c:de:4f:bf:94:4a:a0:b2:cc:e0:6c:39:b1:
ec:7a:6c:bc:a1:b6:b4:66:9e:c1:c2:9b:13:75:b6:
6f:b3:7e:f1:93:3e:dc:9d:1a:3d:4f:7d:f9:73:4c:
28:25:77:04:1a:bf:74:e6:d7:e8:e9:52:8a:d5:42:
b7:a0:56:22:65:af:50:2a:fb:37:40:bb:6b:f1:63:
52:ca:ef:1c:d5:e4:a0:8c:bd:27:7f:76:ba:08:de:
36:b1:a8:f8:b2:de:0b:18:ba:66:a5:f5:14:03:ea:
c3:79:17:9a:56:ec:6c:57:07:42:28:1e:95:59:52:
54:19:73:da:b2:e5:35:a8:f1:ee:69:4d:bf:cf:da:
7f:8e:2a:9f:3b:39:92:3f:5b:73:37:fc:a0:b0:a5:
6c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F5:38:4B:FA:F2:66:75:04:53:B0:8A:E6:B9:EE:EB:05:F3:74:B7
X509v3 Authority Key Identifier:
keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:5f:6d:39:07:32:82:68:24:c6:5c:19:ac:65:52:89:0f:ec:
e4:3f:1a:33:2e:18:7e:68:13:8a:b3:de:f3:86:00:5e:b1:22:
7e:f1:9b:1f:e4:0a:fe:13:3a:2f:c9:57:6a:ce:13:0f:85:7f:
d2:2a:f0:41:d5:31:84:53:cb:68:bc:b6:cb:0b:63:72:69:ab:
da:87:c3:ad:a3:b4:78:c7:f2:da:ee:3d:a7:e9:e9:bb:7b:d7:
25:e0:e1:41:e9:24:98:9c:fd:5b:2c:7d:7a:1e:74:45:53:18:
0e:94:4a:af:56:0b:f1:e4:b9:27:7c:59:b4:fd:4c:18:f0:a5:
d7:66:61:70:1a:45:0e:46:a3:e1:cc:8d:78:fc:11:4f:99:f6:
e3:02:fa:a4:6b:92:66:0a:dc:fa:d8:eb:68:9a:8d:79:da:6d:
2c:0c:ba:4b:df:3e:62:e0:5a:0f:19:bf:a9:f1:68:08:70:fe:
a3:b8:3d:ac:84:87:e8:79:53:90:bc:03:c4:1c:08:44:82:b0:
bd:54:60:f2:51:17:73:6d:6e:33:1a:16:11:37:c9:61:01:d9:
78:c1:13:b1:98:28:0a:0f:79:a9:7c:e7:f9:1d:b4:02:ed:3f:
63:6c:4f:cd:c5:48:fc:1c:46:be:7d:1d:0d:6d:21:98:5d:ec:
4a:6c:b4:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 29 11:38:32 2026 by rpki-client