Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json)
Hash identifier: h8AZd4h8+SCfAE6+sLNCSXo2sLtmyv5eFbHCx+xvgBE=
Subject key identifier: DA:C9:17:32:F2:04:DC:BB:30:8E:0E:D5:BE:8B:B1:A1:1A:C0:07:E4
Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b
Certificate serial: 019CE7B70AB8D30D0FB7A419AFE87E12488F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
Manifest number: 157E
Signing time: Fri 13 Mar 2026 15:00:58 +0000
Manifest this update: Fri 13 Mar 2026 15:00:58 +0000
Manifest next update: Sat 14 Mar 2026 15:00:58 +0000
Files and hashes: 1: 32Nopwa7iDrMzQvWR2AiGUXyxqI.roa (hash: UhsqgA9BDo8hjf2FELCXlR0HFZ2+BdgenG+by3xwFz8=)
2: LjPmzvpwanEzWC7YwFcmuEsNkws.roa (hash: MIJ/J6I5pbMxfY/A5H3VycZbhKC12p0Tut4YaO1yZlQ=)
3: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: YGTSFfdycTredINFFl78E6SEj8TWNd1TY/Pk1g6Jsng=)
4: U032uAEUZ0b4mkUs5GY7tAVTTzU.roa (hash: DED8ognEIVQikRQX7YkZQcK+eDMVkhFnX19M3oaeQrw=)
5: UKW6ggBaCeq2EWzJWVDTUUG5C5M.roa (hash: RrnGAk5DcSVwnr4K/OnsZ4KSQkqSg7XT17ThtWs4Qzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:b7:0a:b8:d3:0d:0f:b7:a4:19:af:e8:7e:12:48:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494d7873416510a2fb2346ef342280155522713b
Validity
Not Before: Mar 13 15:00:58 2026 GMT
Not After : Mar 14 15:00:58 2026 GMT
Subject: CN=dac91732f204dcbb308e0ed5be8bb1a11ac007e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3e:19:b9:04:d5:7a:8d:be:03:00:14:96:92:
05:78:85:99:09:83:17:95:01:20:31:85:c1:7d:da:
58:ed:bf:87:a6:e1:08:78:55:4d:9f:81:75:14:fe:
db:30:1b:2c:87:c6:8f:01:84:b6:59:b2:83:14:84:
42:01:f8:b4:a1:8b:ef:c1:03:a7:6c:2d:9a:89:d2:
8c:a8:29:50:c6:9b:59:76:6c:b6:e0:4f:28:71:a4:
f2:16:b3:07:2b:30:a1:65:2d:f1:da:da:6d:fd:1b:
5d:64:93:26:7b:cb:72:c1:da:09:e8:d3:d5:a7:36:
d5:08:9b:38:d1:79:97:d7:7e:86:93:9b:33:79:6d:
f4:9a:4e:ec:8e:d8:15:21:5e:52:1c:ac:0e:dd:db:
c8:a0:83:ad:65:aa:c1:18:60:3a:48:0d:29:5c:be:
5a:5b:d6:70:dd:15:ee:bd:7f:89:09:d6:14:90:cb:
f1:3f:1d:b6:b0:1c:a7:21:b0:a1:a7:60:62:a4:24:
c7:1b:79:00:5a:91:2f:69:1f:13:a3:35:10:18:6e:
6a:de:c7:04:77:85:62:94:10:11:e0:0d:4c:23:13:
16:88:91:bb:ed:d4:9d:6b:7a:bc:40:ef:0a:90:c3:
f9:71:ae:80:32:76:2e:da:20:c4:92:73:1f:b2:b4:
2e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C9:17:32:F2:04:DC:BB:30:8E:0E:D5:BE:8B:B1:A1:1A:C0:07:E4
X509v3 Authority Key Identifier:
keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:55:f0:6f:59:1f:9b:d2:96:40:a1:a5:eb:d0:99:69:b9:c8:
2f:18:a0:11:32:e8:2a:bf:e0:ec:bb:6a:e1:a9:61:ae:c1:4d:
bc:42:32:77:fc:69:2d:d7:fa:32:09:69:e9:e9:1c:90:1b:c3:
04:c8:04:8f:87:3c:f1:19:70:b0:d7:d4:2f:03:1b:da:c4:60:
a6:fa:45:8b:fa:cf:b6:a9:48:b4:b3:5d:3c:17:2b:67:a0:62:
ea:e5:93:1c:8e:f9:cb:60:b5:f2:86:1e:fd:80:a9:cd:17:d3:
49:2f:cf:91:dc:e0:d1:4d:69:21:ae:f4:68:08:76:08:a5:fe:
3c:cd:1f:ae:8d:8c:69:d9:a2:45:f2:49:f4:7f:72:de:07:d1:
b8:5a:13:1c:15:3d:38:7a:7d:a9:17:af:11:b1:f8:ac:eb:31:
ac:f3:77:7f:22:46:18:07:b9:c6:e7:2d:8b:e0:75:28:13:c3:
ae:66:fd:d7:a9:a3:50:c4:ce:4f:62:17:bd:6a:b7:82:0a:38:
42:b6:d9:74:42:48:b2:5e:d6:2f:70:b0:05:f3:e6:6d:b6:6f:
8e:b3:46:c1:c2:01:00:72:a1:35:79:25:71:2e:43:f0:64:52:
d2:e2:cc:0c:b2:df:e5:2c:47:87:aa:2a:29:54:1b:78:f6:ef:
6e:e8:58:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 16:50:45 2026 by rpki-client