Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
File: CzVgh8IMejJUFv2oA8t289p5R6k.mft (raw, json)
Hash identifier: pN5n1VMasad08ca0zTW4VaZRwRL5iPhh+Ojnu1zEPnU=
Subject key identifier: E7:D1:57:5E:89:80:D2:91:10:69:64:A6:BC:6C:C2:13:F9:32:23:9A
Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9
Certificate serial: 019D25BA94A3044452509A11E68F61DE0B2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
Manifest number: 060F
Signing time: Wed 25 Mar 2026 16:01:17 +0000
Manifest this update: Wed 25 Mar 2026 16:01:17 +0000
Manifest next update: Thu 26 Mar 2026 16:01:17 +0000
Files and hashes: 1: CzVgh8IMejJUFv2oA8t289p5R6k.crl (hash: UJDkuWQ/73bz9EaWydd5zN7abnjjNXzEZfyDa6kkGzI=)
2: dh9HELJ4HeZmOUN7AF9in9ZZ-Wk.roa (hash: QD9afYe9Euena6uMhuaF6GPrPcYje7bkgfG0gL/2Snw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:94:a3:04:44:52:50:9a:11:e6:8f:61:de:0b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9
Validity
Not Before: Mar 25 16:01:17 2026 GMT
Not After : Mar 26 16:01:17 2026 GMT
Subject: CN=e7d1575e8980d291106964a6bc6cc213f932239a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3a:54:b7:2f:99:9f:55:1f:c6:1a:3f:34:65:
76:01:ed:45:80:7c:3b:c5:7e:5c:7a:de:b4:44:03:
90:50:4a:e6:7a:7f:05:76:9d:34:0b:a7:b9:ae:db:
d1:b8:73:d0:da:bc:4a:d5:31:f7:13:9d:60:56:6c:
31:fe:5d:6e:58:f2:08:1c:51:6a:02:21:3e:67:1b:
80:25:ba:17:ce:19:95:15:07:c3:34:78:f5:1a:d5:
44:f9:0e:d7:67:08:84:be:73:87:69:e6:90:28:ed:
fd:91:a7:12:f2:3d:ff:aa:bf:62:2f:e7:e8:40:7f:
bd:34:5c:22:ae:f3:72:9c:e2:24:28:af:0d:c5:8f:
3f:13:f0:50:90:97:aa:6c:1b:37:27:88:92:a7:a1:
e8:80:4b:b8:b6:31:b4:e1:c5:a6:de:94:9a:f0:cb:
01:af:c7:19:4c:ee:49:9d:02:af:dd:29:b9:0c:6f:
23:11:cf:84:7e:d2:c1:9a:a6:66:36:9e:07:92:45:
80:58:c8:56:c8:d9:41:cd:b5:89:d6:85:27:8c:04:
45:82:cb:85:67:26:4f:41:38:55:e4:09:fd:18:7c:
18:4d:3d:08:71:0c:02:16:c0:cf:73:84:e5:46:72:
5a:b5:de:98:62:a6:44:ab:73:80:99:53:c7:b5:0a:
37:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D1:57:5E:89:80:D2:91:10:69:64:A6:BC:6C:C2:13:F9:32:23:9A
X509v3 Authority Key Identifier:
keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:43:09:d1:38:72:33:22:70:d5:96:07:55:d4:4d:70:7e:2f:
fa:2e:53:cb:31:81:68:72:ca:1c:9e:3c:eb:18:ec:5b:13:d8:
9e:fa:84:de:2e:52:be:49:68:35:07:ee:2b:f6:ec:8f:e4:e7:
26:57:e1:eb:bc:c3:6e:f5:1d:4e:d7:e5:15:b9:44:79:eb:90:
7c:02:ea:f8:a3:c6:93:7d:2e:d2:af:7c:6a:b7:2a:fe:0b:03:
ca:eb:0e:66:dc:11:9b:cd:fb:ef:f9:75:d5:61:f0:0d:cc:5c:
7e:fa:a4:24:78:49:07:02:b5:2a:36:50:0f:4e:91:eb:14:cb:
29:09:12:8a:18:9c:86:ad:41:51:17:15:3c:9e:c7:8c:0c:9c:
05:0c:26:3f:67:c2:25:a8:bd:12:86:3c:a5:f3:2c:1d:dd:5f:
e6:75:74:f8:5e:eb:4c:30:80:1e:5a:30:3d:6b:3a:e3:40:4f:
b8:a7:3c:b5:5e:bf:fe:a6:e7:b2:10:d2:59:c3:0e:0f:d8:48:
8c:17:d0:ba:f2:b3:94:ed:1c:29:01:be:f6:a6:25:96:3a:a5:
fc:b7:78:0c:44:03:24:d8:49:f8:2d:04:70:8b:ef:4d:d8:e9:
2e:55:f7:1c:0c:e4:28:df:66:26:4a:c4:de:f2:51:34:69:5b:
60:63:20:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:10:43 2026 by rpki-client