Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
File: CzVgh8IMejJUFv2oA8t289p5R6k.mft (raw, json)
Hash identifier: qEhypkvI3jpW6Rfu46BSoIknM+gW6EzCFtN4uLYroWU=
Subject key identifier: 6E:29:19:11:6D:B5:50:F6:E6:8C:3C:89:FB:BC:95:E5:DE:9D:7E:A3
Authority key identifier: 0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
Certificate issuer: /CN=0b356087c20c7a325416fda803cb76f3da7947a9
Certificate serial: 019E1CEB59FFFC6D55C1D664731379FCCDBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
Manifest number: 068F
Signing time: Tue 12 May 2026 16:00:46 +0000
Manifest this update: Tue 12 May 2026 16:00:46 +0000
Manifest next update: Wed 13 May 2026 16:00:46 +0000
Files and hashes: 1: CzVgh8IMejJUFv2oA8t289p5R6k.crl (hash: Uk+2j05UiImOWyje+3u03yijrdWqHLuWyBOzZba1rwQ=)
2: dh9HELJ4HeZmOUN7AF9in9ZZ-Wk.roa (hash: QD9afYe9Euena6uMhuaF6GPrPcYje7bkgfG0gL/2Snw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:59:ff:fc:6d:55:c1:d6:64:73:13:79:fc:cd:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b356087c20c7a325416fda803cb76f3da7947a9
Validity
Not Before: May 12 16:00:46 2026 GMT
Not After : May 13 16:00:46 2026 GMT
Subject: CN=6e2919116db550f6e68c3c89fbbc95e5de9d7ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:ec:85:97:f3:22:5a:ec:a2:d3:9e:06:d0:
6a:a7:0a:a1:34:ef:66:20:27:99:c2:0c:b4:bc:68:
c1:cf:be:c9:d7:53:de:53:2c:4a:ff:28:de:9c:9a:
79:72:29:36:6c:ae:9a:19:08:ae:3a:70:cc:05:7e:
35:61:dc:50:70:08:f9:f0:66:51:b1:86:20:93:51:
00:a1:d8:a9:16:85:c2:5e:ca:fb:74:00:90:4f:ab:
d1:42:28:f1:f0:b9:a5:37:56:1d:6b:c3:27:3b:43:
90:b7:0d:6b:83:dc:a8:36:36:c8:be:9f:d0:21:c9:
97:51:54:43:e9:04:79:2a:d3:d7:5c:d6:b4:d1:64:
16:f6:8d:7d:7a:4a:ff:bd:f7:6c:8f:f9:81:82:a9:
82:11:95:cb:30:e6:f8:cf:17:8b:75:18:e8:e4:5b:
94:4e:5d:c1:d2:75:c4:ee:7c:1b:e0:61:17:b5:51:
6a:3e:eb:93:e3:cc:90:ef:3c:6a:1e:6f:fa:40:6d:
a1:b1:e7:73:95:eb:e8:f1:4d:de:79:c1:3f:25:44:
b5:9b:f1:b1:b3:ae:e0:52:eb:d1:ae:30:84:b5:e5:
ca:33:dc:21:f3:4f:aa:bd:04:f7:d0:e1:fc:f4:04:
a8:25:9b:d2:6d:d0:1a:4a:eb:59:d7:81:f9:45:08:
03:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:29:19:11:6D:B5:50:F6:E6:8C:3C:89:FB:BC:95:E5:DE:9D:7E:A3
X509v3 Authority Key Identifier:
keyid:0B:35:60:87:C2:0C:7A:32:54:16:FD:A8:03:CB:76:F3:DA:79:47:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzVgh8IMejJUFv2oA8t289p5R6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/d7cf94-ac61-4fbf-adf0-57eaf833ab0b/1/CzVgh8IMejJUFv2oA8t289p5R6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:01:8f:f6:48:1a:20:13:52:15:e0:ab:9e:ac:44:e8:20:5b:
e9:59:2f:c1:6d:0e:80:cd:85:61:29:ae:21:69:71:e4:7c:90:
d4:6d:b2:16:3c:7a:29:a6:be:90:26:5e:7f:28:19:5f:5d:95:
d5:5d:9c:e4:96:3e:1a:b7:c1:7b:ba:71:d0:a3:27:6a:65:ab:
76:34:02:31:91:48:72:ec:41:00:21:f9:51:ef:22:91:12:fe:
be:ab:02:05:b3:6d:e7:43:9f:36:f1:b9:c5:34:b5:fc:1b:16:
d8:7d:48:66:c8:b2:f0:f1:87:46:89:b4:0f:9d:b7:0e:a8:01:
a8:6d:3f:4d:dc:5e:9c:95:ee:c2:33:9b:07:6e:c2:33:16:7c:
9c:fb:2c:c5:47:d8:03:68:57:b2:1a:b9:30:4f:8d:05:14:6a:
04:dd:7e:cd:1c:47:9d:af:c5:7e:e4:48:14:1d:7a:72:8d:82:
b4:b2:99:c9:87:8b:ca:b3:c7:ea:d4:33:63:33:6c:86:b8:85:
b6:c3:f7:ec:39:e7:54:4b:ef:3c:a5:56:9f:8b:9e:a8:0f:a6:
d6:c0:58:6d:e4:ce:ce:e0:36:f0:d7:f7:8c:86:84:6d:e5:57:
72:2f:f8:6c:d8:04:0b:7f:25:97:50:1a:ae:81:f3:0e:9e:d7:
64:f3:c2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:15:35 2026 by rpki-client