Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
File: czFVtC-vxzVab8gJx9nM9bL4zcI.mft (raw, json)
Hash identifier: JuGGjBO69t7Y5plM7KqZFqHn8nY1FHW39iS+F8sxchg=
Subject key identifier: 2F:49:D2:9D:E2:FD:AF:25:3F:24:43:2B:79:30:D5:07:7E:BB:EF:27
Authority key identifier: 73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
Certificate issuer: /CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Certificate serial: 019E21361B0766143DCDABE09CBE1490370E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
Manifest number: 0830
Signing time: Wed 13 May 2026 12:00:54 +0000
Manifest this update: Wed 13 May 2026 12:00:54 +0000
Manifest next update: Thu 14 May 2026 12:00:54 +0000
Files and hashes: 1: 5-xO46xG92m4RLESqBYUlz1rTO0.roa (hash: VW7h/KCsNr8SieeOMajNaHxkUL9nYiq4PR2CnWkp8G8=)
2: czFVtC-vxzVab8gJx9nM9bL4zcI.crl (hash: 0ir7wkjiTQpmRLnr78cN+DgTjxQ2N3l/SJewiQpHYeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:36:1b:07:66:14:3d:cd:ab:e0:9c:be:14:90:37:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733155b42fafc7355a6fc809c7d9ccf5b2f8cdc2
Validity
Not Before: May 13 12:00:54 2026 GMT
Not After : May 14 12:00:54 2026 GMT
Subject: CN=2f49d29de2fdaf253f24432b7930d5077ebbef27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:38:bd:3a:df:40:d5:80:ca:83:07:42:70:
ed:c5:de:19:0b:9f:9b:66:d2:9a:53:d3:c8:b0:23:
f0:50:6e:2c:0c:f4:89:50:77:e5:e0:15:5c:70:9d:
15:a0:29:07:c6:8b:5f:ad:40:1a:64:67:ec:1f:3f:
20:d7:d3:5c:6c:b8:8b:44:27:31:0a:4d:3d:1c:82:
79:71:96:4f:70:73:73:4e:b8:58:52:0a:03:bd:76:
c0:d3:89:e6:11:9f:61:f3:32:c0:bd:31:bf:00:23:
05:50:93:e2:53:5f:ed:e7:ad:96:3f:92:c9:2d:fb:
b9:82:d6:8a:e1:92:45:79:7f:7f:0b:ea:65:26:c1:
5a:78:b9:11:8d:63:c0:c1:ad:23:a1:6a:55:7a:d8:
c7:8b:a7:fe:1b:bc:1e:f5:54:c5:bd:3c:92:2a:9e:
f3:69:74:09:7f:06:6a:d2:fb:38:61:cb:92:fe:01:
80:2b:cc:7e:8e:6e:43:a5:a4:78:19:70:10:f4:b1:
b5:84:1d:18:0f:b5:97:35:2f:e0:36:03:c9:44:96:
df:19:1e:75:6c:4c:74:c0:80:98:f6:97:ea:97:b1:
91:2a:26:83:28:c7:f3:46:4c:4a:1c:b5:a7:af:4b:
4f:b5:a0:91:81:3a:68:b2:4e:94:cb:17:4c:f0:9a:
b1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:49:D2:9D:E2:FD:AF:25:3F:24:43:2B:79:30:D5:07:7E:BB:EF:27
X509v3 Authority Key Identifier:
keyid:73:31:55:B4:2F:AF:C7:35:5A:6F:C8:09:C7:D9:CC:F5:B2:F8:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czFVtC-vxzVab8gJx9nM9bL4zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/4ceff0-0ae4-414c-a0f6-e51e6ef5d3b1/1/czFVtC-vxzVab8gJx9nM9bL4zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:57:ca:3a:c9:ae:5f:1e:a7:4d:0a:b2:b0:29:b2:eb:27:fc:
4c:0d:f1:d1:0b:6d:c4:a0:2e:dd:e5:36:10:70:96:89:c1:ef:
51:6c:be:3b:f6:cd:8b:9c:06:e6:c6:38:48:6a:65:e6:2b:70:
b3:14:b1:4c:69:de:06:39:f6:50:d5:fa:43:2b:c5:fd:a7:3d:
34:a5:d8:07:69:3e:6d:1b:44:d4:9a:ab:14:92:16:36:29:bb:
e5:c3:d3:ef:5d:15:a5:e0:64:51:1e:5b:00:14:3d:2b:61:5c:
a3:66:54:ed:92:81:08:62:1d:80:d7:ec:21:46:17:d2:b6:a9:
39:9e:84:85:fd:17:a7:28:18:4b:6b:0c:c9:60:19:9d:e7:7a:
8d:d3:fe:29:f3:a6:c4:8d:80:ff:05:99:1b:a6:a9:98:ad:c7:
c1:c9:12:2d:e0:73:47:50:fc:20:e3:a3:83:75:5f:57:68:8e:
e7:54:00:4a:21:57:cf:71:88:dd:bb:4d:bc:a7:06:58:d4:bd:
14:5f:ba:45:4f:62:12:a5:79:c1:f0:3a:24:fd:2b:88:e6:69:
94:3c:2b:32:5f:f6:22:2c:dd:63:de:7d:f8:44:55:d9:3f:b5:
a5:b7:93:c1:31:ae:a1:5d:8f:ff:e3:83:20:3a:e5:91:25:ec:
8c:25:ec:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:25:54 2026 by rpki-client