Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: MeITJXUUj1P0OoUUHkILDonOk8t0vLmMlgtVBCYKlRA=
Subject key identifier: 23:4D:E3:7C:FC:14:63:B3:FF:A6:13:52:9F:16:8A:A3:9F:A4:70:D0
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 019D273B28043DC1A6D222B98A525E69B0D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 1405
Signing time: Wed 25 Mar 2026 23:01:21 +0000
Manifest this update: Wed 25 Mar 2026 23:01:21 +0000
Manifest next update: Thu 26 Mar 2026 23:01:21 +0000
Files and hashes: 1: a3EzX3WcmdhmQvwA-GnAI4JgEtw.roa (hash: C4cMB04OWyPRUy1OSkZ4yaaLwpazM0m/JqgEaW9Hrpg=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: Uxi08rXQEsZYIYm+su0O1tFSe9i7opDiU/gjmHkdFZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:28:04:3d:c1:a6:d2:22:b9:8a:52:5e:69:b0:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Mar 25 23:01:21 2026 GMT
Not After : Mar 26 23:01:21 2026 GMT
Subject: CN=234de37cfc1463b3ffa613529f168aa39fa470d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d1:c8:67:b4:f4:0b:f4:de:15:d5:37:92:69:
4d:9e:68:6e:3b:ad:5c:89:bd:fc:26:f1:26:b3:30:
d5:34:4f:3a:a6:92:db:f8:84:df:4e:48:c4:f8:ab:
f1:3f:92:4a:99:0b:9e:14:a9:06:26:95:fb:ec:3f:
d9:ca:66:73:5e:4e:d0:72:46:58:89:4f:53:ab:03:
ee:70:c2:59:2c:56:0c:e1:47:27:2a:9e:00:d3:67:
10:28:89:be:34:96:39:ad:22:49:22:f8:07:7d:a1:
26:e5:ef:57:eb:75:10:a1:53:65:81:71:15:3e:5a:
15:2a:68:ea:29:15:63:0c:ed:f6:27:75:93:8e:18:
a6:76:0d:21:28:da:8d:78:0a:6f:45:86:d2:b3:7d:
44:7c:b0:a5:37:a3:5e:f0:47:82:2f:bc:f7:1f:58:
4a:b2:82:9e:6a:f5:5c:3c:7f:7d:40:94:ff:77:ce:
7a:50:00:35:b3:ec:83:20:fe:31:b8:65:56:ca:ed:
34:24:5e:c9:9e:65:c7:cb:89:d1:00:53:aa:6b:ef:
3c:a2:da:80:31:94:20:e1:58:d3:ab:82:f5:40:4a:
dd:1c:ec:40:c2:1b:d4:dc:07:40:75:84:06:03:7e:
f6:a4:9e:5b:d4:2f:6a:2b:74:6f:3a:e3:fb:ad:13:
87:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4D:E3:7C:FC:14:63:B3:FF:A6:13:52:9F:16:8A:A3:9F:A4:70:D0
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:01:d0:82:91:3f:44:ec:84:50:83:54:1b:b2:5b:f3:23:0e:
d8:73:ae:89:2c:ee:5e:f1:03:04:50:e1:cb:2f:a8:27:53:03:
ed:82:08:c6:ef:99:12:97:a7:44:90:32:cd:75:ec:ff:04:0c:
56:d8:45:fc:96:91:93:08:28:d9:2d:27:a8:db:be:29:a7:67:
35:d6:f8:69:9c:79:f6:8a:e3:36:e1:d1:2a:91:86:d8:d9:15:
df:2e:ec:07:80:25:0b:a8:fb:a0:7d:0d:2a:46:be:22:dd:2c:
d3:79:98:e4:ac:91:af:eb:a9:78:24:82:74:e8:1b:af:05:ff:
9f:90:7f:e3:9f:09:b5:a1:97:56:40:0f:fe:3d:19:48:11:e2:
7d:d6:4b:80:88:59:d2:47:e9:71:cc:7a:f5:6e:42:6d:6f:aa:
69:7e:6d:98:97:ca:e7:5e:10:3d:95:b5:27:3a:28:db:40:f4:
32:39:58:97:ea:ba:46:73:6e:3a:31:4b:32:c2:05:e7:9a:66:
95:18:aa:f9:8e:11:5a:5b:a9:29:a2:db:db:5b:a4:0d:42:f1:
d3:28:df:3c:11:8f:22:68:90:95:8c:6b:6a:c8:36:20:7b:c4:
03:24:dd:30:af:38:85:c3:76:cf:66:7f:d8:4a:22:a2:72:2f:
12:91:13:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:06 2026 by rpki-client