Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
File: czsHKLegVDWEws0LSLdHjEGU7wo.mft (raw, json)
Hash identifier: zWrDt1i5I1/Q6sQpITpWSQOifO7qiMdzJcjYvNM6ZU8=
Subject key identifier: 37:BF:7E:66:67:66:AC:B0:14:0D:8B:C1:BB:31:EC:E2:75:E2:E8:86
Authority key identifier: 73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A
Certificate issuer: /CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a
Certificate serial: 019E1E35106B246F4BBF9231ECE3852F3737
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
Manifest number: 0A3E
Signing time: Tue 12 May 2026 22:00:54 +0000
Manifest this update: Tue 12 May 2026 22:00:54 +0000
Manifest next update: Wed 13 May 2026 22:00:54 +0000
Files and hashes: 1: Oce8w_FStQrxz5-sGyZ5GI_yylQ.roa (hash: /gUG2XD9ZyXjCehDc7TUgIzStA7kApp9jArOXsYwwL4=)
2: ZQWSBrSbVBwfkGrwKFFXvU4ra7w.roa (hash: r+NK3YQEVsT0+KvKCit8WLyB+4wd+LAbIvtambZpbro=)
3: czsHKLegVDWEws0LSLdHjEGU7wo.crl (hash: OnaT+/tbh7laMYL7rf3jX6bbLAbElk9AvBZxOl17tWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:10:6b:24:6f:4b:bf:92:31:ec:e3:85:2f:37:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a
Validity
Not Before: May 12 22:00:54 2026 GMT
Not After : May 13 22:00:54 2026 GMT
Subject: CN=37bf7e666766acb0140d8bc1bb31ece275e2e886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:84:c8:97:39:d7:54:79:a9:2d:b6:0c:dc:1d:
fb:68:f9:0a:55:a5:5d:d5:43:f1:dd:dc:9d:e9:8b:
81:da:58:8b:d5:64:3f:dc:d4:8f:21:8a:71:c7:34:
53:9f:37:12:cd:94:ac:51:35:25:d4:d9:02:c6:58:
6a:88:8c:39:50:9a:f1:52:ca:00:03:38:c1:3d:9d:
6b:94:56:dc:9e:be:74:23:9d:ca:9c:8f:13:70:5e:
39:87:48:27:f0:de:99:c3:15:ea:55:85:9e:43:36:
a5:91:3a:c9:52:12:7a:34:57:6b:23:7f:31:b6:89:
eb:bb:44:9c:1b:a6:18:38:ed:aa:54:78:d9:f8:1b:
81:3c:a1:64:49:bf:80:a3:88:4f:2c:b5:fa:24:e1:
52:5f:14:3b:35:9c:7b:7b:6e:08:c7:f2:04:5e:86:
46:7a:d1:f9:99:bb:31:fe:4b:07:85:d0:0f:56:a0:
f6:fb:93:55:6c:73:da:b3:dc:5c:37:49:72:eb:5d:
a2:85:cd:61:1e:86:67:1c:a7:92:fb:3a:49:8c:18:
2d:48:05:9c:18:35:f5:41:f8:32:6d:8e:2d:b7:b0:
43:76:cc:24:fe:f9:c3:a2:d2:0c:b6:ab:fc:42:27:
02:27:dc:50:38:ce:36:f6:c2:ce:25:5a:e3:97:d4:
c2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BF:7E:66:67:66:AC:B0:14:0D:8B:C1:BB:31:EC:E2:75:E2:E8:86
X509v3 Authority Key Identifier:
keyid:73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:91:fb:18:54:99:bd:6e:a3:4a:28:12:4a:e5:21:18:42:06:
69:ad:81:55:7e:98:49:ab:0e:75:6f:a3:86:b2:d1:23:37:bb:
08:d3:05:25:55:05:8f:4e:f7:bd:57:31:af:19:15:06:f8:80:
5e:29:2a:3d:d9:5c:6a:75:06:bf:37:2c:ac:89:be:08:6b:ef:
b8:73:09:39:ad:76:50:a9:f8:09:46:6f:36:06:29:0f:9d:c7:
b4:ff:c1:b2:25:11:60:cc:69:dd:9a:b5:5d:01:42:57:41:b1:
72:49:9d:92:00:31:0e:3b:05:bc:b4:7e:42:41:88:ac:59:30:
85:da:e8:28:24:75:5b:08:b7:d1:76:eb:5e:19:e3:19:85:8e:
9f:aa:2f:18:bd:56:eb:4e:7d:ee:38:17:32:b5:4b:72:ae:2f:
98:aa:e7:31:cb:eb:bc:ad:e0:12:47:82:6f:9f:2d:07:9e:30:
50:46:cd:54:8d:a9:56:c8:b6:cb:b3:2f:2b:27:d0:84:7b:b9:
1f:ad:19:3d:31:90:3a:a8:9c:52:8b:79:8b:b7:42:b0:2c:ea:
7b:18:c2:f4:3d:67:89:4f:de:99:8d:8e:f6:49:96:d8:a4:ff:
e9:09:5f:b2:7b:68:90:46:1a:32:4c:55:ef:d6:2f:65:2c:98:
ab:db:6e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:44:05 2026 by rpki-client