Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: hgPC/SXnv5Q4lh6uQp80jQmUkHnLh1YwifYY90N9ZU0=
Subject key identifier: BE:BA:7B:93:9D:A3:3F:5E:11:6E:AF:97:51:91:0A:58:15:65:41:30
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019E1C46F5B19EA67A3410E903618E4E45C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 1901
Signing time: Tue 12 May 2026 13:01:12 +0000
Manifest this update: Tue 12 May 2026 13:01:12 +0000
Manifest next update: Wed 13 May 2026 13:01:12 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: NjcFdhN0de/F5BdXGZ2h1MClV0OOxD0FhoU25OnWBDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:46:f5:b1:9e:a6:7a:34:10:e9:03:61:8e:4e:45:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: May 12 13:01:12 2026 GMT
Not After : May 13 13:01:12 2026 GMT
Subject: CN=beba7b939da33f5e116eaf9751910a5815654130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e0:2f:70:d3:10:96:b1:60:37:c3:60:18:96:
8c:bf:b1:c7:fe:f9:b6:68:e3:f4:84:9f:2b:da:30:
f8:fb:7b:d2:b9:69:a1:33:31:35:df:33:1a:88:36:
ba:6c:a1:fe:ca:e6:36:2c:37:fd:c0:b6:29:51:5e:
7c:84:f4:6d:ad:1e:fd:c3:f6:08:88:34:d1:4d:5a:
67:f2:9a:eb:6e:f9:51:d8:77:67:4c:df:97:1d:95:
81:fd:45:30:de:47:7a:6a:58:29:d8:9c:02:df:81:
a7:70:5c:04:77:d4:97:f5:c6:41:fb:a9:c8:28:3e:
98:20:76:21:64:71:ac:fa:7b:a2:95:0b:1d:ce:47:
07:20:b7:89:d0:3c:70:02:4d:45:f6:0d:36:2b:f1:
d1:cb:c1:36:da:9d:88:f6:da:d9:9b:b2:89:2f:83:
60:64:04:47:13:50:1e:85:b2:c3:88:c7:40:02:5a:
0d:cf:18:eb:d4:5b:7e:eb:7e:29:a9:be:45:3d:f8:
a5:0e:48:49:a1:39:5b:cb:b9:8a:1e:24:77:15:a4:
ec:77:59:dc:9d:15:c0:4e:a7:dd:c7:37:e3:a9:00:
2c:79:86:ff:28:90:35:b9:4b:f1:ec:2c:b7:f1:86:
69:71:3a:a2:08:5d:52:43:75:af:e6:60:32:d2:76:
d7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:BA:7B:93:9D:A3:3F:5E:11:6E:AF:97:51:91:0A:58:15:65:41:30
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:a6:ce:85:ba:8d:4e:2e:bf:b4:9a:58:34:80:f8:2e:13:ed:
0c:63:88:67:85:0c:6e:12:5f:e4:73:ab:80:9f:5f:aa:ae:00:
3a:d4:e2:6b:6c:fd:1a:0e:f5:58:36:0a:7f:73:78:14:23:9c:
65:6c:92:41:01:99:2b:9e:6c:90:2a:52:c0:22:d0:17:3a:40:
3e:05:c9:33:f1:86:00:ed:fd:c9:22:c7:84:58:4d:8d:a8:8b:
d0:df:6a:d0:03:d0:30:ab:cd:36:12:36:a8:1d:6d:04:91:eb:
89:5c:2d:b6:b6:d8:6a:72:bf:02:78:d2:26:3e:e2:55:11:96:
9f:00:0e:ab:b9:7b:d8:a9:72:6f:77:3a:b8:7b:9e:01:b2:88:
70:72:33:c1:75:54:d5:d8:43:1a:10:5b:fc:7f:e6:15:12:6b:
bb:04:d2:a7:83:5a:74:fd:5b:44:d7:7d:59:81:1c:71:6a:1f:
d3:4b:48:25:ed:92:f9:a3:cc:84:f9:c5:79:b2:39:16:52:77:
56:d2:83:7d:a5:d3:69:48:b2:5d:c5:51:d9:07:8c:da:7d:ea:
0f:6c:83:66:99:11:e6:74:c4:88:85:2a:21:64:d8:4e:55:3f:
44:72:e1:98:08:12:34:ae:7f:df:6c:83:57:31:c4:9e:29:e7:
31:04:03:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4cRvWxnqZ6NBDpA2GOTkXCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5OWEzMTY1YzQwMDdhOTQwMTMxYTMyN2NjNzdjYzIyMWNj
MTY5ZDkwHhcNMjYwNTEyMTMwMTEyWhcNMjYwNTEzMTMwMTEyWjAzMTEwLwYDVQQD
EyhiZWJhN2I5MzlkYTMzZjVlMTE2ZWFmOTc1MTkxMGE1ODE1NjU0MTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eAvcNMQlrFgN8NgGJaMv7HH/vm2
aOP0hJ8r2jD4+3vSuWmhMzE13zMaiDa6bKH+yuY2LDf9wLYpUV58hPRtrR79w/YI
iDTRTVpn8prrbvlR2HdnTN+XHZWB/UUw3kd6algp2JwC34GncFwEd9SX9cZB+6nI
KD6YIHYhZHGs+nuilQsdzkcHILeJ0DxwAk1F9g02K/HRy8E22p2I9trZm7KJL4Ng
ZARHE1AehbLDiMdAAloNzxjr1Ft+634pqb5FPfilDkhJoTlby7mKHiR3FaTsd1nc
nRXATqfdxzfjqQAseYb/KJA1uUvx7Cy38YZpcTqiCF1SQ3Wv5mAy0nbXTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL66e5Odoz9eEW6vl1GRClgVZUEwMB8GA1UdIwQY
MBaAFAmaMWXEAHqUATGjJ8x3zCIcwWnZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1pveFpjUUFlcFFCTWFNbnpIZk1JaHpCYWRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mMWYwYTAtZGEzYy00ZDk1LWE2Mzgt
NTA2NjcyNzY5ZDljLzEvQ1pveFpjUUFlcFFCTWFNbnpIZk1JaHpCYWRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9mMWYwYTAtZGEzYy00ZDk1LWE2MzgtNTA2NjcyNzY5ZDlj
LzEvQ1pveFpjUUFlcFFCTWFNbnpIZk1JaHpCYWRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf6bOhbqN
Ti6/tJpYNID4LhPtDGOIZ4UMbhJf5HOrgJ9fqq4AOtTia2z9Gg71WDYKf3N4FCOc
ZWySQQGZK55skCpSwCLQFzpAPgXJM/GGAO39ySLHhFhNjaiL0N9q0APQMKvNNhI2
qB1tBJHriVwttrbYanK/AnjSJj7iVRGWnwAOq7l72Klyb3c6uHueAbKIcHIzwXVU
1dhDGhBb/H/mFRJruwTSp4NadP1bRNd9WYEccWof00tIJe2S+aPMhPnFebI5FlJ3
VtKDfaXTaUiyXcVR2QeM2n3qD2yDZpkR5nTEiIUqIWTYTlU/RHLhmAgSNK5/32yD
VzHEninnMQQD/Q==
-----END CERTIFICATE-----
Generated at Tue May 12 21:20:45 2026 by rpki-client