Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: mmP5aZrLzf9T0J9bhf+9ZHIuTx5dwb+oAFms3OoLHfw=
Subject key identifier: 53:A0:F8:E1:7F:21:58:0E:9E:B2:7C:48:77:1F:13:AB:EF:82:22:22
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019D28F3337697F8F9502ED2F0EACC4B3554
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 07:02:00 +0000
Manifest this update: Thu 26 Mar 2026 07:02:00 +0000
Manifest next update: Fri 27 Mar 2026 07:02:00 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: SbKJdcD22RADeAhc6CW7nTZqHOBacUFSTF0zksc/Ano=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f3:33:76:97:f8:f9:50:2e:d2:f0:ea:cc:4b:35:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Mar 26 07:02:00 2026 GMT
Not After : Mar 27 07:02:00 2026 GMT
Subject: CN=53a0f8e17f21580e9eb27c48771f13abef822222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5d:d6:3e:c0:a2:30:c9:56:80:32:e8:fc:a0:
f6:c8:ad:31:71:01:eb:02:32:78:d9:56:e8:3e:e1:
0a:95:b2:25:19:b9:7d:24:68:85:d7:37:fb:74:42:
ca:87:28:fc:b6:e7:aa:41:be:15:e9:0f:28:a5:11:
0e:11:d1:88:86:59:70:f9:70:29:9c:a3:65:11:1e:
85:77:8a:ed:89:a1:9f:ba:ac:95:b8:f5:96:20:b4:
30:1b:5e:19:11:93:1c:50:5c:de:e6:5c:81:d0:11:
90:02:6f:d2:93:cc:82:ec:bb:cc:d4:f9:3c:b0:8e:
6d:eb:69:63:92:6e:3c:a7:34:fa:fd:57:30:cb:c6:
f0:43:58:0f:f2:f4:16:fa:15:0e:08:57:6b:51:eb:
1f:2d:ba:52:50:26:c5:77:03:c3:af:89:74:ab:17:
ce:76:da:fa:cb:e8:ff:59:e7:8a:ba:51:85:a3:8e:
3d:73:90:fe:89:7d:30:88:ff:80:d9:46:a5:80:6e:
a6:92:79:16:fe:84:b4:52:10:6a:f6:cf:13:6b:ae:
a6:94:3a:89:ed:fd:61:a3:f2:e4:9f:a0:9d:74:d2:
94:a0:ac:8f:ee:97:15:1a:2d:c6:0f:a9:e9:56:73:
3a:71:e1:d5:18:10:58:a8:64:b4:ee:1e:a0:9a:71:
40:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A0:F8:E1:7F:21:58:0E:9E:B2:7C:48:77:1F:13:AB:EF:82:22:22
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:c6:4d:ef:43:b0:b0:96:68:60:e0:b3:12:ee:ec:db:9e:cc:
ab:cd:e5:1d:a0:62:02:20:22:2e:fc:d8:bf:cf:f4:17:36:69:
e2:67:e1:77:ad:f2:f9:66:04:e1:43:c2:75:8e:bf:88:ce:aa:
80:46:3d:7f:42:be:32:64:d6:bd:ca:e4:14:36:06:6e:48:33:
e7:cf:bd:db:c9:8d:ad:6a:c6:0e:cd:6d:62:ac:88:ff:f7:08:
8a:99:ae:0f:fa:d5:8b:53:a1:8b:a9:27:75:98:c3:31:ca:5e:
e0:93:5d:12:38:05:1e:f0:e1:ef:fd:42:f1:ed:4a:05:a9:4f:
b6:e6:2f:bb:8a:06:d0:38:77:0c:9a:04:4a:5e:f8:37:75:59:
bb:d5:42:a6:a4:ac:44:df:35:11:c9:62:14:4f:5a:a4:85:e4:
07:75:32:36:10:6b:b2:0d:bd:de:b5:d0:98:6b:81:fc:f5:58:
e3:4d:51:88:1d:92:05:d5:a1:5c:0d:ff:73:6d:9b:ef:2c:5d:
45:13:dc:34:bc:12:32:27:dc:28:d3:0c:9a:3b:1c:f7:be:a3:
53:de:66:d9:d5:d5:3a:01:4a:c4:a1:64:4c:df:af:36:02:6c:
6e:87:90:e2:94:47:fe:45:f1:2e:11:2e:f6:21:66:d6:c7:d7:
e5:56:4f:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:56:48 2026 by rpki-client