Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: HuAfvh8agB1SCfuT7q+IFYLWOKUkoWauorvisW/4XtQ=
Subject key identifier: C1:F8:03:FE:49:D2:74:27:EA:7B:A8:D6:28:CD:4B:48:31:F4:C1:B3
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019EC25C2DE1DD983339488905C89F2AB3BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 1957
Signing time: Sat 13 Jun 2026 19:01:21 +0000
Manifest this update: Sat 13 Jun 2026 19:01:21 +0000
Manifest next update: Sun 14 Jun 2026 19:01:21 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: dLw3yaqxMBMc94auWk0QutDKrt8SFM2Ms+TFUw2UCQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5c:2d:e1:dd:98:33:39:48:89:05:c8:9f:2a:b3:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Jun 13 19:01:21 2026 GMT
Not After : Jun 14 19:01:21 2026 GMT
Subject: CN=c1f803fe49d27427ea7ba8d628cd4b4831f4c1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b7:ea:f7:cc:8f:24:d1:9e:1e:88:22:a5:11:
1d:7e:41:21:4e:ea:87:55:f1:e1:75:56:00:96:d9:
f9:b8:d2:1d:61:f5:0f:81:6e:a4:08:4b:91:17:4d:
fc:af:44:50:f7:dc:40:f0:68:d8:1b:d6:4e:ae:ab:
90:ec:b7:3c:1e:29:95:7d:50:70:0a:f1:7a:be:c3:
06:73:83:a5:dc:e6:66:6d:23:6d:6b:64:3d:d3:5b:
65:1e:c5:b6:19:1e:35:85:0e:dc:c1:35:97:ae:68:
8d:f8:16:83:20:a0:9c:95:5b:40:cd:ad:35:bc:dc:
4b:4e:55:a0:bc:02:3d:4a:16:12:36:a7:d1:ed:c2:
a1:4d:e6:d8:ee:39:f3:fa:82:94:67:f5:27:83:41:
ee:b2:83:21:68:d0:df:da:be:3a:2a:56:9d:f2:3c:
33:7e:ba:f8:60:19:9a:b7:14:fa:d6:c8:49:d9:5c:
0d:7c:be:8b:96:ad:4a:27:92:f3:55:24:e5:91:15:
e7:e6:ce:62:61:a9:08:3a:2b:93:3a:81:be:0e:54:
89:32:39:8b:e6:1b:b4:ce:3e:82:d8:b0:83:ca:d2:
a5:e9:f8:42:3f:e2:73:bc:97:00:c1:42:2f:1c:21:
a1:a5:8f:0f:2c:cd:52:53:ed:8c:07:bf:b5:bb:5a:
6d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F8:03:FE:49:D2:74:27:EA:7B:A8:D6:28:CD:4B:48:31:F4:C1:B3
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:90:0b:eb:42:aa:bf:6c:0e:00:c9:71:11:f3:02:92:ed:a2:
17:98:eb:9e:4b:11:59:3c:1d:c3:37:d9:6c:f3:b9:ae:2b:fb:
10:33:96:96:16:ff:63:18:13:ea:8e:48:26:59:f9:47:72:a4:
b2:c3:68:06:cd:5f:50:e4:44:15:98:74:60:ba:c6:f3:67:e0:
23:2a:2a:2d:6b:46:29:14:1b:63:76:75:43:31:82:c8:85:b1:
80:a9:c4:fa:80:e0:c2:c3:38:a3:bf:ce:83:a8:b0:e4:5b:95:
16:04:72:72:bf:f5:a1:4c:64:1f:62:f7:0e:f8:93:c7:10:e6:
36:c1:82:01:52:d1:9a:9d:83:00:01:29:8a:44:b5:ef:c3:73:
b4:cb:c4:79:df:ac:7d:40:ea:be:28:29:8a:f6:cd:c6:ad:a0:
ee:cb:58:84:76:dd:98:36:54:94:90:8f:39:11:cf:41:68:e4:
c3:fb:07:4e:77:50:94:51:7d:49:91:13:06:7d:1d:08:05:14:
aa:dc:a1:12:ee:0d:9b:04:c4:6c:a9:5d:bd:91:dc:3d:b2:23:
7f:1b:09:8d:ea:c1:03:db:98:b7:ad:db:a0:a5:c9:68:46:48:
87:7e:cd:b5:91:0e:d4:25:29:ad:8b:14:12:0c:65:d3:36:e1:
c2:c3:f4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:45:53 2026 by rpki-client