Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: wHGr8Jywsjs4+c5Rl9XQ9JdlJmjYcJPQgGrPQvWIXAU=
Subject key identifier: 5A:3F:C0:9B:85:50:95:57:9A:DD:76:B3:B7:63:E7:CD:C7:AF:E9:5A
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019D9CD0EA9E6D1B4EDD861111ABD86B485F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 19:00:30 +0000
Manifest this update: Fri 17 Apr 2026 19:00:30 +0000
Manifest next update: Sat 18 Apr 2026 19:00:30 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: EhHzsz3hCKPDHTzrXdduTwdYy1gFiHbnWM2c3q+6/NU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d0:ea:9e:6d:1b:4e:dd:86:11:11:ab:d8:6b:48:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Apr 17 19:00:30 2026 GMT
Not After : Apr 18 19:00:30 2026 GMT
Subject: CN=5a3fc09b855095579add76b3b763e7cdc7afe95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:ec:7e:e7:4c:1d:e3:7b:eb:58:3b:fb:4b:
b3:04:14:3c:bc:66:7f:3c:49:f4:d8:1e:04:2c:19:
75:e2:db:3c:0c:a4:d3:67:f4:d8:79:eb:a6:b4:de:
89:af:bc:91:c4:f8:0d:9a:32:0c:78:29:5c:f8:30:
78:7d:17:3d:90:8c:2e:f5:ee:89:53:8b:d0:d4:1c:
58:e2:f0:fb:c2:17:71:30:51:e7:41:ea:2b:e2:aa:
65:04:66:8d:29:ea:cc:5e:33:05:6b:3d:09:df:36:
dd:07:9a:df:f4:df:2d:2a:fb:d4:2d:fa:89:21:80:
cf:2f:5b:05:32:93:dc:c3:90:2a:9b:83:17:3b:80:
64:36:6e:3f:12:8d:02:40:fd:52:df:01:ef:01:20:
7d:f0:3d:8e:ba:af:44:07:23:2c:69:a6:32:cd:4a:
75:5d:5f:22:e0:4f:f4:5d:59:97:82:b9:a2:c4:fc:
23:ba:2c:f4:13:b4:0b:24:cd:27:65:8c:13:9d:72:
ca:f8:54:80:be:af:91:7a:9f:3b:43:ab:c5:2c:84:
b4:ca:c5:bf:2a:08:bb:14:7b:79:82:dd:0a:8c:a7:
21:97:c9:9e:06:e8:6e:4b:f2:54:10:71:57:06:7a:
41:cd:d4:67:67:61:f8:75:fa:68:16:de:d2:a8:47:
7e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3F:C0:9B:85:50:95:57:9A:DD:76:B3:B7:63:E7:CD:C7:AF:E9:5A
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ab:84:36:50:79:89:99:87:38:e4:08:97:88:87:b1:ea:d7:
5a:9b:b1:9a:85:ba:56:c6:2c:a9:90:c4:97:bd:5d:bf:5f:18:
2c:30:45:b6:45:bb:d5:a6:45:11:43:66:ab:e8:06:f1:e1:0d:
d7:07:0a:11:27:74:a2:aa:70:9f:ae:3f:6a:24:bb:43:fb:f4:
b4:22:cd:41:e1:92:02:e0:95:ea:61:fe:71:1c:d9:44:0c:22:
d2:65:fb:c3:21:0c:8f:01:e9:9b:de:60:f9:f6:a6:3d:06:97:
44:7b:38:56:4d:1d:e0:2a:50:76:96:a0:41:0c:82:bf:4a:04:
76:ad:16:c9:2d:23:9c:ea:cd:6d:5f:72:d5:d4:b9:d4:5b:0b:
86:ee:54:87:c3:0b:16:06:9d:4f:cd:6b:08:66:69:a2:8a:28:
cd:ac:4c:65:43:15:b4:1b:5e:f4:e1:b6:2b:81:70:c2:2b:d0:
c1:2d:89:a8:b4:48:de:9a:57:63:0c:e9:e6:50:fc:91:af:96:
b0:b2:3a:40:95:07:ac:1c:ce:e5:de:44:98:a3:e9:44:2e:e9:
ae:a0:fa:06:2d:01:f2:21:8b:28:d8:82:fb:c0:5a:6a:c7:54:
46:b4:94:08:0d:b3:aa:9b:bb:ef:dc:c9:17:d4:a2:d2:14:ce:
d2:ef:9e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:02:20 2026 by rpki-client