Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: XzUjQY2KtTRxhhnshGI9sZVfuq0tJ6d075cec0QAwns=
Subject key identifier: 27:AE:07:E3:2D:70:58:79:F0:8F:F0:60:D8:F8:6E:88:DA:7D:BD:45
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019CAD5A1BDB871B27FC33B6ABC950CE54C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 1843
Signing time: Mon 02 Mar 2026 07:01:29 +0000
Manifest this update: Mon 02 Mar 2026 07:01:29 +0000
Manifest next update: Tue 03 Mar 2026 07:01:29 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: YOK5UB8auT2soykDnltaMD58LH9ERy9pI/w+vnIuRI0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:1b:db:87:1b:27:fc:33:b6:ab:c9:50:ce:54:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: Mar 2 07:01:29 2026 GMT
Not After : Mar 3 07:01:29 2026 GMT
Subject: CN=27ae07e32d705879f08ff060d8f86e88da7dbd45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ed:20:ca:11:02:cf:a9:c0:48:b0:a4:47:54:
db:af:3f:d4:c6:79:9d:1f:4b:6e:eb:16:d6:7d:5e:
24:3c:54:bb:e0:5c:7e:7d:18:11:31:db:52:27:da:
e6:01:a7:07:89:e3:85:ee:8a:1d:c1:f7:db:bf:21:
c5:8e:5d:9a:ac:2c:c3:5f:9e:87:62:22:2d:de:54:
9b:ff:25:b7:11:16:c6:fc:0b:59:b3:31:b4:bf:0c:
bc:01:dd:9a:70:b6:3f:cc:53:8c:ee:5c:87:85:11:
8a:ae:88:8c:e1:b8:81:67:b9:05:e1:fc:f0:16:bb:
34:73:2e:48:8b:11:14:3d:f7:28:22:92:f1:12:08:
e7:be:75:ec:85:f9:a2:a8:74:b0:e3:54:61:98:ce:
02:fd:18:a9:c0:46:48:e9:3e:f0:54:8c:69:b9:18:
ef:15:ea:82:85:c8:48:64:3e:1a:7b:e8:de:ec:de:
99:48:b0:85:72:c1:44:d7:88:a5:47:b4:27:15:3a:
b3:d5:5c:92:db:80:c4:34:7b:c8:53:0f:4d:15:30:
eb:67:c5:0d:73:74:ec:78:d4:e0:55:2e:2a:74:bc:
ba:b6:a9:9e:90:cb:12:ba:d5:b0:7e:6d:b8:22:85:
8d:eb:07:b6:d6:d4:83:9a:07:7a:d5:fb:20:3b:1c:
70:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AE:07:E3:2D:70:58:79:F0:8F:F0:60:D8:F8:6E:88:DA:7D:BD:45
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:2c:95:f4:e2:cc:aa:bf:30:d5:ae:28:8d:8f:4e:8f:4b:08:
ae:39:1b:1a:f0:38:bf:73:e2:15:3a:17:8a:9e:47:d8:d0:b6:
e4:a0:d1:b4:ae:f1:8d:e1:38:b8:4e:8c:e7:cf:c0:6a:2e:ef:
72:c6:22:49:e1:a1:fc:c9:ae:d1:89:39:ed:3e:21:b8:74:64:
7c:a7:5d:1f:d4:8d:eb:97:fd:69:dc:a7:bc:45:df:aa:5a:bd:
ac:32:5b:6c:88:91:f2:88:ad:be:87:c5:77:68:6e:1f:7a:e8:
45:4a:78:d7:5e:f9:bd:6b:c8:d0:da:c3:96:75:a0:2a:aa:6b:
d5:72:60:39:c1:bf:fe:10:d4:2a:fc:bd:91:b8:f5:1a:50:c9:
0c:5c:eb:32:23:f5:39:5d:cb:98:97:78:ec:f9:d7:83:f5:51:
d1:9f:3c:7c:a3:5f:01:0c:7a:dd:b4:9c:e9:9b:d5:37:89:54:
82:23:d7:b9:5b:d3:bd:d7:56:f8:b9:84:2a:dd:d3:30:4a:ce:
18:e1:df:9d:37:41:57:b5:19:83:a6:9a:bf:62:ba:6a:c2:39:
6c:84:2f:a3:09:ac:99:75:43:20:52:64:21:4f:74:55:ba:f3:
c3:61:41:5c:c2:34:6f:94:70:83:56:da:57:d1:1b:84:54:40:
11:9e:96:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:11:34 2026 by rpki-client