Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
File: CZ-qshYRGNsbd8GnTszLc-doHDY.mft (raw, json)
Hash identifier: ZSY0RZsWiNTkhF8b0VKgi7FbSMnnVjoA1jp7EYQ/Xtg=
Subject key identifier: 25:61:8C:F8:AE:FA:41:17:35:3A:82:8A:FD:93:BA:52:1C:6B:51:27
Authority key identifier: 09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36
Certificate issuer: /CN=099faab2161118db1b77c1a74ecccb73e7681c36
Certificate serial: 019E8EA58FAC24780A129954091A921A1646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
Manifest number: 0363
Signing time: Wed 03 Jun 2026 18:01:15 +0000
Manifest this update: Wed 03 Jun 2026 18:01:15 +0000
Manifest next update: Thu 04 Jun 2026 18:01:15 +0000
Files and hashes: 1: B4ECW0jtt5KyrtkmlUhbFQBxuus.roa (hash: Z8JjmJ/Yv+fCZ4euDC+I0rty80LYQ117ydvucBAt8Uw=)
2: CZ-qshYRGNsbd8GnTszLc-doHDY.crl (hash: OG/MLLgvbRWZhXe/gy2meagi14ghbRCciquou7LxTd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 18:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:a5:8f:ac:24:78:0a:12:99:54:09:1a:92:1a:16:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099faab2161118db1b77c1a74ecccb73e7681c36
Validity
Not Before: Jun 3 18:01:15 2026 GMT
Not After : Jun 4 18:01:15 2026 GMT
Subject: CN=25618cf8aefa4117353a828afd93ba521c6b5127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fa:9e:05:05:26:cf:24:3c:04:ef:37:3d:43:
0b:f2:89:3e:88:c5:1f:00:b0:5b:80:fb:bd:af:8d:
fe:ca:48:ad:32:37:b9:e6:b3:bb:9c:7d:7f:c4:b3:
b1:02:bf:16:d4:01:d4:8c:91:fc:fd:93:ef:d3:39:
ce:d9:2e:1d:7a:0f:8d:36:b3:7f:c1:e4:2a:8c:cf:
3e:39:ff:96:90:27:b2:e7:55:dc:7a:3e:f3:1a:67:
8c:c4:fb:81:13:15:5a:c3:32:2e:77:f3:dc:4a:93:
e0:6a:50:54:71:6f:a6:eb:bc:a5:0d:65:b0:70:bf:
f1:f5:84:ea:79:68:0c:36:ea:a2:32:fd:b8:b6:59:
96:85:fd:ce:1d:5e:ee:11:d2:89:7a:9e:d5:bd:1d:
83:b5:10:ad:7c:e9:ea:07:c2:3c:83:d9:a0:ad:35:
f7:63:bb:69:35:f0:bf:4c:92:d9:74:fd:70:fa:31:
98:d8:7a:c3:63:f4:ab:19:96:2d:e3:85:7a:ad:77:
29:4c:5c:7a:7c:c0:1e:6e:ae:86:7b:07:88:23:3e:
4b:54:71:fb:ad:12:f7:ac:76:da:18:68:ae:a3:93:
db:48:8d:91:95:a6:7b:dc:fd:4c:c2:bc:63:b2:e2:
46:80:52:e1:83:de:b7:e6:5f:35:0e:cd:86:34:65:
45:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:61:8C:F8:AE:FA:41:17:35:3A:82:8A:FD:93:BA:52:1C:6B:51:27
X509v3 Authority Key Identifier:
keyid:09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:39:f2:10:6b:99:92:66:b9:85:58:27:6e:63:82:c1:0f:2c:
8f:6f:af:47:02:cc:a6:91:30:6d:ec:f2:fe:26:72:56:90:59:
af:e0:a5:97:30:69:65:84:ef:87:a4:71:9b:36:62:9c:06:8f:
a8:b5:23:52:ee:c7:2c:d0:a0:e1:86:f0:0a:fe:8f:fc:e4:ab:
53:16:4e:13:d3:c4:2e:06:48:70:9b:f0:2d:e3:28:ec:d7:3b:
eb:1c:5d:17:55:d2:7c:47:03:c9:ea:4e:f2:81:16:86:ec:cf:
c1:24:50:d0:e6:69:21:4f:cd:66:0b:1e:8c:bf:48:0a:ad:a6:
8a:df:3d:be:5e:55:16:8e:c6:ec:7b:5c:8a:b6:b6:60:4a:6a:
81:fd:24:7e:0f:c6:7b:50:d5:4b:32:ff:6f:b7:01:7c:57:65:
8e:7a:a9:06:9f:ff:eb:f4:30:ca:3c:27:8a:2f:07:4e:9b:c8:
fa:35:9b:d5:34:36:a3:7c:a2:21:67:b8:6f:07:93:f7:82:c5:
9c:97:fb:30:52:1c:f6:1c:3e:fc:db:25:71:82:34:55:1a:0f:
65:42:4e:45:fd:c4:68:ee:fb:f7:9a:df:17:2a:8d:1a:78:c3:
bf:8c:99:be:00:b0:54:82:ec:d4:36:49:5b:db:93:88:e1:02:
18:b2:53:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 04:17:40 2026 by rpki-client