Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
File: CZ-qshYRGNsbd8GnTszLc-doHDY.mft (raw, json)
Hash identifier: qIse3k7ThnFoGIQt93pRr4FnEJfHbAxUqoSlkE6vIbY=
Subject key identifier: E7:0E:53:EC:BD:D5:54:BA:0A:D0:8F:93:B3:9C:9A:FA:8A:F7:5F:F3
Authority key identifier: 09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36
Certificate issuer: /CN=099faab2161118db1b77c1a74ecccb73e7681c36
Certificate serial: 019E9093F021D54B92E1A74391C612C9482C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
Manifest number: 0364
Signing time: Thu 04 Jun 2026 03:01:14 +0000
Manifest this update: Thu 04 Jun 2026 03:01:14 +0000
Manifest next update: Fri 05 Jun 2026 03:01:14 +0000
Files and hashes: 1: B4ECW0jtt5KyrtkmlUhbFQBxuus.roa (hash: Z8JjmJ/Yv+fCZ4euDC+I0rty80LYQ117ydvucBAt8Uw=)
2: CZ-qshYRGNsbd8GnTszLc-doHDY.crl (hash: ImL7WiDhDWymhNWlEmYjippLcDvZEO/Upn67Clxp4hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:93:f0:21:d5:4b:92:e1:a7:43:91:c6:12:c9:48:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099faab2161118db1b77c1a74ecccb73e7681c36
Validity
Not Before: Jun 4 03:01:14 2026 GMT
Not After : Jun 5 03:01:14 2026 GMT
Subject: CN=e70e53ecbdd554ba0ad08f93b39c9afa8af75ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ae:aa:ac:88:3c:d9:5b:fc:05:40:f1:09:7b:
54:46:97:4e:ad:00:d1:29:8f:56:74:f1:55:29:15:
dc:f9:7e:31:28:78:31:54:3d:a3:c1:67:94:23:f4:
82:e7:28:5d:29:04:af:76:a8:f3:9e:42:e4:5e:e7:
63:47:4b:17:97:db:84:60:00:32:5e:c1:20:f7:eb:
4c:cc:6b:4a:47:5e:df:fb:b9:e2:c6:da:16:6b:ba:
31:d1:0b:6b:6a:fe:f9:5e:9b:34:e0:1c:ae:6a:4a:
0d:9b:29:1c:01:1c:dd:67:15:33:c7:9f:74:39:b8:
ea:b0:cd:17:a6:51:d1:47:13:7d:2a:47:4f:a3:96:
ce:a4:cd:10:cb:ad:da:cd:9f:8c:77:3b:b3:21:f4:
3b:d3:5b:b4:0b:f5:b0:64:f7:bb:a7:9a:97:40:a6:
84:61:c2:ca:dc:bb:40:4a:dd:57:a1:05:89:9b:fb:
75:a9:27:04:70:3b:7d:85:94:4c:4c:6f:9e:71:62:
16:d6:96:da:d9:88:79:db:6b:73:db:b9:b8:70:3a:
5e:41:b0:7a:10:fd:07:53:59:eb:ff:3d:c1:ff:bb:
b4:c5:60:98:16:59:a7:66:2d:2b:da:fc:c9:68:d4:
06:85:16:64:04:f7:4f:e0:a5:b2:f5:63:8b:e7:36:
a5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0E:53:EC:BD:D5:54:BA:0A:D0:8F:93:B3:9C:9A:FA:8A:F7:5F:F3
X509v3 Authority Key Identifier:
keyid:09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:dd:08:06:1e:ad:19:40:5d:44:b3:d0:af:1f:a1:c2:de:b5:
62:8d:a8:6b:ca:05:39:9e:32:2a:ea:0e:60:d9:38:20:05:76:
f2:22:27:2e:5c:f2:8a:7e:dc:60:97:90:8a:ee:68:6a:aa:f0:
19:ce:78:f0:65:49:3c:1f:ed:8b:37:f2:23:49:1d:cc:31:01:
aa:c6:9c:18:e7:ba:7c:84:5c:b4:55:f0:de:4d:07:14:58:66:
fd:54:f6:8d:42:29:1a:24:0f:34:39:48:f1:80:86:c7:2c:9a:
1d:ef:ef:8a:3d:02:93:b6:89:f2:d9:7d:ff:46:17:3c:d9:c2:
33:c6:f2:eb:c3:e6:44:33:64:9b:8b:be:3b:ee:2b:bc:43:fc:
35:10:9b:32:02:20:ab:cf:82:e7:8e:4e:22:4a:04:82:a0:b3:
b1:34:a6:95:b1:7d:b6:e5:94:15:b1:3c:f0:34:d5:0a:07:90:
0c:e6:0a:13:ec:c2:6f:85:66:c0:cb:56:f8:8d:21:21:02:f6:
1a:ba:ba:3e:7c:bd:87:ac:fb:cd:99:fb:da:95:59:69:9e:e5:
cf:15:7a:e5:86:5f:66:22:f6:8b:ac:cd:4a:62:28:8a:9a:98:
f1:04:11:de:7d:b3:d6:15:72:89:24:e4:0b:49:0d:be:c7:6f:
88:7f:ef:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 05:16:23 2026 by rpki-client