Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: mseFFD/dDXSqMcBHGKJpTMkEd0RHNz9C+sZmooOWt5Q=
Subject key identifier: 53:4F:F7:C8:C4:25:D8:F3:2D:20:83:D4:36:E6:6A:E7:6D:76:EE:E2
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 019EF86EF0AEA098B96FF06AD6250F055EF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 0868
Signing time: Wed 24 Jun 2026 07:01:20 +0000
Manifest this update: Wed 24 Jun 2026 07:01:20 +0000
Manifest next update: Thu 25 Jun 2026 07:01:20 +0000
Files and hashes: 1: T0Q1-_qD3Ki2609r9NZI0IvfjS4.roa (hash: +nPlRWGkeYoja770vj9LfCl9js/SDYPB/SeIBGkWDVM=)
2: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: cmZR0L3eRg7q3/eL7ix4DWR8VLeu8SI5ijQNxBqAGzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 07:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f8:6e:f0:ae:a0:98:b9:6f:f0:6a:d6:25:0f:05:5e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Jun 24 07:01:20 2026 GMT
Not After : Jun 25 07:01:20 2026 GMT
Subject: CN=534ff7c8c425d8f32d2083d436e66ae76d76eee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8d:89:c0:1d:fb:e2:b0:06:50:16:dd:f9:74:
97:c3:52:09:3b:73:4d:4a:d5:ff:c0:25:44:e1:13:
2d:eb:f2:6b:2c:8e:37:fb:79:6c:77:4c:c5:e1:0a:
16:70:1b:53:46:a6:7d:88:67:fd:66:e6:03:60:5c:
34:82:74:a9:d5:3d:84:74:f1:a1:b1:37:bf:81:d1:
36:79:7d:c7:82:03:d4:28:49:47:a0:86:e3:13:98:
d5:d0:36:50:e6:09:d9:5e:43:0c:c9:1a:56:3e:d0:
55:94:ea:34:ca:56:2c:ea:73:24:df:db:0d:7b:db:
25:39:a9:90:9a:77:2c:f1:69:4b:64:22:11:19:10:
d2:75:ac:74:b5:7c:c8:ea:7d:ae:e4:74:3e:77:4d:
6c:7e:3d:45:e8:f3:31:8c:d5:95:88:f8:d6:54:a2:
50:4d:7b:a3:db:f3:20:fa:c6:85:ef:e3:05:a1:57:
05:7d:17:d2:bc:8c:71:47:46:d3:64:12:33:c9:7d:
f9:07:4d:16:7a:b3:cb:22:6a:35:09:af:f9:dd:f9:
99:8e:73:7e:83:e3:21:16:27:df:35:db:3d:cb:f0:
48:2f:cd:f6:76:88:e8:40:4a:e5:60:1f:28:fb:62:
ff:3c:3b:74:b0:5c:d1:49:60:e5:a1:1e:a7:7f:3e:
7b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:4F:F7:C8:C4:25:D8:F3:2D:20:83:D4:36:E6:6A:E7:6D:76:EE:E2
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:64:41:72:25:06:ff:1a:1b:a8:b6:4e:96:46:14:d1:1b:14:
7a:2e:6d:8b:53:d4:f8:2c:1f:6d:c7:38:1c:10:2b:08:c4:ab:
f1:ec:79:3a:fd:a3:43:65:5a:70:21:ae:d4:fc:f0:0b:23:ab:
7a:d7:a0:b4:dd:14:45:3e:b7:65:7f:8f:db:25:07:4e:67:d8:
94:8c:24:05:ca:ed:eb:49:22:e3:83:3f:0b:d8:75:c6:8a:53:
4d:76:f6:8d:f4:53:81:2d:96:ef:e9:b4:17:07:7f:24:ad:ec:
52:7f:f0:2d:c4:b5:a8:ff:ae:d0:f0:d6:dd:7f:32:8d:36:b5:
cd:a7:b8:b5:1d:7e:22:c7:6f:5a:99:07:72:cb:ad:3c:c8:75:
bf:ff:88:8d:f8:43:a6:a9:fa:d4:e1:5d:4b:a2:ba:ab:6c:10:
4a:30:de:da:b1:1e:55:99:0a:54:64:12:7e:99:91:e4:a9:f1:
0c:88:d7:52:f1:67:9a:f6:f3:90:a9:c5:70:41:16:ea:6a:f3:
a9:54:fa:a0:aa:29:7d:76:88:14:e2:77:0e:17:ce:be:66:af:
d6:8d:ff:2e:f2:37:ce:e3:a5:7e:db:c0:51:0a:6e:eb:46:11:
c5:81:61:40:72:8f:44:51:8d:86:3d:fa:0a:34:d2:b8:e5:d1:
52:4a:9d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 13:33:31 2026 by rpki-client