Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: 1EXLIt+XIrHpsjsJFBSvxRg9XX8et14HuEaMMV3WsNs=
Subject key identifier: C5:30:E6:A2:BF:EC:2C:A4:78:28:91:29:AE:FF:50:C6:54:CF:57:8F
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 019E0EC1BF875B40C7B57E13F006B34063BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 07EF
Signing time: Sat 09 May 2026 22:00:38 +0000
Manifest this update: Sat 09 May 2026 22:00:38 +0000
Manifest next update: Sun 10 May 2026 22:00:38 +0000
Files and hashes: 1: T0Q1-_qD3Ki2609r9NZI0IvfjS4.roa (hash: +nPlRWGkeYoja770vj9LfCl9js/SDYPB/SeIBGkWDVM=)
2: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: 6oPekwyxNrx9emaE/MBJ4n6DUNzCYVY5F/+nuQp5Ls0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 May 2026 18:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0e:c1:bf:87:5b:40:c7:b5:7e:13:f0:06:b3:40:63:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: May 9 22:00:38 2026 GMT
Not After : May 10 22:00:38 2026 GMT
Subject: CN=c530e6a2bfec2ca478289129aeff50c654cf578f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:71:98:39:bf:9d:2b:e5:9a:59:70:32:63:
8a:a3:fc:24:5c:06:7e:f8:fc:cb:c4:28:18:68:e3:
21:83:03:a3:85:aa:7f:17:ba:2b:d7:01:d0:8c:e7:
02:7b:68:03:cf:b9:74:ed:db:b0:96:1f:d5:84:ec:
a9:c7:47:d4:15:f0:13:91:cd:6f:63:02:7a:7f:7a:
df:7a:12:fd:d2:b6:57:77:1a:80:2b:6a:4f:16:59:
ff:ae:df:06:77:b3:42:6d:db:b1:6c:60:de:cb:44:
94:f6:b1:ae:7e:98:2c:49:62:d6:04:4a:69:77:d6:
9d:73:41:a2:74:f5:2b:8d:9e:1c:de:33:f4:78:08:
c3:1a:4b:24:55:36:ef:dd:ac:d1:3b:cb:87:fc:b0:
d2:6f:e6:50:b7:e7:ba:a0:99:0b:e2:a0:4b:88:0a:
d3:fe:a1:be:41:22:66:cf:3b:27:45:1d:bc:7f:56:
c9:1f:a2:aa:38:da:b8:8a:f3:cb:f5:21:25:ce:58:
fc:95:a6:8b:6d:d9:ce:b8:f7:5a:67:e6:67:7b:7a:
95:ba:e7:75:42:1d:cb:79:01:21:1f:4d:20:c9:4d:
29:bb:9a:c2:ef:ec:ef:ca:2a:3b:0a:54:dd:3a:f9:
91:94:ec:2c:41:95:15:1e:0d:83:c7:6f:c7:56:ce:
5b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:30:E6:A2:BF:EC:2C:A4:78:28:91:29:AE:FF:50:C6:54:CF:57:8F
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:a3:c2:cc:8c:bb:ee:d8:d3:68:6c:71:7c:f4:4e:f7:f1:66:
a0:35:c6:97:da:64:1a:8e:2a:0a:9d:5a:32:91:8e:76:5f:2b:
94:0e:4d:af:3f:39:e1:19:53:65:4f:2d:3a:58:db:e1:92:27:
fa:17:ed:92:84:94:b3:74:74:9a:b3:eb:80:f1:8a:0e:06:a7:
54:f8:a5:f1:e4:c3:af:da:86:41:55:da:eb:18:cd:f6:c1:db:
c4:6e:e4:eb:e6:77:cc:0d:80:4f:ce:04:a5:01:24:60:8b:46:
3f:f1:60:8a:e5:34:ec:e4:1d:06:da:92:2b:1b:eb:26:eb:2c:
7f:c6:e5:bb:e7:a5:51:09:2c:a1:96:63:e4:c6:08:f5:c1:51:
a4:df:85:aa:42:e7:5d:c7:fb:06:f4:4a:0a:4d:ba:cd:92:1c:
e9:22:5a:6a:d1:f2:57:d7:9c:20:ef:7e:79:6e:53:98:03:a9:
78:18:cf:4d:93:40:f5:9a:09:7f:e4:a0:28:db:6e:9c:79:95:
29:b0:cb:6f:04:b3:8e:25:00:0f:ec:06:84:e2:10:a0:36:d1:
f1:b7:d9:83:0b:0c:4d:15:99:ca:62:f7:7b:bd:f5:f8:3b:13:
b9:d3:d6:78:6f:a1:26:aa:f3:0f:cb:71:5c:09:b7:be:cc:9f:
36:2b:2f:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4Owb+HW0DHtX4T8AazQGO+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczMzFkYmVkMDg5N2NjZTg1YzE0ODM3MWI0N2NjODA3ODJl
NWU3MmIwHhcNMjYwNTA5MjIwMDM4WhcNMjYwNTEwMjIwMDM4WjAzMTEwLwYDVQQD
EyhjNTMwZTZhMmJmZWMyY2E0NzgyODkxMjlhZWZmNTBjNjU0Y2Y1NzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLhxmDm/nSvlmllwMmOKo/wkXAZ+
+PzLxCgYaOMhgwOjhap/F7or1wHQjOcCe2gDz7l07duwlh/VhOypx0fUFfATkc1v
YwJ6f3rfehL90rZXdxqAK2pPFln/rt8Gd7NCbduxbGDey0SU9rGufpgsSWLWBEpp
d9adc0GidPUrjZ4c3jP0eAjDGkskVTbv3azRO8uH/LDSb+ZQt+e6oJkL4qBLiArT
/qG+QSJmzzsnRR28f1bJH6KqONq4ivPL9SElzlj8laaLbdnOuPdaZ+Zne3qVuud1
Qh3LeQEhH00gyU0pu5rC7+zvyio7ClTdOvmRlOwsQZUVHg2Dx2/HVs5bSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMUw5qK/7CykeCiRKa7/UMZUz1ePMB8GA1UdIwQY
MBaAFHMx2+0Il8zoXBSDcbR8yAeC5ecrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3pIYjdRaVh6T2hjRklOeHRIeklCNExsNXlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9jNWYwYzMtMjJlNS00ODAxLTkwZmIt
MDQ2NTA3MmU0MWEzLzEvY3pIYjdRaVh6T2hjRklOeHRIeklCNExsNXlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9jNWYwYzMtMjJlNS00ODAxLTkwZmItMDQ2NTA3MmU0MWEz
LzEvY3pIYjdRaVh6T2hjRklOeHRIeklCNExsNXlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsaPCzIy7
7tjTaGxxfPRO9/FmoDXGl9pkGo4qCp1aMpGOdl8rlA5Nrz854RlTZU8tOljb4ZIn
+hftkoSUs3R0mrPrgPGKDganVPil8eTDr9qGQVXa6xjN9sHbxG7k6+Z3zA2AT84E
pQEkYItGP/FgiuU07OQdBtqSKxvrJussf8blu+elUQksoZZj5MYI9cFRpN+FqkLn
Xcf7BvRKCk26zZIc6SJaatHyV9ecIO9+eW5TmAOpeBjPTZNA9ZoJf+SgKNtunHmV
KbDLbwSzjiUAD+wGhOIQoDbR8bfZgwsMTRWZymL3e731+DsTudPWeG+hJqrzD8tx
XAm3vsyfNisvhQ==
-----END CERTIFICATE-----
Generated at Sun May 10 04:37:48 2026 by rpki-client