Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json)
Hash identifier: moVTp3IM8xb+SWVZkjQ9DW+riW4jpy4zcXSyyMPgW3A=
Subject key identifier: 6C:5A:7A:6D:39:C3:20:05:CE:76:DF:5D:BF:EE:9D:73:FA:81:BC:FF
Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b
Certificate serial: 019D2515A885B64962780CFE2AF4E44286E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
Manifest number: 0776
Signing time: Wed 25 Mar 2026 13:01:09 +0000
Manifest this update: Wed 25 Mar 2026 13:01:09 +0000
Manifest next update: Thu 26 Mar 2026 13:01:09 +0000
Files and hashes: 1: T0Q1-_qD3Ki2609r9NZI0IvfjS4.roa (hash: +nPlRWGkeYoja770vj9LfCl9js/SDYPB/SeIBGkWDVM=)
2: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: ZRlaCV9onVcYKbvfwBdqzwXNJx73mrn/FJLYviHBBiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 13:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:15:a8:85:b6:49:62:78:0c:fe:2a:f4:e4:42:86:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b
Validity
Not Before: Mar 25 13:01:09 2026 GMT
Not After : Mar 26 13:01:09 2026 GMT
Subject: CN=6c5a7a6d39c32005ce76df5dbfee9d73fa81bcff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:73:90:ca:c6:9f:83:f8:1f:b2:58:4a:85:22:
8d:cb:7c:be:c4:43:46:92:2e:06:99:68:36:47:85:
57:45:fc:ec:2e:60:9b:61:b6:4a:06:76:ab:17:48:
73:d4:d7:5a:11:7c:9c:7e:ff:dc:6a:70:bd:04:c7:
bd:29:77:00:db:84:10:87:ea:6f:1d:d0:f2:20:a9:
5a:f0:3c:f7:38:61:40:3f:69:03:9e:4b:c5:e8:7f:
3d:fb:a1:6d:ec:ac:5a:21:6c:2d:19:70:93:e5:b5:
28:be:09:a1:39:21:0e:c8:17:0f:ce:c2:a5:b7:ae:
21:12:26:9c:12:55:66:49:75:02:60:45:7a:bc:ff:
24:c7:3e:99:44:b4:f5:2b:2b:0b:a2:5d:cf:d0:a1:
c7:98:1c:cc:43:e9:90:4c:04:3f:ca:f2:72:6a:5f:
95:8c:36:54:ae:7f:a3:81:d2:84:6c:0c:d3:26:7e:
f4:3f:6b:0a:4f:a7:fa:e2:0b:c0:30:fe:df:92:86:
00:5d:45:24:ea:3d:1b:0a:b0:a0:56:00:3b:25:4c:
d6:ee:24:cb:8e:9d:b7:d3:91:93:1d:49:1f:84:d7:
04:e7:9b:1c:a8:59:ae:12:15:86:17:cb:4c:86:00:
06:8b:47:38:ac:28:7f:e8:74:41:30:90:6e:6a:11:
26:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5A:7A:6D:39:C3:20:05:CE:76:DF:5D:BF:EE:9D:73:FA:81:BC:FF
X509v3 Authority Key Identifier:
keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:73:79:c4:9f:14:1d:2c:60:b5:fe:65:44:17:b6:b2:d1:6c:
7d:6d:b6:bb:48:80:00:0a:2a:a5:67:2e:34:87:dd:39:82:4b:
ce:50:df:45:7a:8a:e6:24:ac:5f:b0:a2:ea:a8:4d:53:58:39:
a1:92:8a:7a:01:bd:4e:72:82:b5:06:88:27:23:34:dd:05:25:
40:9a:e1:a5:16:3c:33:77:9f:a4:8e:5a:4e:99:82:93:56:52:
54:7e:80:61:53:0f:ad:d9:26:fb:67:5c:8d:89:a3:6b:b8:d3:
6c:d1:3f:b1:83:f9:57:a5:19:bd:7e:96:47:87:87:db:48:a8:
cc:55:b7:83:f0:d1:b8:df:37:1c:5b:13:ed:62:12:96:14:02:
81:e6:04:a7:f5:57:78:6e:63:48:5d:14:87:31:9e:04:a7:69:
ad:a5:e9:44:b9:40:c1:c2:9f:7d:b7:f1:85:52:db:6b:95:13:
06:27:04:6a:ac:2f:60:b1:d0:10:4c:80:c4:f8:90:0d:5b:3b:
9c:cf:13:14:56:46:81:25:b1:5c:bc:7e:b9:e4:e5:8d:cb:8c:
be:04:27:25:96:96:ba:41:97:0f:90:af:55:53:04:44:97:b6:
f7:f4:0d:a1:9c:f2:89:ed:0c:89:dd:7a:ea:f0:87:d9:ee:c3:
12:ae:ed:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 16:20:10 2026 by rpki-client