Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: dPkuq6nV9nOOf5fv2FdhpxDcy56YEcg7YYDQr6QFUYE=
Subject key identifier: A1:24:15:D4:41:A2:66:65:55:40:86:3E:E2:06:99:C1:55:30:14:49
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 019E3F40CED391FDC071D2C72A0186CC83F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 1496
Signing time: Tue 19 May 2026 08:01:12 +0000
Manifest this update: Tue 19 May 2026 08:01:12 +0000
Manifest next update: Wed 20 May 2026 08:01:12 +0000
Files and hashes: 1: a3EzX3WcmdhmQvwA-GnAI4JgEtw.roa (hash: C4cMB04OWyPRUy1OSkZ4yaaLwpazM0m/JqgEaW9Hrpg=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: gJhn9WzeLPjjNYniFhwCiSB9+RdYRqaxlFROm/MLCbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 May 2026 07:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3f:40:ce:d3:91:fd:c0:71:d2:c7:2a:01:86:cc:83:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: May 19 08:01:12 2026 GMT
Not After : May 20 08:01:12 2026 GMT
Subject: CN=a12415d441a266655540863ee20699c155301449
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:46:76:4d:90:80:45:48:16:b3:f5:52:26:94:
06:b8:05:fe:9f:85:8e:b4:27:cb:d2:60:28:91:da:
b1:e3:36:04:be:ee:d1:61:4b:3e:65:4a:73:84:3e:
4c:f5:b3:6d:59:dd:ee:fd:18:9f:c0:f6:82:50:07:
2e:e3:0c:82:9b:bd:ed:c6:d9:51:6b:69:fb:91:97:
bf:50:3a:64:d6:3f:4b:98:ea:5a:18:b2:44:89:5c:
86:da:1d:42:f8:fd:a5:f0:0d:53:29:bf:bb:ac:10:
45:6f:92:7b:02:dd:22:ce:8c:5b:20:a1:a2:77:0b:
70:02:22:c1:f2:f4:d3:c0:9e:93:8f:29:66:f7:3f:
5d:46:f5:ef:92:19:a6:7c:b2:d2:4f:c3:ef:bc:bf:
44:1b:4a:1a:9c:7e:0a:b4:07:27:9c:08:7c:24:47:
0d:b5:95:5d:72:39:5f:17:f5:f9:23:80:67:90:82:
a5:f8:3e:fd:75:61:d6:f8:a6:91:7b:10:2d:40:e8:
ca:da:b0:cc:cb:b4:e2:2f:a6:fe:cc:05:43:f5:8e:
71:18:34:77:22:68:dd:04:9d:45:65:ab:21:c9:ef:
4c:ce:9b:eb:31:09:42:8d:53:9a:72:73:07:7e:33:
3f:b0:81:e5:84:27:39:f7:cb:43:7b:36:27:43:85:
d6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:24:15:D4:41:A2:66:65:55:40:86:3E:E2:06:99:C1:55:30:14:49
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:a0:83:e0:47:9f:55:a7:70:64:40:da:2d:07:3b:14:d9:bc:
62:2f:91:9a:1e:58:03:d6:7e:e8:65:72:9d:a6:62:8c:10:33:
8a:20:86:45:cd:30:17:70:02:d7:5b:a2:db:5f:36:39:7a:b3:
15:8c:11:d8:ce:9c:03:15:07:cd:98:d6:db:6f:81:a8:e4:61:
e4:a7:e2:99:68:c2:d7:ed:9f:b6:d7:f5:0f:3f:34:d0:1b:9f:
d7:bc:d8:d2:43:8b:f5:af:cf:da:28:aa:c2:40:95:4c:bb:86:
bc:3f:1a:dd:76:c8:cd:67:33:3b:a4:1b:e5:b3:2a:be:c5:1c:
57:51:78:7d:33:3d:d2:e7:70:f1:a0:e9:6a:52:54:2f:43:e2:
84:92:80:bb:cd:60:4f:d5:06:5b:39:c4:1b:b5:17:1f:c3:c7:
3b:89:05:53:c7:37:41:d3:b0:9e:ff:f2:e2:92:4b:2d:e4:b5:
77:b5:aa:0b:e1:53:5c:3d:3f:c6:bc:23:8f:94:b7:53:ef:6a:
53:6a:49:f0:5b:ce:d6:41:08:5f:f5:e7:7e:9e:2e:b0:96:9c:
40:4f:c0:16:eb:84:4d:99:a3:7a:a8:b6:77:8d:02:6c:56:59:
fc:b2:12:a5:6c:47:c4:2a:14:f3:6c:f3:a3:c3:69:47:6c:18:
80:b8:42:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 19 10:21:37 2026 by rpki-client