Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
File: CZ05RkE90RFhtGx99q02Kpk41dQ.mft (raw, json)
Hash identifier: IcQidXEd7HBtUnkmRLHyHKo4Z7gteW6NxLGmTdwZ73I=
Subject key identifier: 8D:EA:87:EE:AD:00:AB:9B:22:2F:E2:4D:92:C8:57:13:8C:4B:96:5B
Authority key identifier: 09:9D:39:46:41:3D:D1:11:61:B4:6C:7D:F6:AD:36:2A:99:38:D5:D4
Certificate issuer: /CN=099d3946413dd11161b46c7df6ad362a9938d5d4
Certificate serial: 019E28B8ECDC3CE99BDF0DAF20DA0C5809A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
Manifest number: 06DE
Signing time: Thu 14 May 2026 23:01:08 +0000
Manifest this update: Thu 14 May 2026 23:01:08 +0000
Manifest next update: Fri 15 May 2026 23:01:08 +0000
Files and hashes: 1: 2YAgI74gbNqNd4cR2a1xK7IpNo0.roa (hash: UfaVQLtUsjyfgahDcdhJ4KwcH3jtGHAp5uCPoj3a35Q=)
2: CZ05RkE90RFhtGx99q02Kpk41dQ.crl (hash: QhaF96xWVtLENhiEVLNqw71IlnZdEd7InMqs12REYrI=)
3: eO4OXeTBNdp3Wk5KjPR2B_e07OI.asa (hash: vSPUOrqLSS1QDlHSmyS6Ip+i1a344wmk09R05jnzxf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 23:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:b8:ec:dc:3c:e9:9b:df:0d:af:20:da:0c:58:09:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099d3946413dd11161b46c7df6ad362a9938d5d4
Validity
Not Before: May 14 23:01:08 2026 GMT
Not After : May 15 23:01:08 2026 GMT
Subject: CN=8dea87eead00ab9b222fe24d92c857138c4b965b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:16:e8:f1:84:04:f6:82:7a:14:f2:35:ba:5f:
50:5e:f8:22:1b:16:e6:be:c8:d6:75:16:e8:d0:8f:
56:de:b9:65:62:b0:54:95:58:a1:84:42:8f:b3:78:
49:56:a7:e5:c1:47:91:d3:8c:31:38:f3:56:67:fd:
cd:8d:6c:15:0f:8b:3a:51:c2:be:e7:b7:09:67:55:
3b:dc:dd:00:f4:d7:b0:c7:cf:87:25:89:e6:a9:73:
0d:f2:9e:a8:5f:30:e2:2a:e5:33:9d:42:e4:b2:f9:
de:3c:14:10:fa:27:19:cf:2b:d4:cf:90:6d:8e:e5:
2e:a5:49:7f:59:3a:d3:6d:94:42:cb:aa:66:27:e0:
af:91:fd:1e:b9:70:b8:79:9b:b0:00:d6:3b:f9:0a:
52:96:09:4b:3c:2a:ba:11:44:0d:2c:f7:bf:cd:c5:
aa:e6:8b:d3:8d:4c:52:9b:2f:46:d7:6f:f5:6f:82:
dc:a5:fe:e7:4a:71:0c:f2:d2:82:37:63:dc:74:74:
46:b0:32:10:32:fe:e4:ee:18:35:ba:1f:02:32:13:
14:40:df:43:35:97:d9:7c:47:b1:06:4c:5b:29:ab:
a7:0a:a5:03:cc:6a:bc:90:c9:ed:ea:61:1c:3f:97:
4a:2d:c4:21:50:2a:c1:72:45:3f:13:b4:2f:ad:b0:
27:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EA:87:EE:AD:00:AB:9B:22:2F:E2:4D:92:C8:57:13:8C:4B:96:5B
X509v3 Authority Key Identifier:
keyid:09:9D:39:46:41:3D:D1:11:61:B4:6C:7D:F6:AD:36:2A:99:38:D5:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:47:8a:38:38:b2:a3:5e:0a:43:79:37:5c:29:b5:40:2b:53:
82:28:f5:1b:9d:1f:0a:25:01:20:51:b4:c7:84:8b:b8:e9:d5:
47:00:31:51:17:eb:52:e2:01:d1:c6:bd:0b:55:ce:54:96:00:
27:7c:b7:74:02:c9:a8:50:4b:e9:55:b5:fe:59:4c:da:e3:d1:
6d:05:28:df:76:41:ef:ea:fd:73:77:38:13:6a:3e:10:08:2c:
f7:73:80:ac:9e:d9:47:88:d0:cb:f2:50:74:84:db:65:a1:ef:
2f:8a:5b:56:89:3e:1e:fe:07:09:cd:00:87:40:fa:9b:43:57:
26:1b:5c:e3:f0:f1:0a:7c:d7:d4:50:ec:f2:5f:c9:83:61:41:
96:cf:18:90:c1:ea:20:c1:83:34:78:a1:26:0e:69:71:34:52:
ca:31:bf:3b:52:c0:d3:d3:53:1f:17:04:4f:73:4b:1a:a3:98:
58:3e:e2:1e:40:cc:bc:15:0b:76:e1:18:16:34:62:b8:e2:a4:
bd:fb:c3:7a:de:e1:a2:98:9d:24:de:c1:0c:6c:46:fd:e4:09:
84:d8:6a:70:35:f2:2b:28:2d:72:a2:ec:86:69:d0:2d:3e:0c:
e2:cd:a8:65:60:13:32:09:62:15:4d:e5:4a:f2:30:5e:29:51:
47:d8:7d:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:56:11 2026 by rpki-client