Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
File: CZ05RkE90RFhtGx99q02Kpk41dQ.mft (raw, json)
Hash identifier: WWfUHKKmz8+TSV+QfbovQbuwacbCg4D7SYGhfNE/mdg=
Subject key identifier: 96:F8:2B:58:63:66:A3:CC:95:9F:31:42:00:5B:0B:D8:BA:2E:08:50
Authority key identifier: 09:9D:39:46:41:3D:D1:11:61:B4:6C:7D:F6:AD:36:2A:99:38:D5:D4
Certificate issuer: /CN=099d3946413dd11161b46c7df6ad362a9938d5d4
Certificate serial: 019F12654DDE7329A11EFB1F0E01A36BEC23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
Manifest number: 0757
Signing time: Mon 29 Jun 2026 08:00:56 +0000
Manifest this update: Mon 29 Jun 2026 08:00:56 +0000
Manifest next update: Tue 30 Jun 2026 08:00:56 +0000
Files and hashes: 1: 2YAgI74gbNqNd4cR2a1xK7IpNo0.roa (hash: UfaVQLtUsjyfgahDcdhJ4KwcH3jtGHAp5uCPoj3a35Q=)
2: CZ05RkE90RFhtGx99q02Kpk41dQ.crl (hash: QnArLlY2hvkpIHQWmqby5/1MkS0hdo8J390V/yrcomo=)
3: eO4OXeTBNdp3Wk5KjPR2B_e07OI.asa (hash: vSPUOrqLSS1QDlHSmyS6Ip+i1a344wmk09R05jnzxf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:4d:de:73:29:a1:1e:fb:1f:0e:01:a3:6b:ec:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099d3946413dd11161b46c7df6ad362a9938d5d4
Validity
Not Before: Jun 29 08:00:56 2026 GMT
Not After : Jun 30 08:00:56 2026 GMT
Subject: CN=96f82b586366a3cc959f3142005b0bd8ba2e0850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c9:d1:97:22:5a:4c:66:c0:d5:45:36:45:14:
73:78:51:9a:e0:24:bd:41:aa:3e:44:2f:95:f3:9c:
21:ad:98:38:89:7a:fb:df:75:18:16:2a:45:58:a4:
99:a9:30:f1:66:c5:52:9e:aa:ef:56:3f:dd:96:bf:
f7:1b:ca:24:3a:e4:63:ea:66:5b:8c:5f:0a:d6:de:
59:3b:b6:b3:cc:fd:fa:22:0a:5d:47:66:0f:2d:15:
30:47:e5:9f:44:42:43:8d:f4:0c:55:a3:55:4f:c3:
ee:a1:d2:71:e8:f0:7f:64:73:4d:d3:cf:1a:c4:95:
1e:eb:08:98:91:42:eb:91:7a:d8:fb:a8:7e:e2:b0:
38:c4:99:fe:d9:83:cd:72:4e:f7:4e:5e:0b:65:72:
1c:13:f3:a3:72:9e:c6:29:07:bc:25:c3:85:64:58:
5e:7b:35:af:1a:d1:65:b2:84:61:85:8f:c3:da:a8:
ad:78:db:2e:ed:49:fd:31:e8:af:ec:30:53:7b:8c:
e0:69:ad:1d:c7:64:67:0c:a5:f1:84:ef:7a:cc:59:
e9:ff:7e:20:ef:97:fa:bb:b0:1c:a5:86:b1:32:f8:
2f:9d:d5:2f:7e:4b:d2:a4:f1:00:5d:aa:f9:0d:2b:
ff:da:c3:83:ff:9c:ad:20:5d:5d:96:23:96:77:97:
03:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F8:2B:58:63:66:A3:CC:95:9F:31:42:00:5B:0B:D8:BA:2E:08:50
X509v3 Authority Key Identifier:
keyid:09:9D:39:46:41:3D:D1:11:61:B4:6C:7D:F6:AD:36:2A:99:38:D5:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZ05RkE90RFhtGx99q02Kpk41dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/856443-b8fb-478e-87c9-cf52aa9d6ccc/1/CZ05RkE90RFhtGx99q02Kpk41dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:3f:f6:47:63:c0:a1:89:d2:a5:b0:8f:a6:89:de:90:77:21:
73:19:c4:ad:f5:10:b7:2f:8f:8b:d1:fd:45:d8:18:69:4a:93:
7e:3e:60:34:5e:29:bc:8d:37:c9:95:eb:5b:e5:fe:30:a4:77:
a4:fd:aa:bb:b3:81:b6:10:50:58:9c:3a:94:b3:8a:92:d5:fd:
2d:e2:5d:d3:e1:de:a0:04:b7:c3:d6:7e:a8:e9:67:02:82:6b:
54:eb:90:6d:07:0e:d9:33:18:86:c5:41:25:0e:f8:f6:05:71:
2d:dc:ca:23:e4:d7:88:2f:d6:af:16:b3:58:5c:1d:b3:43:f2:
fa:65:06:15:08:72:53:35:d8:83:74:19:b1:e4:00:25:09:63:
89:4c:e5:45:64:a7:f7:1b:31:cf:30:43:96:c6:96:4f:84:f0:
e3:32:e3:0d:e6:c4:ac:14:14:83:20:29:35:f6:b6:df:33:da:
d4:09:98:6c:b4:d4:24:e8:1a:a1:96:18:0e:85:e5:1d:56:38:
b3:39:c4:c5:55:2c:cc:68:6d:ee:22:b6:82:65:9c:b7:09:70:
34:67:d5:0f:94:d5:21:d3:ab:cc:1a:48:c3:00:e9:0b:5d:76:
6c:d5:61:64:d8:37:bc:d7:39:2b:a0:36:24:e4:7b:3a:4e:10:
26:d7:34:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:34:14 2026 by rpki-client