Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
File: CZoxZcQAepQBMaMnzHfMIhzBadk.mft (raw, json)
Hash identifier: LPkAsZFde8qUW/E/38Med5z/BkBy5RkQixiAlua33rg=
Subject key identifier: 4D:AD:05:5B:CE:9B:91:23:63:06:4F:BA:F1:1D:06:EA:4A:83:6A:01
Authority key identifier: 09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
Certificate issuer: /CN=099a3165c4007a940131a327cc77cc221cc169d9
Certificate serial: 019E31851EE37A9FF96E603A899E72F6A035
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
Manifest number: 190C
Signing time: Sat 16 May 2026 16:01:08 +0000
Manifest this update: Sat 16 May 2026 16:01:08 +0000
Manifest next update: Sun 17 May 2026 16:01:08 +0000
Files and hashes: 1: CZoxZcQAepQBMaMnzHfMIhzBadk.crl (hash: Jcn9smIR62hfEa8UCqjmYsF3kzO9KfEyb/3NT7vNHTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:1e:e3:7a:9f:f9:6e:60:3a:89:9e:72:f6:a0:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=099a3165c4007a940131a327cc77cc221cc169d9
Validity
Not Before: May 16 16:01:08 2026 GMT
Not After : May 17 16:01:08 2026 GMT
Subject: CN=4dad055bce9b912363064fbaf11d06ea4a836a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:eb:fa:ee:2e:44:cb:20:ef:9c:5a:9d:35:89:
9e:59:0c:7d:49:91:07:1b:18:0d:8a:ea:5f:cf:01:
79:2f:14:f2:56:c7:3f:02:1c:27:b0:95:76:ee:8d:
ab:b0:32:86:da:10:7b:2b:20:ca:c2:35:e8:ff:4e:
fb:a2:f7:94:f6:10:b5:0e:46:ff:5f:d8:86:cf:58:
9e:9d:fe:63:53:d9:d4:13:97:68:dd:91:8d:12:52:
e8:b1:7a:f9:88:25:db:9b:c8:2c:f9:ce:0f:26:cd:
81:ad:c5:fd:52:5d:a1:ea:a5:fc:f8:4d:b4:b6:93:
b4:2d:69:51:db:da:86:93:29:5a:84:d1:c0:65:0b:
b6:8c:ac:74:3b:02:23:3b:60:54:52:1b:2a:71:c2:
d7:3e:38:af:c8:72:16:70:13:2c:35:e7:93:d7:af:
bd:06:f5:3d:6a:5a:93:79:80:cd:4a:6b:e1:54:0b:
eb:b1:10:51:4c:d3:8f:6a:e0:d1:3d:29:c7:3e:8b:
c1:c9:dc:69:d0:c2:4d:40:65:85:d0:4c:b6:4e:6f:
47:8f:08:9b:d2:80:23:f7:2a:0c:52:97:0a:c4:f6:
fa:0f:ff:15:63:09:30:1a:20:59:ee:e8:14:51:2a:
18:94:46:87:8f:27:2b:61:04:26:8e:4c:19:c7:6e:
1e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AD:05:5B:CE:9B:91:23:63:06:4F:BA:F1:1D:06:EA:4A:83:6A:01
X509v3 Authority Key Identifier:
keyid:09:9A:31:65:C4:00:7A:94:01:31:A3:27:CC:77:CC:22:1C:C1:69:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZoxZcQAepQBMaMnzHfMIhzBadk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f1f0a0-da3c-4d95-a638-506672769d9c/1/CZoxZcQAepQBMaMnzHfMIhzBadk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3b:3c:1e:9f:84:a5:f3:97:6d:a2:ba:ca:54:be:27:e8:a8:
64:51:2d:3a:23:c0:15:f0:3e:18:0e:a0:5e:7a:2e:13:b9:f9:
f7:fd:61:4a:56:36:bf:38:f5:83:69:24:23:1d:1f:c9:f5:06:
38:c4:49:a7:64:96:af:f6:64:c6:90:fa:42:46:86:b6:07:46:
f3:e6:66:d6:6a:b9:ac:e4:af:dd:85:ff:c1:81:57:74:d5:a4:
84:a0:19:ad:4f:2f:0d:79:42:c7:ce:20:af:02:12:92:04:9c:
98:8e:45:5b:ce:fe:a5:66:6f:2f:42:e5:c7:42:1a:1a:78:cf:
6c:d6:0f:15:2f:f0:bf:a1:82:89:3d:b7:c4:ff:f3:14:15:af:
9f:56:29:64:06:64:fc:e0:01:84:3b:3d:db:b1:95:79:e7:8a:
85:72:10:f9:18:5c:ee:51:69:03:dc:dd:d6:30:bd:15:58:9e:
08:dc:56:4a:42:73:ad:b7:5c:0e:b3:29:72:fe:db:c7:3a:f4:
3b:fe:da:c5:ed:9b:66:f5:70:88:3b:1c:5a:36:a2:60:62:2a:
00:25:b8:69:5a:a3:e4:6c:5b:82:94:41:cf:df:10:ff:5f:e6:
fa:98:c3:a5:92:ed:ee:65:0e:67:94:28:22:9b:ee:c4:41:33:
4f:3a:72:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:41:00 2026 by rpki-client