Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: XdsW8VPrQWEmSSdcR0jpFMik+dQRONg0hQBX7kwdSb8=
Subject key identifier: 74:5A:FF:1E:6F:40:94:46:09:BF:E2:7E:6B:B9:E3:E8:DC:04:5F:06
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 0198D5F198B9232C64ED9F207AA77A5F55D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 159F
Signing time: Sat 23 Aug 2025 08:00:36 +0000
Manifest this update: Sat 23 Aug 2025 08:00:36 +0000
Manifest next update: Sun 24 Aug 2025 08:00:36 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: /E8Ze36W2YdsqGj+rjGxfyppHq7h2hOg7Kxzq5KEJoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:98:b9:23:2c:64:ed:9f:20:7a:a7:7a:5f:55:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Aug 23 08:00:36 2025 GMT
Not After : Aug 24 08:00:36 2025 GMT
Subject: CN=745aff1e6f40944609bfe27e6bb9e3e8dc045f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f5:e0:31:30:ab:e8:4b:08:82:9b:78:73:96:
5c:6c:16:13:d3:8c:bd:5e:b9:a6:ea:3b:b4:60:7b:
e2:88:e8:32:f1:bf:3c:b0:5c:f8:ef:58:9d:53:3d:
8e:91:0b:67:9e:5e:b4:f9:34:7a:24:7a:26:3c:05:
5b:84:aa:c2:3d:7a:d0:a4:1a:df:17:2d:54:c1:8b:
61:5c:ce:b1:cd:62:bc:48:c9:e2:78:27:0d:26:4f:
d0:51:87:30:e8:ad:0f:96:07:7a:f8:61:51:6f:02:
2d:83:97:50:53:dd:94:d0:a9:94:3f:2f:6b:5e:c0:
6a:72:9d:1e:ff:fa:57:67:0b:76:9f:bf:13:16:3f:
42:ba:52:33:6f:fc:a4:87:2c:59:b4:fa:12:51:cf:
1b:cc:83:26:44:52:9d:36:f3:37:21:da:00:ae:eb:
9a:9f:7b:15:2e:c0:27:ab:af:fb:45:47:6f:74:06:
3b:18:12:d9:25:56:7f:d7:97:9f:59:4b:79:08:62:
78:7e:83:7d:f4:0f:0e:46:29:27:13:41:e6:56:41:
33:97:b2:77:56:b4:3b:9c:5b:8b:4b:f6:03:04:36:
6f:81:13:50:56:a1:39:bd:45:2a:09:de:05:af:44:
39:c8:df:39:6d:37:17:7f:78:1e:ff:42:e6:0f:c2:
b0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:5A:FF:1E:6F:40:94:46:09:BF:E2:7E:6B:B9:E3:E8:DC:04:5F:06
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:68:bb:95:e2:7f:9c:55:2e:bc:73:a9:a1:87:f2:51:ed:08:
83:d5:a8:01:90:38:46:d4:29:04:ca:35:3d:0b:c7:17:e4:5b:
80:fb:d7:6a:07:3c:86:03:5c:17:5d:6c:08:98:00:d2:cf:67:
39:e9:e4:0d:22:30:1f:71:b7:c1:eb:b9:e3:24:59:eb:73:43:
b7:46:bc:48:bd:b8:2e:93:f0:7d:1b:cc:ce:4a:96:14:a4:f8:
4d:10:bc:1e:d0:c7:c0:24:47:81:3f:b3:85:92:cb:76:d8:43:
19:a5:22:77:18:a2:9a:ca:ff:f5:83:db:4b:ee:0a:c4:b0:70:
1f:39:a3:1a:ee:59:8c:26:7d:e0:e7:1e:a4:11:17:1e:ef:03:
f9:ae:ad:92:63:17:78:ea:83:9e:57:83:c2:82:9d:a4:2a:76:
44:35:4d:49:30:1f:dc:8a:7a:fd:15:54:18:91:26:4e:2e:92:
d1:4f:02:40:82:01:14:3e:d6:e8:ce:63:9f:a8:dc:ac:d2:30:
c1:ca:ad:09:4a:7f:be:f1:f8:f1:77:e9:40:fc:82:7e:bf:13:
ca:4e:06:76:d3:10:0d:c1:a0:17:2c:6b:a5:1e:38:6c:29:6a:
df:cb:03:9d:3a:01:6c:a9:8d:d4:5c:e1:08:90:a1:cc:56:d8:
c6:a2:e9:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8Zi5Iyxk7Z8geqd6X1XZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxOTJjNTJmMzYwYTNhNzJmZTIyNDQxYWMzZmM3ZTBlNTIy
NWVlOTEwHhcNMjUwODIzMDgwMDM2WhcNMjUwODI0MDgwMDM2WjAzMTEwLwYDVQQD
Eyg3NDVhZmYxZTZmNDA5NDQ2MDliZmUyN2U2YmI5ZTNlOGRjMDQ1ZjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/XgMTCr6EsIgpt4c5ZcbBYT04y9
Xrmm6ju0YHviiOgy8b88sFz471idUz2OkQtnnl60+TR6JHomPAVbhKrCPXrQpBrf
Fy1UwYthXM6xzWK8SMnieCcNJk/QUYcw6K0Plgd6+GFRbwItg5dQU92U0KmUPy9r
XsBqcp0e//pXZwt2n78TFj9CulIzb/ykhyxZtPoSUc8bzIMmRFKdNvM3IdoAruua
n3sVLsAnq6/7RUdvdAY7GBLZJVZ/15efWUt5CGJ4foN99A8ORiknE0HmVkEzl7J3
VrQ7nFuLS/YDBDZvgRNQVqE5vUUqCd4Fr0Q5yN85bTcXf3ge/0LmD8KwOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHRa/x5vQJRGCb/ifmu54+jcBF8GMB8GA1UdIwQY
MBaAFDGSxS82Cjpy/iJEGsP8fg5SJe6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMt
Mjc0OGM0MDAyYzJlLzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMtMjc0OGM0MDAyYzJl
LzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvGi7leJ/
nFUuvHOpoYfyUe0Ig9WoAZA4RtQpBMo1PQvHF+RbgPvXagc8hgNcF11sCJgA0s9n
OenkDSIwH3G3weu54yRZ63NDt0a8SL24LpPwfRvMzkqWFKT4TRC8HtDHwCRHgT+z
hZLLdthDGaUidxiimsr/9YPbS+4KxLBwHzmjGu5ZjCZ94OcepBEXHu8D+a6tkmMX
eOqDnleDwoKdpCp2RDVNSTAf3Ip6/RVUGJEmTi6S0U8CQIIBFD7W6M5jn6jcrNIw
wcqtCUp/vvH48XfpQPyCfr8Tyk4GdtMQDcGgFyxrpR44bClq38sDnToBbKmN1Fzh
CJChzFbYxqLpUA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:31 2025 by rpki-client