Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: A1sGikG/WXkMzI4vrcRTVXu8cedZu/7sZbrSG5O5O9M=
Subject key identifier: 4A:C3:4F:AE:F6:E3:7D:67:15:98:F3:BE:1D:27:E3:B6:29:24:E2:6A
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 0197B8211226EB47255046927947E828E855
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 150B
Signing time: Sat 28 Jun 2025 20:01:04 +0000
Manifest this update: Sat 28 Jun 2025 20:01:04 +0000
Manifest next update: Sun 29 Jun 2025 20:01:04 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: r7PGeUCUWXjbnH6/gPyUK2saAhAX8XIHiqEdSlgbjP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:12:26:eb:47:25:50:46:92:79:47:e8:28:e8:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Jun 28 20:01:04 2025 GMT
Not After : Jun 29 20:01:04 2025 GMT
Subject: CN=4ac34faef6e37d671598f3be1d27e3b62924e26a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:91:9c:69:e2:0e:da:d9:15:6c:9c:8e:26:bf:
ec:ef:d2:10:91:64:66:d2:18:7c:91:76:aa:4d:d8:
05:08:b0:65:23:a9:fe:a9:0c:88:50:8e:b5:07:ba:
6d:7b:7e:04:a7:95:b5:95:0b:8e:e9:1d:f4:c3:d2:
d5:03:1a:eb:b5:55:6e:7b:f7:47:8e:6d:90:67:49:
ea:e1:03:6a:c6:8d:20:9c:67:ba:6f:22:ce:d6:33:
38:37:a2:ae:bf:0c:e9:d3:95:6c:05:f8:71:b3:01:
f8:af:97:4c:46:8f:0e:01:98:f2:85:8d:46:74:71:
7e:bb:8a:b4:54:21:93:75:ad:a0:78:01:0e:25:a0:
16:f6:60:a4:ae:69:b8:a2:70:99:fe:33:e5:30:91:
bb:e4:82:04:bb:db:c6:6e:53:1a:76:76:e9:0b:fc:
77:c7:88:26:0f:e4:3e:ab:32:4e:00:2b:5a:76:9a:
7c:6d:4a:87:af:cf:dd:70:50:ce:58:14:1e:ac:58:
dd:86:5b:17:c7:d8:b1:87:53:34:46:ea:72:51:5f:
eb:45:d5:0b:74:37:60:18:bc:27:4f:29:00:14:19:
65:03:9d:8e:29:eb:f0:4b:0c:e7:fc:f3:c7:b3:d8:
eb:23:8b:5a:17:28:30:35:ff:fa:cd:15:18:50:52:
c1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C3:4F:AE:F6:E3:7D:67:15:98:F3:BE:1D:27:E3:B6:29:24:E2:6A
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:d0:2e:d0:5e:09:73:7e:a7:65:4b:cc:66:3f:f0:6a:69:c6:
c3:92:63:69:57:9c:27:cb:d0:ca:47:05:73:aa:55:d0:2d:be:
29:43:38:7a:16:4a:36:c6:29:98:b0:13:76:a6:85:dd:64:55:
09:06:20:83:3e:00:02:c2:3a:28:57:b9:f9:7d:1e:1b:1e:f5:
0f:7f:29:1d:2e:37:a7:5a:93:25:80:bb:18:bd:e5:f2:d0:47:
57:26:d2:e8:27:83:de:26:4e:ec:74:6e:53:fe:d1:11:de:4f:
bd:73:32:ae:6e:81:d3:f6:9a:0b:bc:c2:5a:56:49:70:c8:d0:
58:98:5c:a4:f1:4d:71:6c:1d:fb:c3:a9:1d:3d:51:d8:49:9c:
5e:5b:94:25:09:bd:ab:b9:a3:ae:e7:af:c3:99:91:20:1d:94:
c7:ba:c2:54:75:75:8b:9d:93:64:6b:8d:e5:ab:9e:ab:d4:9f:
1a:89:ae:0b:e1:97:50:87:c0:df:19:fa:80:84:51:33:c5:ed:
13:27:30:2e:5f:cc:b0:51:fa:44:a0:6d:fe:23:3a:d7:76:f0:
92:74:ae:1a:f0:45:f4:ce:6a:53:09:00:2d:ea:95:a1:52:7e:
f7:c9:af:0c:0b:51:7a:62:be:85:94:28:31:fe:53:2a:26:05:
2f:dc:cd:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:59 2025 by rpki-client