Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: pMaxJl7orGwqu8czIhcV7c9ydjWhghDGjNJtzWeIajE=
Subject key identifier: 0B:C2:9A:DC:89:34:43:35:33:5D:9D:5F:64:EC:C9:8C:9F:4D:3D:E5
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 019D2A044FCF4696071C172C7C692F6C83CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 17DD
Signing time: Thu 26 Mar 2026 12:00:18 +0000
Manifest this update: Thu 26 Mar 2026 12:00:18 +0000
Manifest next update: Fri 27 Mar 2026 12:00:18 +0000
Files and hashes: 1: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: xMtB2QWdFEdMxLLiHNvPE5xPeRpSxnlv76YuNb9lTFY=)
2: niPFA17j7uRHpaTYenf6Cly67RI.roa (hash: OfpHBcAsXXX8TZPERzrr+Zdymzn7MUaqne9gmeiSJVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:4f:cf:46:96:07:1c:17:2c:7c:69:2f:6c:83:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Mar 26 12:00:18 2026 GMT
Not After : Mar 27 12:00:18 2026 GMT
Subject: CN=0bc29adc89344335335d9d5f64ecc98c9f4d3de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f3:cb:ee:8e:ae:aa:2c:7e:5b:4c:2b:03:9f:
5c:63:ba:85:d7:f4:4f:71:46:43:a8:5e:84:60:fa:
bc:a6:fa:df:15:44:7c:9e:34:24:1d:68:ec:2c:04:
a3:60:2c:37:e7:ed:f4:75:67:b1:2b:76:8c:10:a2:
05:0b:82:3c:48:ea:c1:b1:22:1b:8d:3f:2f:3a:21:
e0:86:8a:30:e8:1c:a7:c0:cf:d9:6b:ac:fe:3d:02:
61:f2:1b:6a:c5:78:21:19:b6:43:5f:11:cf:f6:f6:
5b:c3:e2:e2:ce:ce:fa:44:79:1a:43:84:67:17:02:
d5:43:a8:5e:db:f3:ed:6a:d4:db:d8:ef:48:ac:ae:
f5:fa:b6:89:3a:c0:ae:54:cd:ec:c9:af:09:51:59:
35:60:be:63:06:be:bb:94:3a:a4:3f:13:32:63:5b:
e4:34:74:bc:b9:21:9f:91:31:0e:1f:45:b2:a9:4a:
63:54:ce:5b:d1:74:55:c8:91:a1:28:9b:21:94:36:
ec:13:2e:7a:0e:5a:22:62:57:08:05:76:b3:7a:d7:
2f:91:cf:89:bd:52:d7:fb:99:93:ad:cd:69:53:f7:
ee:12:e9:8e:ba:00:fc:05:d8:8c:9d:f9:3d:52:7f:
40:b7:2b:89:ee:b0:b0:ba:97:60:4d:50:e1:18:49:
ce:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C2:9A:DC:89:34:43:35:33:5D:9D:5F:64:EC:C9:8C:9F:4D:3D:E5
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:13:83:74:b4:ac:48:f4:7c:e9:e1:41:1a:f1:93:80:24:bc:
fe:26:7a:81:d9:1b:a7:e4:86:14:16:60:a3:c1:63:c8:51:1c:
a2:6d:24:19:29:41:34:92:f5:9e:21:fb:a2:6d:e2:1b:62:ff:
da:2c:cc:c4:d4:22:57:de:9b:96:80:4f:8d:b0:56:05:9f:84:
45:78:77:94:05:1e:67:b1:3b:a7:d3:e5:2a:9d:39:fd:1c:c1:
7e:70:3f:88:25:f6:9b:12:bb:f0:6f:23:2f:ae:0a:4d:b8:be:
a0:59:16:0a:75:d5:8a:72:12:34:c8:ba:2f:9b:1d:0e:55:1d:
61:2d:83:f2:41:4e:39:b3:96:52:6c:ed:a8:06:da:8b:ab:b5:
33:da:15:b0:42:e9:9f:72:a0:00:8c:91:ee:7c:ab:0a:b0:a2:
f3:4f:55:e2:cf:fc:3e:7d:ee:5f:b5:6f:75:c2:cf:42:f1:63:
87:84:b6:bb:34:8d:c2:c0:8d:e5:5a:ce:fa:2a:86:da:25:8b:
2c:55:44:fb:bc:11:33:00:bb:d1:57:b7:ab:f0:68:b2:09:ce:
79:36:b2:fb:aa:27:90:e0:51:dd:cf:9a:78:7a:47:69:fd:b0:
5f:ec:e7:7e:a8:92:3f:09:4d:7e:e2:7d:15:9f:ba:f0:e6:f9:
e0:11:39:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:02:22 2026 by rpki-client