Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: cWWJFovRTTiSDtnVBjBWz7i/EKCUH1BCLBQt7XZxUEs=
Subject key identifier: DA:77:17:8A:39:B2:47:0A:3F:2D:E6:C8:CE:F8:1B:B4:66:77:BB:DC
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 0199FD6ACFA6F609A4BA80752C48C9AEFC52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 1638
Signing time: Sun 19 Oct 2025 17:00:59 +0000
Manifest this update: Sun 19 Oct 2025 17:00:59 +0000
Manifest next update: Mon 20 Oct 2025 17:00:59 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: 5RPbgDfbNjZg295CGn5yOeViZGGwK85zS/liLRQl0/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:cf:a6:f6:09:a4:ba:80:75:2c:48:c9:ae:fc:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Oct 19 17:00:59 2025 GMT
Not After : Oct 20 17:00:59 2025 GMT
Subject: CN=da77178a39b2470a3f2de6c8cef81bb46677bbdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:69:fd:63:c7:23:d6:b0:04:28:8b:43:0c:
c5:4e:41:0a:d7:97:6b:e4:d2:39:5b:67:74:69:5f:
b5:33:b7:7d:9b:7d:d7:a0:2a:d9:71:2b:05:e1:97:
4f:d0:6e:11:23:93:be:74:4c:d3:cb:28:24:f0:c6:
34:9c:5f:7a:c4:c2:06:26:36:94:36:6e:05:e9:ef:
b0:a3:7e:c1:24:fb:bf:bd:9b:3b:ee:bd:3f:4f:4c:
7f:62:11:2b:07:3d:7a:76:cb:7f:5c:c2:bf:92:05:
ce:76:80:56:7a:f7:a1:57:09:b1:1d:71:94:14:86:
9b:d6:98:23:d8:47:76:b7:9b:27:f0:f9:9d:f1:fa:
4f:3b:f3:c2:9c:cb:0e:35:47:4f:94:68:73:59:54:
43:1b:f3:0b:88:a1:cb:4d:3b:56:77:ba:fb:48:0d:
78:d3:a1:b1:3f:4d:6a:ab:1a:3c:80:7c:17:aa:38:
73:e6:65:dc:36:ae:33:f2:9e:d2:6f:d0:5e:7b:d7:
a5:a6:f8:6e:74:bd:24:b5:d9:4b:70:66:a1:23:8a:
7d:52:d3:77:76:64:66:8f:34:4e:93:ca:af:14:0d:
f0:e4:4f:6d:ce:2c:95:af:0d:ac:85:78:34:7e:b8:
0f:83:f2:9d:2a:a7:da:5a:ed:92:ba:18:ef:7b:65:
d7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:77:17:8A:39:B2:47:0A:3F:2D:E6:C8:CE:F8:1B:B4:66:77:BB:DC
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:32:de:f2:53:72:e5:d1:58:b0:2e:03:b1:bf:3c:c9:10:5a:
5e:1d:4e:73:c9:37:17:7d:92:4c:e4:ae:3e:e6:31:84:37:74:
b8:cc:cd:51:6d:0c:e1:ca:62:b9:b1:e9:c3:c7:c3:c1:fa:7b:
d9:a2:85:4d:94:2b:e8:57:30:5d:e1:01:04:15:ab:32:dc:1c:
a7:c5:49:05:38:cb:52:6d:d9:a3:cb:c5:74:a9:54:a1:05:20:
dc:d2:bb:8d:9f:9a:37:bb:19:81:4d:8c:51:8c:ee:8c:de:4c:
1a:7a:2f:e3:d9:43:58:28:ad:b2:55:14:d6:43:5c:39:a9:29:
c1:4c:51:73:4c:35:d9:42:53:1a:80:aa:f5:6a:1c:62:50:a6:
cf:bf:e3:b0:fa:d0:d1:8a:87:e5:df:fc:c3:8d:da:23:5e:c5:
57:85:92:99:ad:b0:f9:a6:19:78:a1:f4:df:6d:6c:b0:b8:5d:
ae:8f:4a:f7:18:c2:fc:bd:6c:f8:85:70:96:71:cd:f3:52:53:
15:60:85:49:3d:01:c3:f7:05:75:7f:9d:6d:3c:8b:c2:01:fc:
03:68:db:c8:f7:ce:b2:a3:07:f5:f2:a1:50:92:12:82:d5:cc:
80:8a:ad:4d:40:97:c8:d2:96:45:0a:1e:9d:89:52:23:6e:28:
cb:94:63:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9as+m9gmkuoB1LEjJrvxSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxOTJjNTJmMzYwYTNhNzJmZTIyNDQxYWMzZmM3ZTBlNTIy
NWVlOTEwHhcNMjUxMDE5MTcwMDU5WhcNMjUxMDIwMTcwMDU5WjAzMTEwLwYDVQQD
EyhkYTc3MTc4YTM5YjI0NzBhM2YyZGU2YzhjZWY4MWJiNDY2NzdiYmRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCVp/WPHI9awBCiLQwzFTkEK15dr
5NI5W2d0aV+1M7d9m33XoCrZcSsF4ZdP0G4RI5O+dEzTyygk8MY0nF96xMIGJjaU
Nm4F6e+wo37BJPu/vZs77r0/T0x/YhErBz16dst/XMK/kgXOdoBWevehVwmxHXGU
FIab1pgj2Ed2t5sn8Pmd8fpPO/PCnMsONUdPlGhzWVRDG/MLiKHLTTtWd7r7SA14
06GxP01qqxo8gHwXqjhz5mXcNq4z8p7Sb9Bee9elpvhudL0ktdlLcGahI4p9UtN3
dmRmjzROk8qvFA3w5E9tziyVrw2shXg0frgPg/KdKqfaWu2Suhjve2XXmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNp3F4o5skcKPy3myM74G7Rmd7vcMB8GA1UdIwQY
MBaAFDGSxS82Cjpy/iJEGsP8fg5SJe6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMt
Mjc0OGM0MDAyYzJlLzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81MjRiZmUtYzVhZS00ZjY3LTg0MTMtMjc0OGM0MDAyYzJl
LzEvTVpMRkx6WUtPbkwtSWtRYXdfeC1EbElsN3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYDLe8lNy
5dFYsC4Dsb88yRBaXh1Oc8k3F32STOSuPuYxhDd0uMzNUW0M4cpiubHpw8fDwfp7
2aKFTZQr6FcwXeEBBBWrMtwcp8VJBTjLUm3Zo8vFdKlUoQUg3NK7jZ+aN7sZgU2M
UYzujN5MGnov49lDWCitslUU1kNcOakpwUxRc0w12UJTGoCq9WocYlCmz7/jsPrQ
0YqH5d/8w43aI17FV4WSma2w+aYZeKH0321ssLhdro9K9xjC/L1s+IVwlnHN81JT
FWCFST0Bw/cFdX+dbTyLwgH8A2jbyPfOsqMH9fKhUJISgtXMgIqtTUCXyNKWRQoe
nYlSI24oy5Rj/A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:52:11 2025 by rpki-client