Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: m2x2Ur9O27Fo2EPKuSZfdogce7Q5Dx2KUp/rtbtxYtc=
Subject key identifier: 94:CB:21:22:3A:4F:93:25:D4:BF:C4:8F:5C:6C:23:AC:07:5C:F4:5E
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 0199FC58FB6C98ED4CB6EEF2937834FDC09B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 1288
Signing time: Sun 19 Oct 2025 12:01:53 +0000
Manifest this update: Sun 19 Oct 2025 12:01:53 +0000
Manifest next update: Mon 20 Oct 2025 12:01:53 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: IlQAAcv4nlrYiWqhUurO/rfVuYp/XA/OYRG8GHJapTg=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:fb:6c:98:ed:4c:b6:ee:f2:93:78:34:fd:c0:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Oct 19 12:01:53 2025 GMT
Not After : Oct 20 12:01:53 2025 GMT
Subject: CN=94cb21223a4f9325d4bfc48f5c6c23ac075cf45e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2d:ab:7d:24:8c:5e:4b:07:0e:99:d0:2b:2c:
72:27:fd:87:2d:6b:b1:3e:8c:1a:21:58:82:9b:ba:
a1:6a:ba:7a:ec:c2:d9:18:c3:90:36:bc:8f:e4:a8:
f9:d6:ff:60:5e:96:1a:93:6f:5a:fe:82:24:be:c5:
6c:41:b2:83:32:c6:af:3b:a6:63:cc:72:e8:83:68:
a5:fb:c3:61:e5:6f:de:0c:9b:be:28:94:b8:3c:5f:
81:3f:a9:00:1e:be:92:ea:b6:b8:34:dc:da:fc:b2:
d9:7f:5a:88:49:d1:ee:57:ec:1e:3b:6a:7f:34:ce:
aa:dd:ca:de:0e:d2:b6:d9:d1:26:a2:dc:0a:65:af:
c2:97:29:f9:c8:a3:ee:36:51:71:c5:03:6e:e9:8c:
3f:11:45:60:fe:b9:4f:d6:a8:19:63:31:c9:b1:33:
72:af:a7:ba:0b:8f:fa:c5:26:cc:94:45:bf:ec:7d:
1e:02:b6:41:a9:8f:6c:21:e0:86:c8:0a:d8:a7:15:
36:52:16:ec:04:00:24:59:bb:b4:14:fb:98:ab:53:
7a:f4:99:69:00:f9:61:bc:f1:82:a1:53:e5:2c:cd:
35:c9:4b:26:99:5e:b8:8c:7f:72:08:e4:da:fd:bd:
aa:d2:bf:9b:86:87:e3:8b:dd:10:31:c6:8c:a4:2d:
cb:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:CB:21:22:3A:4F:93:25:D4:BF:C4:8F:5C:6C:23:AC:07:5C:F4:5E
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:d1:03:70:28:bb:6d:f2:5a:84:ec:59:23:d7:ac:bd:c1:d6:
49:1c:b5:d1:47:92:38:19:43:08:3f:c6:ea:fd:9f:f8:c7:9d:
e7:7a:53:3d:5f:39:39:64:ad:1f:40:8d:9e:3c:b2:23:1e:da:
b0:0a:8c:86:76:e4:bf:6b:82:06:cf:4a:bc:65:20:48:2a:2e:
e8:4c:15:c3:d1:be:9e:00:f7:62:64:1f:2e:d2:29:e2:25:fa:
af:c0:0c:64:40:6b:3f:75:fc:0d:a8:d5:7a:13:26:7c:d8:1b:
f3:3d:da:9e:33:f3:ee:45:62:82:32:01:af:7a:78:d6:9c:2f:
43:09:7b:ca:14:95:40:06:10:2a:38:15:51:2c:81:d4:d6:64:
cc:56:66:33:0b:cf:c7:2f:ba:1e:36:a9:2f:9b:f7:fc:9d:d5:
57:6c:84:e7:dc:96:21:45:9a:ab:89:85:d7:f4:70:4b:5f:c6:
0e:d9:15:16:87:03:6d:13:93:36:44:a9:d6:5b:c5:19:4c:30:
98:9e:c0:6e:56:a5:70:98:2e:25:af:58:c0:7e:50:7e:b4:95:
a0:d0:0f:77:15:58:4a:32:cb:d6:4d:fb:c5:de:a5:54:dd:e6:
ac:0e:11:11:ae:9e:10:4a:97:a0:f4:23:e5:5b:c1:b6:8b:23:
b2:c2:de:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:39:32 2025 by rpki-client