Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: z9X8gUqIphoywHmSgvpwTDzSbOAJgPQRAQcYgKEo+e8=
Subject key identifier: 2E:96:54:5D:39:B5:BB:0D:92:7B:97:DB:FE:A7:24:30:10:81:AE:B4
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019E1F112D4E96E1166DC998DDB7E0266C6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 14AD
Signing time: Wed 13 May 2026 02:01:19 +0000
Manifest this update: Wed 13 May 2026 02:01:19 +0000
Manifest next update: Thu 14 May 2026 02:01:19 +0000
Files and hashes: 1: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (hash: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI=)
2: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: eE+DrTrH2z5617sSgsUhlpTLSn//fJgRN83X6IX1CyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:2d:4e:96:e1:16:6d:c9:98:dd:b7:e0:26:6c:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: May 13 02:01:19 2026 GMT
Not After : May 14 02:01:19 2026 GMT
Subject: CN=2e96545d39b5bb0d927b97dbfea724301081aeb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:28:ac:cc:39:e6:14:8b:11:4c:1c:0c:2f:
18:91:d0:ec:3f:46:aa:d8:91:94:8a:22:a3:42:ba:
78:89:67:ec:b9:d7:52:f2:7b:1e:6b:57:17:59:96:
c3:01:54:d2:34:af:de:49:6e:4c:89:22:f3:c6:e7:
32:d6:45:98:77:e8:a7:49:8c:eb:84:b5:c0:18:01:
e2:d3:22:f3:3a:6e:73:ed:c3:5f:a0:d0:ff:86:30:
84:d6:23:18:00:f6:ad:44:cb:ed:09:8b:2b:4a:1b:
22:39:49:90:84:b6:7f:31:11:fa:39:b1:ff:0d:8b:
ba:a3:13:fa:04:1b:eb:a9:64:72:52:1a:be:c5:f0:
b8:61:91:85:a8:bd:50:ee:7b:6d:ef:7e:a9:93:b0:
4a:80:f6:50:27:eb:48:e6:4f:95:f2:90:7c:2c:1b:
2d:0c:83:ba:96:31:d5:57:90:cc:df:23:76:06:41:
78:9f:5a:62:82:bb:2b:ea:98:ac:06:a9:42:a5:9e:
04:4f:65:b0:87:1e:a9:8b:e2:b0:f4:63:e0:92:1c:
f3:7d:8d:b4:4c:c0:6e:d7:d0:5b:ab:c6:9c:ec:04:
88:76:ad:3f:3f:4a:2a:45:ba:e7:12:1e:2c:07:24:
61:91:a2:1b:60:b1:5d:9c:d9:3c:ec:6c:7b:5d:a2:
1d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:96:54:5D:39:B5:BB:0D:92:7B:97:DB:FE:A7:24:30:10:81:AE:B4
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:d4:73:c6:4c:c9:0a:ff:95:27:b0:52:0b:a2:3f:1e:2e:4d:
66:04:72:84:d1:bb:95:a7:08:bc:96:e0:77:d2:68:b5:ab:f4:
00:6e:55:5c:01:91:70:e0:8b:1a:2e:f4:c4:83:38:3e:2f:00:
0b:d0:8b:b5:50:43:a7:21:1e:09:3a:80:18:4d:16:b8:66:d1:
ac:5c:fb:d4:8c:97:ba:d6:1b:b4:79:c0:5b:d4:8e:42:a0:ff:
be:60:fd:c9:fd:f7:d1:f3:4a:05:b5:fa:cf:87:cf:7f:bb:22:
cb:9a:c5:70:a7:93:43:eb:20:a0:e9:4e:17:9f:65:4f:38:f7:
8a:21:ca:87:d5:43:53:f8:7f:ac:51:10:55:cb:0a:6b:74:c6:
1b:12:09:81:8d:ed:96:d6:ff:79:d4:85:d7:f5:fa:04:9f:45:
58:ae:fa:37:72:36:91:b4:aa:d7:ca:df:21:c1:f5:a4:9b:a7:
3b:9c:42:f7:d9:4b:fc:95:3c:58:8e:3e:a7:d7:50:1f:7f:55:
b4:4f:66:43:b6:16:89:43:46:53:14:fa:3b:7e:db:5e:dc:fe:
5c:47:92:b3:12:9b:4d:00:14:b7:fe:ea:bb:85:a5:4c:57:16:
84:0b:15:c0:45:0b:b4:a2:72:03:a8:25:ec:7e:73:6b:35:00:
72:c3:03:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fES1OluEWbcmY3bfgJmxvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxOTVmNzM0MTllODIyMzI5Nzk0Y2YxN2ZiYTdlOTNmMzc1
Mzc0YTkwHhcNMjYwNTEzMDIwMTE5WhcNMjYwNTE0MDIwMTE5WjAzMTEwLwYDVQQD
EygyZTk2NTQ1ZDM5YjViYjBkOTI3Yjk3ZGJmZWE3MjQzMDEwODFhZWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHgorMw55hSLEUwcDC8YkdDsP0aq
2JGUiiKjQrp4iWfsuddS8nsea1cXWZbDAVTSNK/eSW5MiSLzxucy1kWYd+inSYzr
hLXAGAHi0yLzOm5z7cNfoND/hjCE1iMYAPatRMvtCYsrShsiOUmQhLZ/MRH6ObH/
DYu6oxP6BBvrqWRyUhq+xfC4YZGFqL1Q7ntt736pk7BKgPZQJ+tI5k+V8pB8LBst
DIO6ljHVV5DM3yN2BkF4n1pigrsr6pisBqlCpZ4ET2Wwhx6pi+Kw9GPgkhzzfY20
TMBu19Bbq8ac7ASIdq0/P0oqRbrnEh4sByRhkaIbYLFdnNk87Gx7XaIdXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC6WVF05tbsNknuX2/6nJDAQga60MB8GA1UdIwQY
MBaAFDGV9zQZ6CIyl5TPF/un6T83U3SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEt
Y2RjZmJiMTAwNDQ3LzEvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEtY2RjZmJiMTAwNDQ3
LzEvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdtRzxkzJ
Cv+VJ7BSC6I/Hi5NZgRyhNG7lacIvJbgd9Jotav0AG5VXAGRcOCLGi70xIM4Pi8A
C9CLtVBDpyEeCTqAGE0WuGbRrFz71IyXutYbtHnAW9SOQqD/vmD9yf330fNKBbX6
z4fPf7siy5rFcKeTQ+sgoOlOF59lTzj3iiHKh9VDU/h/rFEQVcsKa3TGGxIJgY3t
ltb/edSF1/X6BJ9FWK76N3I2kbSq18rfIcH1pJunO5xC99lL/JU8WI4+p9dQH39V
tE9mQ7YWiUNGUxT6O37bXtz+XEeSsxKbTQAUt/7qu4WlTFcWhAsVwEULtKJyA6gl
7H5zazUAcsMDZQ==
-----END CERTIFICATE-----
Generated at Wed May 13 12:32:19 2026 by rpki-client