Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: thQQFw3o7dD/bpHp03+qL7nIF/AznxZbuVpja2UPsvk=
Subject key identifier: 2D:F7:D5:4E:24:93:28:2D:6D:18:C0:E7:A9:41:8C:C0:D8:E1:C7:AD
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019D25F17DF133777FABAE4B9FF4C6BEC2BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 142C
Signing time: Wed 25 Mar 2026 17:01:16 +0000
Manifest this update: Wed 25 Mar 2026 17:01:16 +0000
Manifest next update: Thu 26 Mar 2026 17:01:16 +0000
Files and hashes: 1: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (hash: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI=)
2: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: +67XNtIf2ZrypKOSssGpvhFhRh+cGifo4gMgJyaOP80=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:7d:f1:33:77:7f:ab:ae:4b:9f:f4:c6:be:c2:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Mar 25 17:01:16 2026 GMT
Not After : Mar 26 17:01:16 2026 GMT
Subject: CN=2df7d54e2493282d6d18c0e7a9418cc0d8e1c7ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ac:e3:8f:1b:86:e1:5c:81:be:eb:a9:83:6a:
2b:7d:1a:42:5f:76:8e:78:4e:13:05:b2:40:00:46:
0b:6e:8e:b4:25:25:c4:dc:5b:4c:f8:38:e6:48:6f:
8d:79:44:c5:d2:fe:60:f9:aa:f4:b5:ec:a6:5d:16:
5d:c1:1d:5d:02:b7:99:52:82:00:05:2e:b3:5b:96:
ce:6e:ee:b1:cd:5f:24:dc:d2:84:4a:c6:0b:a9:df:
7b:19:c7:eb:63:4d:8e:4c:5e:2a:5b:b1:e0:f3:db:
d4:4f:92:f8:b0:52:94:63:57:df:d3:44:30:55:b6:
3c:e3:09:c3:3e:46:33:2b:14:56:be:63:f9:af:f2:
cd:c9:5c:99:0c:34:38:01:72:9b:83:0d:c4:88:c1:
de:10:29:01:f2:fd:13:cf:d7:a5:14:a5:74:9a:fc:
aa:e5:64:5d:1b:69:ec:8b:28:c8:61:62:0a:11:48:
9b:dd:ea:51:30:e0:9e:b4:11:0c:fc:d0:72:43:f1:
66:9b:34:b9:0c:47:bd:7b:0d:32:bf:bc:df:b0:83:
9c:1c:25:df:14:5e:c3:b7:b8:97:f1:70:24:bd:26:
f0:bc:77:1b:25:3c:b6:f3:4e:ab:04:55:c3:79:9f:
47:02:54:13:e7:ee:b1:8f:21:51:13:41:78:85:c0:
8f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F7:D5:4E:24:93:28:2D:6D:18:C0:E7:A9:41:8C:C0:D8:E1:C7:AD
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:b7:8b:15:47:b1:0b:92:84:50:54:b5:44:86:a2:9e:4c:b5:
fc:1e:15:cd:68:9b:cb:0b:d3:89:ad:35:0f:07:15:d0:2a:fc:
40:f2:ec:42:31:9a:ea:b3:62:90:48:b3:5b:45:fd:70:27:cd:
6c:8a:ae:a0:63:38:78:25:74:01:3f:f6:fb:ff:cf:0f:dd:db:
af:00:5f:24:56:9a:b9:b9:2d:f7:e1:50:b8:39:0d:7d:64:d1:
37:4d:3d:c0:d5:48:39:65:b6:0a:61:14:3f:3a:09:39:00:b7:
10:82:d2:3c:1d:7d:1d:d7:9f:43:d3:37:b0:c5:48:67:0d:0d:
04:93:f5:06:e4:26:1a:3b:d2:16:90:7a:b5:9c:ed:0c:db:19:
6a:8d:53:bf:88:f6:c9:aa:6b:74:92:17:37:95:8c:3e:7d:f5:
f3:6d:16:1a:ba:8c:bc:b2:b0:d1:05:81:c3:09:9f:6f:66:d1:
f4:7d:ef:3a:cf:e0:98:59:b6:de:90:64:06:bb:02:34:1e:f6:
23:74:27:b7:cf:98:07:3f:5a:e8:82:8e:7e:42:4b:87:bc:91:
f4:b6:f1:e0:d6:b7:ac:f4:bf:ff:61:d1:1c:09:f8:e9:06:3a:
ae:2d:44:9e:da:9f:5e:4e:00:ae:f1:ca:c7:2b:6b:3b:d0:a7:
49:ad:96:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8X3xM3d/q65Ln/TGvsK+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxOTVmNzM0MTllODIyMzI5Nzk0Y2YxN2ZiYTdlOTNmMzc1
Mzc0YTkwHhcNMjYwMzI1MTcwMTE2WhcNMjYwMzI2MTcwMTE2WjAzMTEwLwYDVQQD
EygyZGY3ZDU0ZTI0OTMyODJkNmQxOGMwZTdhOTQxOGNjMGQ4ZTFjN2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5qzjjxuG4VyBvuupg2orfRpCX3aO
eE4TBbJAAEYLbo60JSXE3FtM+DjmSG+NeUTF0v5g+ar0teymXRZdwR1dAreZUoIA
BS6zW5bObu6xzV8k3NKESsYLqd97GcfrY02OTF4qW7Hg89vUT5L4sFKUY1ff00Qw
VbY84wnDPkYzKxRWvmP5r/LNyVyZDDQ4AXKbgw3EiMHeECkB8v0Tz9elFKV0mvyq
5WRdG2nsiyjIYWIKEUib3epRMOCetBEM/NByQ/FmmzS5DEe9ew0yv7zfsIOcHCXf
FF7Dt7iX8XAkvSbwvHcbJTy2806rBFXDeZ9HAlQT5+6xjyFRE0F4hcCPcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC331U4kkygtbRjA56lBjMDY4cetMB8GA1UdIwQY
MBaAFDGV9zQZ6CIyl5TPF/un6T83U3SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEt
Y2RjZmJiMTAwNDQ3LzEvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEtY2RjZmJiMTAwNDQ3
LzEvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfLeLFUex
C5KEUFS1RIainky1/B4VzWibywvTia01DwcV0Cr8QPLsQjGa6rNikEizW0X9cCfN
bIquoGM4eCV0AT/2+//PD93brwBfJFaaubkt9+FQuDkNfWTRN009wNVIOWW2CmEU
PzoJOQC3EILSPB19HdefQ9M3sMVIZw0NBJP1BuQmGjvSFpB6tZztDNsZao1Tv4j2
yaprdJIXN5WMPn31820WGrqMvLKw0QWBwwmfb2bR9H3vOs/gmFm23pBkBrsCNB72
I3Qnt8+YBz9a6IKOfkJLh7yR9Lbx4Na3rPS//2HRHAn46QY6ri1EntqfXk4ArvHK
xytrO9CnSa2WrQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 03:30:17 2026 by rpki-client