Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: +SbVJziEsZ9KKA5nB/k4NmQ34z6TaupGE0+UfS/w2r8=
Subject key identifier: 3F:2B:92:AD:90:87:1E:01:E6:7D:25:20:DA:DF:D7:47:6F:99:BF:55
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 0198D4E05B68C327476987E754AE15586A65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 11EF
Signing time: Sat 23 Aug 2025 03:02:09 +0000
Manifest this update: Sat 23 Aug 2025 03:02:09 +0000
Manifest next update: Sun 24 Aug 2025 03:02:09 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: LNwWZ1JKJTqNhOlPcVj2dbOy+weDu/k8M5fC1PBLyJQ=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:5b:68:c3:27:47:69:87:e7:54:ae:15:58:6a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Aug 23 03:02:09 2025 GMT
Not After : Aug 24 03:02:09 2025 GMT
Subject: CN=3f2b92ad90871e01e67d2520dadfd7476f99bf55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a2:3b:4f:bc:8c:9c:8a:d3:6e:ec:72:7a:37:
51:95:c1:8a:03:56:9c:1f:52:73:dd:23:e3:8a:21:
a5:b1:21:29:6d:16:ec:3c:73:9d:13:ca:45:c3:e9:
ab:68:04:03:3b:6c:61:ba:b6:66:23:3f:41:7c:ec:
89:04:9d:1d:e8:e5:a2:71:3e:6b:66:a7:59:b9:21:
37:6c:ba:ea:7d:4d:a8:e3:aa:a2:2a:68:94:4e:39:
dd:97:5e:85:69:9a:bf:33:78:54:f9:6f:95:75:94:
04:7a:a4:4a:25:33:8d:3d:85:30:97:7a:f5:bd:2f:
ab:42:65:d0:f7:a0:5c:90:78:ce:2e:97:1f:bd:96:
c3:6d:b2:c5:47:aa:e6:03:73:d4:45:de:ce:12:05:
d2:ef:6b:26:ea:73:f0:e9:47:12:34:1f:78:96:d3:
2a:ef:55:d9:b4:44:5f:8b:d8:1d:fe:47:66:af:bd:
ee:1f:37:48:0f:dd:fc:30:e4:eb:2e:41:1f:f3:3d:
f9:b3:c1:2f:fe:49:b7:46:1b:fd:b0:86:64:c8:3b:
b3:02:87:8b:cf:7e:fb:32:71:88:a5:d5:53:2b:5a:
3f:e9:a3:16:97:4d:3a:10:95:14:0d:0c:42:11:d7:
ff:7b:a7:e5:66:63:0c:0e:56:a5:8e:66:98:bb:d3:
8f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2B:92:AD:90:87:1E:01:E6:7D:25:20:DA:DF:D7:47:6F:99:BF:55
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:98:54:36:4e:6a:05:40:a0:9a:90:5b:0c:42:42:dc:f2:33:
c2:e4:d4:73:d5:0f:76:18:5a:f8:a3:5e:db:e3:37:73:3a:f9:
fd:a0:54:33:a7:33:a8:cc:cf:02:12:f2:0d:8f:d7:57:a9:bc:
89:86:3d:e2:f8:af:2f:b3:b1:45:8c:ed:b2:d2:00:99:2a:7b:
26:86:6f:a2:cb:fc:20:a7:a9:42:3b:dd:59:61:5e:db:0b:27:
c4:77:70:62:72:2f:c2:d5:2f:e8:ea:48:3a:13:6a:eb:23:93:
92:80:d0:3d:2c:9c:73:2b:d1:8c:ff:96:aa:6d:28:5c:48:40:
a4:4e:5b:66:72:25:1f:1e:2c:9b:ed:0f:13:d0:55:06:38:13:
78:a0:fa:60:c0:1c:c4:87:2c:f3:ff:eb:75:d9:7d:d3:18:ca:
67:57:6c:ba:5e:62:9d:9c:58:67:5e:d8:c8:a0:7f:31:67:2f:
ce:74:af:6c:90:e5:69:ef:1b:29:32:40:bb:1f:86:c8:cd:b1:
29:2e:5c:bc:90:60:89:b3:4b:9a:e2:b5:35:73:c9:2b:a9:15:
87:47:f7:da:f9:4a:5e:31:ce:80:b0:0f:5e:87:78:62:a0:84:
7a:3f:76:bd:c6:e7:c5:f4:0b:db:1a:34:a7:28:3c:aa:8e:97:
1d:63:fd:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:34:23 2025 by rpki-client