Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: uVauNysVNPwt0R/IPHeHGPmQCNvfE0cxFao7DfepmoM=
Subject key identifier: 56:F2:B6:55:73:67:F6:D3:1C:AE:EF:8D:53:54:F2:0F:F9:23:C3:63
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019CAC470F560A4272E8ED6F726D6486C6EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 13ED
Signing time: Mon 02 Mar 2026 02:01:03 +0000
Manifest this update: Mon 02 Mar 2026 02:01:03 +0000
Manifest next update: Tue 03 Mar 2026 02:01:03 +0000
Files and hashes: 1: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (hash: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI=)
2: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: T7pOLsjFAIkmrUSupX/YdljrWm/CRmNYT09PlpaP9Jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:0f:56:0a:42:72:e8:ed:6f:72:6d:64:86:c6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Mar 2 02:01:03 2026 GMT
Not After : Mar 3 02:01:03 2026 GMT
Subject: CN=56f2b6557367f6d31caeef8d5354f20ff923c363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:43:d3:d4:bf:3e:74:d1:66:7b:6e:e4:0e:1a:
ea:46:7e:52:73:5a:a1:55:19:10:30:93:70:7a:ff:
39:b0:1c:e2:b4:97:fb:91:a4:52:87:dd:0c:b3:d7:
6d:f5:16:03:51:a9:50:dc:bd:ea:0b:ed:73:42:b8:
60:45:61:0f:58:b2:16:d1:36:5b:51:e5:58:18:7f:
33:3f:f7:38:aa:a4:64:f7:32:e5:fb:32:55:3d:70:
3d:f3:55:f9:c6:80:34:74:e7:c6:4d:f2:44:e8:e2:
fe:98:88:be:c2:b8:51:64:61:bd:57:c9:ab:0f:65:
8a:70:e4:12:fc:dd:ba:82:8e:49:38:9a:17:2b:b1:
06:08:6e:f9:8c:5f:a2:0c:a9:a2:b1:e3:95:12:af:
94:e5:e5:11:2f:e6:30:bb:a7:6e:aa:50:05:2a:c8:
cc:2d:11:02:d9:2f:d9:41:75:d1:60:6e:15:43:11:
67:8e:6c:12:9f:ea:0c:a8:50:23:d8:89:15:65:d4:
25:e5:c9:95:cd:80:88:93:1f:92:7a:5f:4e:1a:50:
ad:91:9c:02:7c:6c:d8:ef:fc:c1:15:23:88:9f:b5:
84:6a:9a:8f:1d:00:fc:1e:f0:84:ca:e6:6b:21:f0:
4e:88:e7:6b:eb:e5:7c:ec:98:b0:bd:c1:ba:ac:ee:
d4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F2:B6:55:73:67:F6:D3:1C:AE:EF:8D:53:54:F2:0F:F9:23:C3:63
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:5a:3e:5b:cd:61:f9:a9:af:7c:69:13:49:ed:07:9a:f9:3b:
75:4e:ea:6e:72:9e:ab:7c:d6:03:72:5f:9f:f2:01:37:45:b0:
05:19:51:f2:c0:53:99:c4:2b:23:2c:a6:59:b5:bc:86:9d:f8:
7b:6b:06:7f:ae:b3:e9:a7:70:43:2d:f2:ef:7e:4a:4b:8e:d2:
91:5a:28:24:e1:bf:ba:3a:1a:17:c7:06:73:10:1c:63:f2:7a:
c4:db:2d:c3:f8:8b:8e:e4:9c:41:97:af:54:c8:6f:db:b6:f4:
4b:a1:ff:00:69:5f:a0:fe:56:8e:26:af:5c:24:c4:a6:db:c2:
4d:bc:ec:75:82:d1:da:7f:eb:1d:30:04:df:7b:de:12:ed:aa:
6b:93:9b:fe:d7:8d:28:94:67:e2:0c:c3:2a:5b:9d:21:13:57:
7e:8e:10:cb:a3:d4:8c:4d:24:29:ce:be:a1:ec:21:1c:95:58:
f5:4e:36:a0:56:d3:6d:41:0e:e5:b3:d3:8b:61:db:cf:89:c2:
6e:0d:66:3a:05:0a:7f:24:1b:30:4d:6f:b4:0d:ee:5a:96:e9:
01:a1:28:19:a0:bd:c9:e6:d0:e2:51:b6:19:81:da:9e:ea:2e:
0f:35:06:37:1d:c4:4b:48:07:9e:81:e4:f5:40:23:b3:68:62:
15:40:d9:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:22:02 2026 by rpki-client