Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: v0O9nSCsO0WDOWiG4zHjDZ5aYj1AOyRiV4HnviNzEA0=
Subject key identifier: 41:6D:6C:37:1C:91:C3:63:01:72:C4:86:CF:6D:33:4C:84:48:A2:17
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019EC336EE5250C7D18F8F346E5B18438484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 1502
Signing time: Sat 13 Jun 2026 23:00:17 +0000
Manifest this update: Sat 13 Jun 2026 23:00:17 +0000
Manifest next update: Sun 14 Jun 2026 23:00:17 +0000
Files and hashes: 1: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (hash: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI=)
2: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: G8A3n9vhE+WHQBDDAmYx1p+dGY9Pj8EuDanvkycOrwM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:36:ee:52:50:c7:d1:8f:8f:34:6e:5b:18:43:84:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Jun 13 23:00:17 2026 GMT
Not After : Jun 14 23:00:17 2026 GMT
Subject: CN=416d6c371c91c3630172c486cf6d334c8448a217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:de:f3:7a:48:fe:5d:af:12:9c:0a:20:67:1a:
5e:18:ab:28:d8:28:cc:37:7b:83:87:c1:ef:4a:22:
53:56:11:b7:a4:63:67:70:a7:14:63:c9:ad:86:80:
33:ff:b8:06:c0:19:a0:a8:e2:d4:0e:c1:55:17:b5:
9a:52:ed:ce:f7:6e:83:f5:be:9c:40:c7:31:39:05:
26:48:d4:d2:ac:bd:8e:2a:ee:95:26:a8:ef:64:15:
89:d7:29:7e:26:14:07:dd:9c:c5:08:0d:9d:a3:66:
59:98:ed:bb:22:b6:fb:b9:f1:86:a5:ab:0c:51:ed:
d2:09:5b:5e:97:75:f8:ba:5c:07:3c:10:92:5e:c3:
1a:23:d2:f1:0f:b3:92:11:f1:09:bf:f3:12:ec:db:
f9:2a:8d:8b:b6:f1:fb:d0:3f:ba:dd:03:b9:2e:59:
a0:d2:4d:63:8e:94:d4:a2:a5:41:47:b0:93:56:ae:
60:0a:ff:bb:3a:3b:7f:80:17:10:7f:96:3d:85:c7:
fa:c4:96:cb:a3:a6:bd:41:26:38:06:b9:1b:b6:de:
bb:44:74:5c:2d:e6:06:bf:44:ee:5b:69:3f:42:6d:
bd:07:bb:ae:61:b9:82:04:c1:9f:c2:a6:d7:65:4b:
ba:6e:5a:7f:6e:69:a2:1a:f5:1b:99:9a:91:2c:29:
b0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:6D:6C:37:1C:91:C3:63:01:72:C4:86:CF:6D:33:4C:84:48:A2:17
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:78:ef:8a:76:24:f4:8c:f6:83:47:e5:b8:be:fc:02:90:38:
d9:b5:d7:52:b5:4c:72:0c:e0:b6:8a:97:e0:94:f9:08:8d:e6:
45:49:42:41:5e:69:91:68:55:52:8d:f5:2d:ec:bb:83:b5:39:
3e:50:ce:66:df:77:21:09:e4:6a:b5:4a:d1:58:b8:28:a8:68:
a0:32:64:50:eb:91:37:6c:b4:38:99:1e:85:11:28:b9:d2:06:
9c:bb:1b:fb:cc:b9:33:0a:5a:15:b2:40:26:d9:81:d6:45:a1:
3a:c5:e7:be:2b:2e:d2:51:6b:99:3a:5d:d6:dc:22:a5:ac:ec:
88:80:9c:7e:3d:11:ff:e1:d7:06:7f:9f:99:a7:6e:5e:5d:b5:
eb:c4:19:72:24:64:1c:b2:cd:87:2c:f3:a3:fb:ed:8c:c2:33:
b2:da:f6:42:1f:2e:81:26:fe:20:7b:82:a9:24:8c:52:9e:f6:
05:95:c0:53:c0:db:5a:9c:aa:8c:c4:61:62:32:09:3a:81:e9:
65:6c:6b:2a:8d:a7:5e:7a:17:15:a4:c5:0d:49:ea:af:28:fb:
e7:2d:8d:ad:63:5d:b2:26:cc:23:52:51:9a:ac:82:6c:36:5c:
75:bb:e4:b3:b6:4d:59:96:19:73:40:17:9b:2b:29:62:e1:00:
09:a2:ec:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:08:29 2026 by rpki-client