Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: oagb4Viw7Ar/DBU8YI8ZcaxT/PITc7ChwVR8zLfoHIk=
Subject key identifier: 78:4E:33:DF:1B:1A:60:5B:C9:C3:A6:E0:03:DA:0C:0C:13:34:70:0D
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019DA3787E3C8601C4803D9ED970DA86CABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 146D
Signing time: Sun 19 Apr 2026 02:01:15 +0000
Manifest this update: Sun 19 Apr 2026 02:01:15 +0000
Manifest next update: Mon 20 Apr 2026 02:01:15 +0000
Files and hashes: 1: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (hash: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI=)
2: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: UXY/QzEukl7TcDPUCbd1EXBYEEZiQolfIsYdOeUgGQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:7e:3c:86:01:c4:80:3d:9e:d9:70:da:86:ca:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Apr 19 02:01:15 2026 GMT
Not After : Apr 20 02:01:15 2026 GMT
Subject: CN=784e33df1b1a605bc9c3a6e003da0c0c1334700d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cf:56:6a:0b:62:2d:6d:bb:8a:58:0d:45:b5:
9e:80:79:f6:e1:91:b0:b6:7f:45:b0:31:20:fb:ee:
8f:14:61:63:6a:72:08:2b:11:55:eb:76:f9:7f:98:
c7:8f:00:a2:6a:d2:16:fb:d9:a9:25:83:a4:0c:39:
8b:51:05:69:01:8c:db:76:62:a2:56:5a:a5:dd:a2:
8b:0e:7b:c1:54:87:21:c9:c9:65:40:ca:ee:0b:9d:
cd:53:7e:a0:bd:58:e6:92:71:1e:a7:13:8d:54:6a:
93:3e:e9:98:9e:c7:df:2f:05:a7:b6:7f:af:39:69:
99:b8:74:b1:40:77:17:d2:87:a8:e4:9e:cb:36:de:
96:cc:8f:5c:c6:24:03:9d:2c:69:a4:44:7d:c2:d2:
9b:f1:cf:95:7b:fd:12:80:38:93:c7:bd:e2:6f:7b:
37:08:53:09:35:76:dd:7c:a7:21:0c:58:4d:8f:f1:
ca:d8:25:1c:cd:20:28:66:b8:ad:c0:b5:f1:d4:60:
64:9d:b8:66:fd:5b:67:c9:66:0b:58:4d:35:54:25:
5b:ac:3b:e3:55:fb:29:dc:16:c9:c4:45:90:51:45:
fd:9c:5b:24:c9:aa:af:78:1c:e9:e1:ff:f4:e4:80:
6a:11:28:f5:76:85:fd:06:50:ad:30:82:ea:4f:e1:
eb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:4E:33:DF:1B:1A:60:5B:C9:C3:A6:E0:03:DA:0C:0C:13:34:70:0D
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:73:d5:b0:18:dd:28:55:c3:d1:3f:db:dc:85:23:90:f5:31:
ff:30:fc:43:8c:f0:4e:6a:e6:ea:40:fd:dd:4b:7b:3c:f3:eb:
19:26:48:1f:09:46:d4:fb:2b:59:49:b8:7f:eb:6e:9c:e0:22:
0e:26:99:de:0c:13:60:9f:26:3a:3b:fb:48:ba:47:74:36:f5:
4a:68:89:de:d5:3e:53:08:61:90:3a:7f:04:0f:20:2e:b4:6d:
76:84:82:0c:ae:53:0d:1a:62:88:2f:14:50:f7:c6:74:3a:4b:
6a:04:d0:da:b1:94:62:3f:ba:b4:17:31:a1:67:da:39:cc:11:
fb:00:e2:60:5e:dc:f1:3c:7b:a0:fc:96:51:81:17:e9:00:5b:
86:40:eb:8a:4e:09:b0:89:29:8d:6d:9c:c2:02:f6:bb:2a:88:
13:a6:ba:eb:ee:24:95:48:c9:0f:ae:40:66:74:41:71:65:4e:
67:b4:1f:7c:5f:75:7b:93:bb:b7:7c:11:8e:f4:93:94:e5:fe:
6d:e3:66:50:7a:29:82:d8:9d:52:b3:23:cf:a0:c4:19:16:4c:
61:39:3a:8a:b6:74:50:34:03:e1:5c:bf:14:60:7c:10:97:d2:
96:45:d2:51:2d:f5:1a:57:26:73:ff:3f:b9:b1:fa:29:87:ee:
83:16:c3:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:21:14 2026 by rpki-client