Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: IZDSfz1AllL8C3iyRevmvZqkJ6iWOoY2VRNlZAua7c0=
Subject key identifier: C6:1A:89:C6:FA:07:AA:38:4B:6A:7B:56:2E:54:10:DD:6A:39:8D:42
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019A552DBEEDADAFA976C787CFCF00E1CE21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 12B6
Signing time: Wed 05 Nov 2025 18:00:52 +0000
Manifest this update: Wed 05 Nov 2025 18:00:52 +0000
Manifest next update: Thu 06 Nov 2025 18:00:52 +0000
Files and hashes: 1: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: MH/NcYEaw/+bbKWkfRELT6/AmxJnm60ZKtpGmlXowyI=)
2: SCHcZAvBuEDabGE8ZnvuGrNm6LM.roa (hash: +7HN05BMaB78AnyjOqZ5Q8EXtIVzWFh5zSmSPi10HzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:2d:be:ed:ad:af:a9:76:c7:87:cf:cf:00:e1:ce:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Nov 5 18:00:52 2025 GMT
Not After : Nov 6 18:00:52 2025 GMT
Subject: CN=c61a89c6fa07aa384b6a7b562e5410dd6a398d42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:88:a7:07:10:6c:b6:26:bb:7c:b5:c1:af:09:
70:77:af:dd:f0:9c:7f:82:f0:7b:78:6a:54:61:10:
d1:a2:d3:c2:88:41:8d:f5:60:6a:48:55:5b:da:3c:
db:39:be:19:de:20:5a:d9:03:a5:58:22:34:0b:a8:
11:3f:60:cf:32:5b:43:c9:a2:d7:5e:f9:4f:a1:f1:
f8:2f:dd:6d:4b:cb:a7:a9:7d:c0:ea:3f:ac:96:97:
07:b7:b7:5c:67:29:31:10:28:78:b9:4c:07:63:6c:
68:e2:02:be:bb:18:f0:f7:82:73:10:8d:41:f7:04:
58:c6:45:a9:86:35:80:1a:62:58:e8:fd:f8:48:46:
4e:55:5e:55:dd:45:25:b7:49:ff:5d:b9:3b:62:05:
9a:64:44:3b:0e:35:b3:f9:66:e8:a7:b9:65:22:4b:
99:40:c0:85:ee:b4:e4:57:11:af:58:1e:7c:13:e7:
83:29:d1:55:00:70:97:56:9f:8d:5b:2d:f5:50:92:
52:55:27:6b:97:74:ac:ee:9e:9d:f7:46:ed:94:c6:
d9:85:37:51:95:e2:9d:00:54:d2:1e:10:5b:41:22:
78:cb:26:c7:dd:19:f7:51:28:06:06:43:63:ed:2b:
3a:87:26:98:dd:d7:59:b5:02:a9:20:4c:df:b9:ee:
1a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:1A:89:C6:FA:07:AA:38:4B:6A:7B:56:2E:54:10:DD:6A:39:8D:42
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:7b:62:61:91:f4:fe:ac:76:09:84:c9:ad:24:70:32:3a:58:
e1:6a:12:b8:44:76:fe:3f:b0:d6:0e:9f:c0:a3:bc:4d:ce:73:
fd:ac:86:c9:83:eb:e5:1d:af:b1:de:fe:55:d4:0b:1d:fd:30:
59:6d:e8:19:9b:01:66:aa:b3:d7:e1:21:75:97:15:74:40:3f:
a5:df:f2:d2:72:96:74:3f:c0:f9:26:7f:cd:36:06:8d:7a:85:
b6:e2:01:cb:e8:b9:6b:db:6f:5a:35:e0:88:86:da:af:18:5b:
57:e6:8b:cd:23:5f:d0:99:5a:e5:79:ba:28:cf:db:66:2d:b5:
b7:4b:79:54:eb:f6:21:65:fd:e9:ff:6f:a9:2c:f9:a7:e1:20:
de:1b:df:61:df:8b:a5:13:6a:3a:be:4f:ef:7a:1c:65:b9:47:
a6:e2:6e:99:3d:60:c0:1b:da:11:03:ca:e5:d2:bc:26:65:43:
55:f6:72:68:52:2e:61:b5:f9:c9:f1:7d:6c:4b:5a:98:3a:c9:
2d:c1:6b:c3:1a:8c:2a:51:34:39:39:b2:e6:60:04:1d:c5:e4:
7f:fc:83:88:58:ba:c5:80:02:61:68:0c:1a:58:80:14:80:a3:
da:23:79:01:b6:39:78:0a:0c:64:f2:d9:b8:ff:ab:87:15:e0:
4d:d8:86:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 20:50:41 2025 by rpki-client