Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: bMZ1uggdoE/LrlCzudqwbbSZm7IswQmePqakFbhL1gI=
Subject key identifier: 5C:2A:50:11:E4:58:94:91:0D:4E:6D:28:25:E9:24:AA:9F:8F:14:55
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 019D39777F4216EA32F285B5F40009745513
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 17E5
Signing time: Sun 29 Mar 2026 12:00:25 +0000
Manifest this update: Sun 29 Mar 2026 12:00:25 +0000
Manifest next update: Mon 30 Mar 2026 12:00:25 +0000
Files and hashes: 1: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: CGWlfsHy1dH7LaDwaOs7fZLwN3tLtXXF/8lQvxzwnC4=)
2: niPFA17j7uRHpaTYenf6Cly67RI.roa (hash: OfpHBcAsXXX8TZPERzrr+Zdymzn7MUaqne9gmeiSJVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:7f:42:16:ea:32:f2:85:b5:f4:00:09:74:55:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Mar 29 12:00:25 2026 GMT
Not After : Mar 30 12:00:25 2026 GMT
Subject: CN=5c2a5011e45894910d4e6d2825e924aa9f8f1455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:1f:5e:7d:e2:d3:5f:45:3b:af:fc:c1:58:
28:4e:b3:46:39:cf:27:00:78:e9:25:b5:5a:62:e7:
43:a9:03:a6:24:a7:79:d8:27:9c:05:04:7e:da:4e:
6e:99:00:61:bc:71:1d:08:85:dd:85:82:6c:02:a8:
03:b6:63:17:6a:39:fc:34:2f:46:aa:7c:f0:ce:7c:
a9:d2:d7:5e:1c:a5:cb:1b:3a:3e:96:be:f6:41:89:
7a:36:5e:87:a6:58:d3:19:19:f0:a6:8a:5c:89:af:
4a:39:9b:76:a1:7c:3e:65:20:2a:12:a5:60:40:9c:
82:2b:52:86:5b:f6:b0:d8:df:10:22:58:8b:cf:4c:
db:f2:b2:22:f7:db:57:aa:a6:60:0a:30:f8:4b:bd:
63:fe:6b:05:ec:0b:db:bb:72:c2:6b:78:11:44:e1:
51:d9:7a:ca:fa:36:3a:3b:5f:04:97:6c:aa:be:9b:
93:a5:56:1b:d4:9a:71:0d:a2:7b:74:f5:f6:5f:2c:
0a:f5:42:f9:2c:08:72:47:84:41:b6:41:79:0a:ac:
e0:08:ba:69:69:99:9c:63:a6:ab:54:fb:c8:32:78:
7b:f0:3f:1b:33:d2:f1:10:5b:43:ba:15:6a:fc:ad:
bb:60:b7:aa:c1:2a:f0:43:d5:3e:e4:90:f6:08:82:
f3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2A:50:11:E4:58:94:91:0D:4E:6D:28:25:E9:24:AA:9F:8F:14:55
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:ce:0a:24:20:7f:48:5b:bb:c6:79:7e:24:fe:c6:59:a1:12:
b9:41:ba:0e:e8:c9:aa:53:ad:6a:18:14:15:4f:5f:1c:2d:db:
49:e5:36:75:42:ea:3f:f2:17:57:88:e5:18:0e:27:f8:f1:31:
eb:22:11:dd:85:b6:2c:3a:4b:48:e9:22:5e:d1:7c:be:a6:6b:
89:a0:6b:66:97:d2:ae:12:03:b4:7f:22:db:7f:e2:69:12:b5:
ae:cf:fc:b2:3a:7f:c4:10:4f:6b:1d:08:e4:c6:0d:a6:0e:2e:
ef:6a:75:d3:b9:94:e3:a3:d4:e0:76:03:34:1f:2b:ae:89:dc:
e6:58:9a:78:d0:21:cd:d0:79:b8:98:d9:e6:6c:f0:b1:f4:56:
a5:db:75:42:8b:4a:54:a6:1b:11:55:12:6e:da:40:b7:ca:04:
46:4e:79:c8:c4:e7:27:c1:07:b9:83:df:eb:74:82:18:5d:2f:
34:22:df:25:e7:61:8b:72:5e:45:2a:03:c7:b7:81:8b:38:43:
65:5e:d6:f5:18:0e:b2:fb:bc:57:18:0d:c5:4c:a0:24:74:7f:
e0:4d:f2:b2:7e:e4:b6:a8:f4:66:56:ee:1c:f5:d1:40:2e:8b:
18:b8:c4:0a:f9:07:cb:50:30:c7:e4:c7:70:3a:74:dc:23:b8:
5e:6e:a6:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:53 2026 by rpki-client