Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
File: MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft (raw, json)
Hash identifier: p+yOtUx7lmMSLx9tJmMm2JtPi93xRTN+C56FIL1T6Dc=
Subject key identifier: 17:E2:9C:4A:C1:04:23:B1:BC:DA:AF:98:40:A3:A3:67:40:9C:13:C5
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 019A2DB1B392FC2AA964E95A109A973996B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
Manifest number: 1651
Signing time: Wed 29 Oct 2025 02:00:11 +0000
Manifest this update: Wed 29 Oct 2025 02:00:11 +0000
Manifest next update: Thu 30 Oct 2025 02:00:11 +0000
Files and hashes: 1: LgelsY-16hZE8VmZ4UWScnrAkQA.roa (hash: 5MPF2K6ZagDsXMwY0mVJRSAJCcCewM4ZcbU+TqCGJzs=)
2: MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl (hash: qMa3PghMo+BJ2KRbOllx30PG/5xo5jp+wdTpgj8iDQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2d:b1:b3:92:fc:2a:a9:64:e9:5a:10:9a:97:39:96:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Oct 29 02:00:11 2025 GMT
Not After : Oct 30 02:00:11 2025 GMT
Subject: CN=17e29c4ac10423b1bcdaaf9840a3a367409c13c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b2:e2:b6:3b:a0:64:89:be:00:4d:dd:ae:5d:
47:7a:6c:5b:63:72:88:0d:6c:12:a0:33:81:f2:93:
24:cd:5e:23:63:c7:87:0f:60:93:f8:8a:fc:3a:a7:
15:22:d8:ef:46:56:f0:e0:58:1d:9e:9f:b9:6c:b9:
4f:37:31:86:b6:eb:51:37:d6:76:5b:fe:8c:f9:63:
d5:e6:68:9c:6b:27:51:f3:a7:c4:99:b1:fc:e0:0e:
66:d2:5b:b2:73:ba:36:f9:3b:77:2d:06:02:76:0b:
b7:49:e1:43:68:6c:5d:dc:a0:2e:e6:ae:68:cb:18:
ae:b8:fc:2c:da:70:d9:db:55:96:54:6c:6f:9a:5c:
97:34:e1:2f:2f:3d:a7:26:b5:06:4f:f3:0a:fe:11:
9b:78:1b:e4:a8:7d:7d:75:08:de:a6:26:23:49:99:
62:bd:05:6e:90:e0:88:26:38:0b:52:ec:2b:b5:3f:
b5:6c:52:c2:0d:d6:6a:43:2c:ac:1d:d0:20:b7:06:
8d:10:a0:06:92:22:43:99:c8:7c:ad:63:1f:f2:31:
a5:35:dc:96:05:e5:52:d5:9a:00:2a:ee:0b:5e:71:
89:19:e8:3d:b8:b9:da:9c:e4:ed:1d:ee:5b:fa:8d:
fa:12:3d:38:98:37:90:53:7a:41:96:d0:77:5e:d3:
d1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E2:9C:4A:C1:04:23:B1:BC:DA:AF:98:40:A3:A3:67:40:9C:13:C5
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d7:6c:18:da:fd:14:f7:03:63:f9:a3:47:5b:c7:90:88:71:
13:2b:25:07:78:f2:39:cf:50:3c:e7:e3:65:58:b9:ce:f4:43:
b8:7f:cf:04:57:b0:92:93:bd:90:d8:eb:a2:b5:41:81:f5:f9:
74:7d:4a:f4:4d:e4:c0:ef:7a:98:a5:70:3b:ce:45:b7:b1:49:
fd:10:cf:e2:d1:6c:3c:51:99:f7:ee:04:32:73:5c:b8:fd:cd:
28:d7:13:c0:10:b5:18:40:69:86:6f:ed:cd:03:0b:ba:72:e5:
0c:34:6e:b4:33:f3:97:a1:dd:93:2d:a7:7a:e3:49:8c:7b:2c:
47:4f:f6:62:66:21:d9:65:bd:8c:42:d2:aa:2a:97:67:3d:2b:
12:7a:8b:c4:3b:a3:72:18:b0:8f:f3:9e:d3:dc:69:e8:1e:fe:
93:28:56:8e:96:f5:20:65:c4:ee:f6:fe:6d:6d:f0:93:90:bd:
22:48:1d:ba:be:18:36:da:ec:d2:df:7a:21:fd:0f:b4:29:bc:
56:79:60:20:79:81:56:46:57:24:e8:c2:74:a6:56:bd:76:13:
44:60:33:18:ca:81:73:1e:33:89:df:36:04:cb:9d:2a:b2:d7:
be:5a:fb:63:0d:48:69:71:77:fd:63:f9:a0:ed:d3:54:67:33:
85:90:60:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 06:28:46 2025 by rpki-client