Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json)
Hash identifier: iiwDJVDF1TZP/3SDRsea/mk2OiRYFHedHVMdlGhZBGM=
Subject key identifier: D9:06:BB:36:8E:8C:A4:6D:30:62:2F:8B:59:36:59:26:50:85:73:36
Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9
Certificate serial: 019E92F027565AB48E614F6AE4708DDB3B50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
Manifest number: 14E9
Signing time: Thu 04 Jun 2026 14:01:12 +0000
Manifest this update: Thu 04 Jun 2026 14:01:12 +0000
Manifest next update: Fri 05 Jun 2026 14:01:12 +0000
Files and hashes: 1: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (hash: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI=)
2: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: E/wGKY28s/AlsshyxPgoRG4afBUsKkiXBduJdGKFtl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:92:f0:27:56:5a:b4:8e:61:4f:6a:e4:70:8d:db:3b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9
Validity
Not Before: Jun 4 14:01:12 2026 GMT
Not After : Jun 5 14:01:12 2026 GMT
Subject: CN=d906bb368e8ca46d30622f8b5936592650857336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6f:e7:c6:01:d7:71:65:94:1f:c3:5a:d0:bb:
4f:b7:b1:4a:55:a2:24:ca:c3:48:24:e5:88:aa:24:
0d:0f:f7:d8:8e:e4:ae:31:a9:86:c6:80:97:62:49:
29:ab:6f:ea:62:8a:4d:d9:34:7d:81:7b:3b:39:af:
13:10:eb:5f:1b:a6:19:72:a4:59:22:4e:da:e7:11:
e3:a1:bf:5e:2b:50:a5:ff:52:d6:e1:68:9e:96:f3:
dc:9a:74:c1:b5:71:aa:0f:65:80:d7:2f:af:a2:4c:
fe:aa:ff:c0:0b:5f:12:0b:74:c1:5e:65:3d:8e:09:
df:05:56:8a:3f:94:59:70:08:9d:c5:67:9c:56:39:
db:42:2d:5d:da:72:24:c3:b9:3c:cf:82:b6:31:2a:
91:b8:5a:0b:bb:1a:ce:9d:d2:07:e3:64:70:b0:4a:
64:45:20:94:7c:4d:e5:51:ce:d7:96:d0:35:db:7f:
9c:18:dc:f5:9f:98:82:47:c8:81:8e:d5:25:20:79:
3f:82:6b:08:4b:98:81:f0:f3:79:0d:70:8f:23:fe:
cb:b0:2e:53:87:00:2b:4d:ce:cc:83:30:17:47:97:
1b:4d:20:9a:6a:4d:ea:80:ea:22:6a:e9:bd:3d:1c:
cf:6c:df:ad:a0:a5:45:e3:eb:b9:57:ca:4f:78:15:
08:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:06:BB:36:8E:8C:A4:6D:30:62:2F:8B:59:36:59:26:50:85:73:36
X509v3 Authority Key Identifier:
keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f6:c5:f6:a0:03:8b:6f:bd:c2:ce:8f:b1:3e:71:1b:73:c7:
a4:8c:ef:a8:fd:91:65:9f:a1:41:92:3d:22:c4:7f:57:0d:04:
32:57:cd:95:82:94:30:3b:8d:05:03:6f:15:e2:0b:c9:e7:17:
d3:bf:9f:63:a9:56:62:ee:1a:31:71:db:77:7c:66:46:08:7a:
e6:83:20:51:5f:b5:aa:61:5e:ce:44:ee:a1:5c:1c:6d:ac:08:
bb:f2:0f:72:3e:04:25:d6:89:32:92:1a:1b:de:8a:55:e4:81:
d2:74:cf:f8:f6:c3:f6:47:4a:24:86:58:94:c7:22:0a:bf:f4:
a2:72:9f:bf:f0:18:a5:d0:3c:3a:60:2a:46:78:ce:6b:6f:e8:
7d:17:b3:7c:b6:0c:3f:1c:f4:61:12:ad:06:a2:82:99:d7:4a:
05:0d:e7:22:b6:44:61:95:94:80:4f:5f:47:61:7e:9a:3b:44:
cf:35:e6:04:41:55:ef:70:36:c1:12:c7:35:5d:48:61:13:14:
77:aa:af:4f:86:84:a1:79:62:29:df:9f:35:8d:41:5e:ab:01:
f2:eb:48:13:f8:df:33:af:3a:61:7d:dd:e5:3e:77:48:c9:5f:
85:be:c5:96:ac:67:0d:02:44:15:34:a1:76:e6:60:99:71:74:
a0:07:aa:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 16:14:27 2026 by rpki-client