Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: mz5VRd9T1ZueiKrnhEZJxvrVZfrUV+DWJSofE/lvZUE=
Subject key identifier: 7B:BA:B6:8E:14:D3:99:B3:FD:73:A1:D7:13:FB:CD:B5:0C:FD:4A:99
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 019CAB3405DEDB19C2FA69366559FCB562A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0D2F
Signing time: Sun 01 Mar 2026 21:00:39 +0000
Manifest this update: Sun 01 Mar 2026 21:00:39 +0000
Manifest next update: Mon 02 Mar 2026 21:00:39 +0000
Files and hashes: 1: 44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa (hash: U4fdOWuwUY9/P9u0/ZElUYWz4NntxpKIR4cfbGlP9vk=)
2: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: 4FBd4L3wJK/w6ICRyhy0b5hRudCMJ5AYnW7EZLUB5o0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:05:de:db:19:c2:fa:69:36:65:59:fc:b5:62:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Mar 1 21:00:39 2026 GMT
Not After : Mar 2 21:00:39 2026 GMT
Subject: CN=7bbab68e14d399b3fd73a1d713fbcdb50cfd4a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:df:dd:11:95:a6:ca:a3:80:2b:de:cd:0f:
6f:68:99:39:58:1c:17:2c:f1:28:74:a6:f6:ec:f6:
63:b7:9c:3a:3c:0d:bc:8b:de:ff:1d:33:96:a6:1f:
ab:5f:dd:f2:51:f3:5f:6d:e3:52:4b:c7:be:80:76:
f6:a2:d8:56:cf:5b:61:12:62:ce:b8:b5:c4:55:5e:
8f:f5:d5:54:15:ea:56:33:27:9d:5e:94:64:73:16:
fa:a2:54:42:21:6a:e8:73:48:66:2f:90:41:37:54:
09:b1:df:f3:e5:63:63:36:0a:eb:dd:cc:15:e7:fb:
30:fb:06:cf:82:ea:1c:c2:70:52:d2:93:3a:74:7b:
e6:41:b0:82:e8:57:29:03:78:01:84:df:68:a3:b4:
48:e0:4c:2f:77:96:72:a9:35:ee:a8:b2:d9:9f:ea:
fc:93:a1:00:a9:4a:b5:80:de:8f:83:41:8e:ed:b6:
78:8a:78:bc:29:d4:32:84:bd:bc:8c:c7:3c:5e:5b:
f2:e2:bc:88:d8:8f:97:da:b4:d6:31:c6:19:14:71:
93:0f:2e:79:78:bb:5e:12:ce:94:16:1d:cf:57:1d:
25:d3:fc:e0:21:d3:44:d9:a1:c6:f0:8b:3e:01:ad:
12:6b:8f:10:d9:ec:fc:ee:89:f0:0b:1a:d2:07:73:
39:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BA:B6:8E:14:D3:99:B3:FD:73:A1:D7:13:FB:CD:B5:0C:FD:4A:99
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:f9:ad:7c:6b:42:4a:db:4b:6a:77:34:f9:bb:c1:6e:ad:0f:
cd:1e:44:ea:c5:7b:a0:37:2f:7f:73:93:51:e6:7a:f3:80:05:
88:0f:ec:ba:48:f7:20:34:4f:93:c7:8f:d2:6a:6d:91:08:b6:
b6:05:af:b8:e8:92:b7:9f:28:c8:09:31:f0:15:10:d1:82:4b:
86:1a:3e:e0:6d:8e:b3:c8:ae:1f:dc:a1:aa:60:ce:e8:e4:be:
0e:35:d8:e3:a2:0a:1e:68:74:88:14:16:26:2b:44:f8:f5:e4:
8a:29:91:c6:1e:4c:90:52:2f:d8:d6:ce:7a:f0:e7:a6:f1:be:
7b:b5:2a:49:ca:f4:f7:a6:c8:a3:ac:b5:6c:be:b7:89:dc:09:
98:e8:16:63:dc:ed:97:84:78:55:68:41:b3:37:0e:33:0e:e1:
2c:8d:bd:91:fc:14:0e:aa:36:7c:91:03:f2:b2:aa:ff:63:42:
31:b4:b8:66:c7:1e:fe:75:04:d3:86:86:4f:69:db:93:af:51:
23:74:b2:bb:bd:48:ab:98:e2:e6:2c:1d:c9:b8:83:e2:85:7f:
c3:b3:5b:e0:d6:3c:95:90:7f:22:a7:c7:19:fd:96:e7:e4:04:
9f:f5:cb:92:33:d8:a9:a5:5d:19:bc:4e:af:0c:23:a7:0b:0b:
01:f5:fb:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNAXe2xnC+mk2ZVn8tWKkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyZDM5NWM1N2RmZDMwYzBjZDJjMzBmNDIzMzhhZTRjMTRh
NzUwYTEwHhcNMjYwMzAxMjEwMDM5WhcNMjYwMzAyMjEwMDM5WjAzMTEwLwYDVQQD
Eyg3YmJhYjY4ZTE0ZDM5OWIzZmQ3M2ExZDcxM2ZiY2RiNTBjZmQ0YTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLTf3RGVpsqjgCvezQ9vaJk5WBwX
LPEodKb27PZjt5w6PA28i97/HTOWph+rX93yUfNfbeNSS8e+gHb2othWz1thEmLO
uLXEVV6P9dVUFepWMyedXpRkcxb6olRCIWroc0hmL5BBN1QJsd/z5WNjNgrr3cwV
5/sw+wbPguocwnBS0pM6dHvmQbCC6FcpA3gBhN9oo7RI4Ewvd5ZyqTXuqLLZn+r8
k6EAqUq1gN6Pg0GO7bZ4ini8KdQyhL28jMc8Xlvy4ryI2I+X2rTWMcYZFHGTDy55
eLteEs6UFh3PVx0l0/zgIdNE2aHG8Is+Aa0Sa48Q2ez87onwCxrSB3M5IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHu6to4U05mz/XOh1xP7zbUM/UqZMB8GA1UdIwQY
MBaAFDLTlcV9/TDAzSww9CM4rkwUp1ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUt
MWQ4ZTE5ZGY0YTYyLzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUtMWQ4ZTE5ZGY0YTYy
LzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOvmtfGtC
SttLanc0+bvBbq0PzR5E6sV7oDcvf3OTUeZ684AFiA/sukj3IDRPk8eP0mptkQi2
tgWvuOiSt58oyAkx8BUQ0YJLhho+4G2Os8iuH9yhqmDO6OS+DjXY46IKHmh0iBQW
JitE+PXkiimRxh5MkFIv2NbOevDnpvG+e7UqScr096bIo6y1bL63idwJmOgWY9zt
l4R4VWhBszcOMw7hLI29kfwUDqo2fJED8rKq/2NCMbS4Zsce/nUE04aGT2nbk69R
I3Syu71Iq5ji5iwdybiD4oV/w7Nb4NY8lZB/IqfHGf2W5+QEn/XLkjPYqaVdGbxO
rwwjpwsLAfX7zg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:12:13 2026 by rpki-client