Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: chQiBW1E+XPjtlvjFxir8Vs27SN2s2+DMtAuc3+VjS4=
Subject key identifier: 07:98:0D:9E:0E:75:AA:C8:1D:D2:7E:CB:1F:6F:D5:5E:D7:FC:B3:F4
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 019CAD593B68DE2902208253DD53A0CBA938
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 07:00:32 +0000
Manifest this update: Mon 02 Mar 2026 07:00:32 +0000
Manifest next update: Tue 03 Mar 2026 07:00:32 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: Ezzs8DJaRY3BF73RQquOCv4G2amlmrg9weojd4WDsuw=)
2: hSitky1wYRTLv14NEnwV-zxWb_o.roa (hash: PA0bbeChQyvoxmLwu2ifsRmhbm5WEw0zyVf1Uu/ZDBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:3b:68:de:29:02:20:82:53:dd:53:a0:cb:a9:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Mar 2 07:00:32 2026 GMT
Not After : Mar 3 07:00:32 2026 GMT
Subject: CN=07980d9e0e75aac81dd27ecb1f6fd55ed7fcb3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:35:9a:a8:1a:bf:f0:99:30:48:be:e7:4a:05:
c8:89:ba:43:54:d3:5c:80:dd:bd:d3:88:24:b5:6d:
2d:51:66:0d:fa:5c:48:e2:d5:2e:70:e2:52:a5:33:
33:6b:7e:f3:fc:78:28:e4:37:2d:eb:37:db:5e:2e:
6d:5b:d4:ec:fe:39:64:c6:28:da:ae:86:78:d9:a1:
14:0f:cf:28:12:67:06:84:b1:da:5e:0b:2e:1f:5c:
aa:95:86:b4:90:ee:2e:e7:f4:e8:fa:71:ea:33:3f:
24:5e:7b:9a:12:a7:93:0a:f0:0b:be:bb:a8:8b:3d:
10:16:0f:ff:af:98:4b:b0:c4:59:18:44:9f:df:54:
fa:5f:9c:f6:e7:60:7b:f4:1d:4a:5d:ac:be:82:fc:
87:52:d3:99:7a:dc:8b:6e:a2:a5:ca:e2:8c:b1:1c:
60:aa:5c:c0:c1:96:33:e1:0e:74:65:be:93:82:82:
e6:7e:1f:30:ab:06:48:1d:76:d1:d6:c8:fb:c5:37:
68:67:08:42:32:d7:74:fc:60:73:aa:bf:e9:1c:a1:
5f:ab:d0:84:80:15:21:da:f8:88:8f:58:5a:78:37:
9d:1f:35:03:ef:49:73:a2:cc:8d:6e:ee:37:fd:0c:
05:93:e6:71:a7:9a:5a:25:fd:9e:01:11:07:bc:71:
8a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:98:0D:9E:0E:75:AA:C8:1D:D2:7E:CB:1F:6F:D5:5E:D7:FC:B3:F4
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:3c:2c:77:20:de:44:e4:2d:8d:0d:cc:c9:a5:91:74:7f:23:
7c:69:ad:d3:b1:8e:ab:15:36:82:48:b9:dc:66:dc:25:63:31:
1a:d3:27:4b:49:15:0f:6b:05:76:9e:03:df:3b:0f:b7:04:4f:
7c:13:9a:c7:2b:d1:c1:d2:60:3d:b0:4c:0c:6d:42:b5:6c:04:
d2:70:e5:7d:b5:c2:2f:57:1e:7f:93:83:3c:7b:7a:50:66:1e:
fa:09:63:76:56:f3:01:37:38:c4:8a:ff:33:cf:7e:30:3c:78:
8a:e3:16:79:8e:7d:f4:38:7a:ba:9d:66:a2:b1:31:42:a9:24:
98:9e:a5:57:34:f5:1c:34:14:72:d2:f7:92:3f:0b:0d:38:de:
5f:cf:13:1f:91:aa:89:d5:95:61:2f:4f:95:b5:42:83:5d:e1:
61:91:2a:d0:70:0b:81:3c:88:09:f2:e1:d6:5e:e8:cf:87:ce:
89:d5:93:56:a1:6f:45:30:0f:90:93:95:cb:49:d9:5b:f3:79:
03:ca:1e:81:77:51:8b:be:e1:17:57:17:c4:e1:66:be:1d:03:
f1:a9:c4:7a:f1:c4:b1:0c:ef:2c:28:be:70:b5:3f:d4:8c:da:
98:d7:44:99:bd:a3:da:d6:ee:4d:f2:d6:2a:99:47:cf:5f:2b:
e3:40:54:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWTto3ikCIIJT3VOgy6k4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZjVhNjZjZmQyMWE1Y2FkN2EyOWI4ZWI1Y2Q5MmFhNDYw
MzIwYzMwHhcNMjYwMzAyMDcwMDMyWhcNMjYwMzAzMDcwMDMyWjAzMTEwLwYDVQQD
EygwNzk4MGQ5ZTBlNzVhYWM4MWRkMjdlY2IxZjZmZDU1ZWQ3ZmNiM2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3zWaqBq/8JkwSL7nSgXIibpDVNNc
gN2904gktW0tUWYN+lxI4tUucOJSpTMza37z/Hgo5Dct6zfbXi5tW9Ts/jlkxija
roZ42aEUD88oEmcGhLHaXgsuH1yqlYa0kO4u5/To+nHqMz8kXnuaEqeTCvALvruo
iz0QFg//r5hLsMRZGESf31T6X5z252B79B1KXay+gvyHUtOZetyLbqKlyuKMsRxg
qlzAwZYz4Q50Zb6TgoLmfh8wqwZIHXbR1sj7xTdoZwhCMtd0/GBzqr/pHKFfq9CE
gBUh2viIj1haeDedHzUD70lzosyNbu43/QwFk+Zxp5paJf2eAREHvHGKVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAeYDZ4OdarIHdJ+yx9v1V7X/LP0MB8GA1UdIwQY
MBaAFNj1pmz9IaXK16KbjrXNkqpGAyDDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTct
ODIxMGRiNzA0OWIxLzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mZTIwZmYtNjU5MC00ZmIwLWI2NTctODIxMGRiNzA0OWIx
LzEvMlBXbWJQMGhwY3JYb3B1T3RjMlNxa1lESU1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOjwsdyDe
ROQtjQ3MyaWRdH8jfGmt07GOqxU2gki53GbcJWMxGtMnS0kVD2sFdp4D3zsPtwRP
fBOaxyvRwdJgPbBMDG1CtWwE0nDlfbXCL1cef5ODPHt6UGYe+gljdlbzATc4xIr/
M89+MDx4iuMWeY599Dh6up1morExQqkkmJ6lVzT1HDQUctL3kj8LDTjeX88TH5Gq
idWVYS9PlbVCg13hYZEq0HALgTyICfLh1l7oz4fOidWTVqFvRTAPkJOVy0nZW/N5
A8oegXdRi77hF1cXxOFmvh0D8anEevHEsQzvLCi+cLU/1IzamNdEmb2j2tbuTfLW
KplHz18r40BUMQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:28:29 2026 by rpki-client