Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
File: rMMoWMzalYbG2WceMQ1RwoJoxFk.mft (raw, json)
Hash identifier: a6lMiGGy/xFJfumpK8kDYHuZQdT3CWzVOS3QPE+uMDo=
Subject key identifier: B3:BD:86:23:F4:27:35:72:61:8C:84:22:86:FC:BC:7A:F2:BD:82:09
Authority key identifier: AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
Certificate issuer: /CN=acc32858ccda9586c6d9671e310d51c28268c459
Certificate serial: 019CABA23436E3E1997C2AD80A4F6E50B653
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
Manifest number: 17E3
Signing time: Sun 01 Mar 2026 23:00:59 +0000
Manifest this update: Sun 01 Mar 2026 23:00:59 +0000
Manifest next update: Mon 02 Mar 2026 23:00:59 +0000
Files and hashes: 1: NZ4KU7XjOTlJfpxZEeYBOqiocLc.roa (hash: 1hvoqCoD4N6W+G9hGoZfjVl3mm68AnZJdnlCiI2tn30=)
2: rMMoWMzalYbG2WceMQ1RwoJoxFk.crl (hash: pHeTawteZmA8VAhbHH0FqjcLSJdAzswqy1Fbtj5Qyio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:34:36:e3:e1:99:7c:2a:d8:0a:4f:6e:50:b6:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acc32858ccda9586c6d9671e310d51c28268c459
Validity
Not Before: Mar 1 23:00:59 2026 GMT
Not After : Mar 2 23:00:59 2026 GMT
Subject: CN=b3bd8623f4273572618c842286fcbc7af2bd8209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d9:8f:1b:70:da:23:96:d2:d7:c5:bc:95:96:
df:52:e2:2b:6a:98:38:12:d4:85:8f:a1:5d:12:df:
d6:97:e6:6a:63:b9:5f:5b:ae:14:0c:3d:e5:93:0b:
c0:25:73:fb:79:83:fd:83:f7:5f:9d:94:92:69:d3:
ca:34:85:4f:ad:83:82:1a:48:bd:6f:9f:72:be:fa:
c8:6e:f6:d7:8c:5d:3e:9e:d3:4f:e7:b8:f4:a8:a4:
88:fd:1d:cc:07:bc:87:f3:3c:5c:74:9d:0a:00:d6:
4e:ff:df:54:67:99:13:04:e4:ab:6f:45:fc:f7:7e:
3a:27:97:e6:5a:20:04:0c:44:f7:8a:29:50:a6:e7:
07:93:89:ca:f5:f4:98:f1:d6:d5:18:33:9f:3e:ea:
68:15:00:eb:bd:7b:d9:45:76:67:6a:73:19:28:0b:
bc:97:2b:1d:e6:3b:28:82:c8:1a:17:ec:5c:bd:4e:
f9:7d:c6:bb:95:1c:69:a5:78:6e:e5:cd:b5:5f:e8:
d8:c3:0c:57:8a:96:7e:42:2d:82:e6:44:fd:75:a8:
11:50:28:45:4c:78:b3:f2:cc:fc:61:90:59:79:46:
90:b0:b0:26:c2:cf:63:3c:c4:ba:fa:3c:58:37:59:
c7:44:76:c6:84:6f:86:48:e5:fd:3d:78:37:ea:85:
f7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BD:86:23:F4:27:35:72:61:8C:84:22:86:FC:BC:7A:F2:BD:82:09
X509v3 Authority Key Identifier:
keyid:AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:fb:f3:e7:05:d6:8d:53:45:59:c1:17:63:c9:63:51:c3:34:
c1:84:f1:d8:a7:75:57:ea:39:a9:31:3d:b5:3e:dc:9a:78:b9:
37:1c:94:79:8d:26:20:1c:08:78:f3:bb:5b:f1:ba:0c:45:dd:
97:7c:fb:b0:8f:a0:ca:17:10:14:f8:c0:d5:15:f2:cc:a1:32:
c6:e5:5b:88:a1:b6:aa:32:62:57:b4:40:40:6a:aa:a1:d4:35:
11:c1:f3:a4:8d:be:b8:85:44:52:cd:ab:e3:67:f6:ea:4a:77:
33:87:14:78:ee:94:c0:e7:df:15:9b:eb:6e:64:b0:4f:cc:05:
24:a2:40:5b:84:ea:04:72:75:8a:e6:4e:d0:ad:17:b1:5f:07:
4f:e3:c2:e1:86:05:0f:06:38:a3:34:45:7e:85:d6:fb:d5:09:
dd:da:70:ae:bb:46:bd:3b:59:5a:cf:6f:97:19:32:bf:9e:3a:
5e:1f:8f:7f:85:34:ca:85:df:ca:9d:65:8c:94:c6:29:e6:28:
21:06:90:68:ae:6a:5a:35:89:ab:5f:e8:78:e4:7f:9f:e0:20:
b8:7d:08:95:b2:9a:03:68:d1:c2:29:de:40:29:6b:61:64:2e:
e4:be:27:c2:65:a8:be:14:82:d2:6d:8c:40:68:a9:a6:03:d9:
19:65:d5:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrojQ24+GZfCrYCk9uULZTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYzMyODU4Y2NkYTk1ODZjNmQ5NjcxZTMxMGQ1MWMyODI2
OGM0NTkwHhcNMjYwMzAxMjMwMDU5WhcNMjYwMzAyMjMwMDU5WjAzMTEwLwYDVQQD
EyhiM2JkODYyM2Y0MjczNTcyNjE4Yzg0MjI4NmZjYmM3YWYyYmQ4MjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9mPG3DaI5bS18W8lZbfUuIrapg4
EtSFj6FdEt/Wl+ZqY7lfW64UDD3lkwvAJXP7eYP9g/dfnZSSadPKNIVPrYOCGki9
b59yvvrIbvbXjF0+ntNP57j0qKSI/R3MB7yH8zxcdJ0KANZO/99UZ5kTBOSrb0X8
9346J5fmWiAEDET3iilQpucHk4nK9fSY8dbVGDOfPupoFQDrvXvZRXZnanMZKAu8
lysd5jsogsgaF+xcvU75fca7lRxppXhu5c21X+jYwwxXipZ+Qi2C5kT9dagRUChF
THiz8sz8YZBZeUaQsLAmws9jPMS6+jxYN1nHRHbGhG+GSOX9PXg36oX3SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLO9hiP0JzVyYYyEIob8vHryvYIJMB8GA1UdIwQY
MBaAFKzDKFjM2pWGxtlnHjENUcKCaMRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvck1Nb1dNemFsWWJHMldjZU1RMVJ3b0pveEZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82Y2Y3NjktOWI1OC00ODQ3LThmMWYt
ZWRjNTQwNzJhZTg5LzEvck1Nb1dNemFsWWJHMldjZU1RMVJ3b0pveEZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC82Y2Y3NjktOWI1OC00ODQ3LThmMWYtZWRjNTQwNzJhZTg5
LzEvck1Nb1dNemFsWWJHMldjZU1RMVJ3b0pveEZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYfvz5wXW
jVNFWcEXY8ljUcM0wYTx2Kd1V+o5qTE9tT7cmni5NxyUeY0mIBwIePO7W/G6DEXd
l3z7sI+gyhcQFPjA1RXyzKEyxuVbiKG2qjJiV7RAQGqqodQ1EcHzpI2+uIVEUs2r
42f26kp3M4cUeO6UwOffFZvrbmSwT8wFJKJAW4TqBHJ1iuZO0K0XsV8HT+PC4YYF
DwY4ozRFfoXW+9UJ3dpwrrtGvTtZWs9vlxkyv546Xh+Pf4U0yoXfyp1ljJTGKeYo
IQaQaK5qWjWJq1/oeOR/n+AguH0IlbKaA2jRwineQClrYWQu5L4nwmWovhSC0m2M
QGippgPZGWXVkA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:08:47 2026 by rpki-client