Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
File: rwMNO0xYnpSj72Hd1UAajz_3m20.mft (raw, json)
Hash identifier: Nbc+bECSogoakHzs9b9+j2o5czOrAvkKhuBJZDaKjpY=
Subject key identifier: 62:B9:DE:B5:F8:5A:D1:7C:7C:39:7A:69:AE:3C:50:1D:42:8F:45:39
Authority key identifier: AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
Certificate issuer: /CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Certificate serial: 019CABD99B949C1DD250BBBA78393CA99117
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
Manifest number: 067D
Signing time: Mon 02 Mar 2026 00:01:30 +0000
Manifest this update: Mon 02 Mar 2026 00:01:30 +0000
Manifest next update: Tue 03 Mar 2026 00:01:30 +0000
Files and hashes: 1: rwMNO0xYnpSj72Hd1UAajz_3m20.crl (hash: Q54sG/vZieej1oWSCeKxOcm6/sW5DPp21PSKxJC2q0o=)
2: sKXut25F8mstcMlebmCBZ3ash14.roa (hash: WdcSiIGfJAIq+j/hEE113/iMWyToETbAb54DBmpGZ9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:9b:94:9c:1d:d2:50:bb:ba:78:39:3c:a9:91:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Validity
Not Before: Mar 2 00:01:30 2026 GMT
Not After : Mar 3 00:01:30 2026 GMT
Subject: CN=62b9deb5f85ad17c7c397a69ae3c501d428f4539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:f5:da:e9:7c:7c:97:f8:86:86:b3:6b:6c:
10:52:63:ac:e5:d7:0b:8b:ad:b1:d3:8d:a2:26:5d:
4a:87:75:87:14:e5:d4:a7:1f:8d:41:7f:04:6a:a2:
6a:15:f2:67:1b:94:65:5d:77:4b:65:39:84:81:1c:
71:a8:87:39:fa:85:17:79:13:27:a6:0d:2c:f0:35:
87:f8:5b:d1:a4:ed:f8:8f:73:51:2b:45:f9:43:7f:
13:4b:d1:47:ab:b2:ee:19:d3:52:41:60:f7:81:08:
54:9b:31:8c:af:63:a8:0f:c5:f0:e3:9e:05:d3:1c:
2d:3d:41:94:99:2f:63:cb:da:93:fb:4e:43:b0:21:
b7:67:39:ec:7c:d0:05:ee:2e:0d:ca:95:bb:e4:1e:
ba:e8:84:2e:6c:74:90:fe:c6:0e:ca:b7:52:26:02:
46:96:ab:97:aa:67:d1:a7:5d:5c:3d:c4:bf:4b:e8:
2e:35:f0:f2:86:14:5f:c4:15:e3:6d:c7:29:dd:e3:
fb:29:36:cf:d5:e6:df:c6:5b:ba:7f:d0:2f:9c:1d:
d3:0b:cb:52:0e:98:f5:4c:cb:0c:ae:36:0f:73:66:
77:f0:15:f0:7d:e1:22:9a:03:45:09:6c:0f:05:6f:
4b:16:ce:c9:a7:5e:3b:8b:a5:c5:39:43:15:0f:69:
0e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B9:DE:B5:F8:5A:D1:7C:7C:39:7A:69:AE:3C:50:1D:42:8F:45:39
X509v3 Authority Key Identifier:
keyid:AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:3c:1f:da:95:b7:d3:fd:11:bd:de:98:52:fc:41:78:97:f3:
2b:4d:f9:43:92:86:75:04:df:f6:11:0e:a2:46:32:a4:ce:3b:
4f:0e:0d:c5:f7:c9:fb:0e:d8:4e:77:52:d0:f5:ad:f2:f9:29:
3a:fa:59:c8:b6:b5:9c:c5:64:4b:a8:68:3a:1c:38:35:95:76:
e5:71:fa:07:26:c3:de:16:59:71:99:fe:2b:75:59:b9:af:31:
59:ca:91:68:7d:59:47:bb:6b:82:b1:30:22:54:d4:14:56:e3:
42:3b:00:1b:88:d4:53:db:85:11:93:c5:f9:25:ea:57:5e:62:
fd:a2:05:d9:4a:41:0a:e5:17:9d:e4:33:9d:29:1c:b3:da:93:
3c:d0:99:e8:63:5f:a0:de:f6:a6:62:ff:1d:0d:42:86:e4:43:
66:85:8c:1e:8b:47:c3:2e:ba:06:79:59:1a:05:41:ee:ac:71:
ca:9d:6e:18:0b:77:34:df:95:17:cb:09:6f:e2:dc:ee:5c:6d:
ec:53:2f:6c:06:63:cf:77:ba:55:f9:0d:b1:89:e4:1c:5e:91:
d9:8a:83:6f:12:b5:0f:68:e2:68:4f:34:34:bc:42:e1:8c:c2:
25:23:3e:67:93:c1:f6:51:a4:4b:77:ed:a4:54:15:e9:2f:90:
49:fc:c6:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2ZuUnB3SULu6eDk8qZEXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMDMwZDNiNGM1ODllOTRhM2VmNjFkZGQ1NDAxYThmM2Zm
NzliNmQwHhcNMjYwMzAyMDAwMTMwWhcNMjYwMzAzMDAwMTMwWjAzMTEwLwYDVQQD
Eyg2MmI5ZGViNWY4NWFkMTdjN2MzOTdhNjlhZTNjNTAxZDQyOGY0NTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuo712ul8fJf4hoaza2wQUmOs5dcL
i62x042iJl1Kh3WHFOXUpx+NQX8EaqJqFfJnG5RlXXdLZTmEgRxxqIc5+oUXeRMn
pg0s8DWH+FvRpO34j3NRK0X5Q38TS9FHq7LuGdNSQWD3gQhUmzGMr2OoD8Xw454F
0xwtPUGUmS9jy9qT+05DsCG3ZznsfNAF7i4NypW75B666IQubHSQ/sYOyrdSJgJG
lquXqmfRp11cPcS/S+guNfDyhhRfxBXjbccp3eP7KTbP1ebfxlu6f9AvnB3TC8tS
Dpj1TMsMrjYPc2Z38BXwfeEimgNFCWwPBW9LFs7Jp147i6XFOUMVD2kOYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGK53rX4WtF8fDl6aa48UB1Cj0U5MB8GA1UdIwQY
MBaAFK8DDTtMWJ6Uo+9h3dVAGo8/95ttMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8wZGE4NDctMWFlOS00OTZjLTg5ZmEt
OTI0NWE5YWI5NzhiLzEvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8wZGE4NDctMWFlOS00OTZjLTg5ZmEtOTI0NWE5YWI5Nzhi
LzEvcndNTk8weFlucFNqNzJIZDFVQWFqel8zbTIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeDwf2pW3
0/0Rvd6YUvxBeJfzK035Q5KGdQTf9hEOokYypM47Tw4NxffJ+w7YTndS0PWt8vkp
OvpZyLa1nMVkS6hoOhw4NZV25XH6BybD3hZZcZn+K3VZua8xWcqRaH1ZR7trgrEw
IlTUFFbjQjsAG4jUU9uFEZPF+SXqV15i/aIF2UpBCuUXneQznSkcs9qTPNCZ6GNf
oN72pmL/HQ1ChuRDZoWMHotHwy66BnlZGgVB7qxxyp1uGAt3NN+VF8sJb+Lc7lxt
7FMvbAZjz3e6VfkNsYnkHF6R2YqDbxK1D2jiaE80NLxC4YzCJSM+Z5PB9lGkS3ft
pFQV6S+QSfzGnw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:34:41 2026 by rpki-client