Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json)
Hash identifier: 72a6hElzdDNmPKhmJ8sGcvcdLXA3TaxFwfOQyvqCTnE=
Subject key identifier: 6E:26:63:03:96:02:82:E1:A4:CD:68:CF:0E:83:C6:16:60:03:2A:32
Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Certificate serial: 019CAB34A9B431BB424ED486E6BEA2E2652E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 21:01:20 +0000
Manifest this update: Sun 01 Mar 2026 21:01:20 +0000
Manifest next update: Mon 02 Mar 2026 21:01:20 +0000
Files and hashes: 1: EFGLC8SL84p1q1K-j3Uf3V3IW44.roa (hash: 4PnC9POkZ3ZS5ZMz+CxTTugtS6AWFe8U3aLCVUVr204=)
2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: 5EuG++3YuYdzFG2F7H6+LaUHy7IWeITv8B2VJA0DMQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:a9:b4:31:bb:42:4e:d4:86:e6:be:a2:e2:65:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02
Validity
Not Before: Mar 1 21:01:20 2026 GMT
Not After : Mar 2 21:01:20 2026 GMT
Subject: CN=6e266303960282e1a4cd68cf0e83c61660032a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e2:dd:b3:1e:3c:a5:7f:ca:f7:af:67:2c:13:
00:22:dd:9a:89:d2:c7:aa:e9:6a:98:18:93:97:ef:
f3:38:9d:9b:08:a5:66:b7:d7:1e:4e:f0:20:b6:25:
61:51:5b:55:11:15:f0:a1:71:1d:3f:c0:fc:7a:0d:
a5:26:25:95:38:d2:24:98:ba:fb:5f:c2:ce:87:52:
18:1f:2e:ee:57:32:6e:03:86:4a:99:59:85:5d:77:
6f:55:f4:01:1d:86:6f:ce:4b:51:bc:83:fa:c4:7a:
91:a4:48:20:ea:67:7a:41:38:e7:11:76:85:78:eb:
c7:e2:b4:b8:85:a5:1e:62:b7:cb:fe:72:2e:cc:b3:
dc:9b:1a:64:37:4d:7f:54:b5:e8:48:6c:5f:c4:9a:
b7:47:43:0e:1e:b9:36:5f:59:ee:03:e9:e1:f1:eb:
7a:1c:83:da:a0:8c:92:21:ad:f2:fb:8b:28:dc:26:
f1:89:31:30:ad:9d:10:16:64:ab:55:37:a2:44:bd:
b9:6d:c3:49:6a:ab:48:e1:0f:12:99:79:c0:ce:06:
60:7f:a8:40:8f:48:cb:e3:b1:65:2b:d0:aa:e4:44:
e5:6a:a4:bd:10:64:24:c0:3f:bf:59:d4:3e:5d:d8:
ff:3d:c3:b1:8f:3a:6e:98:c8:de:f2:01:bd:dd:d4:
3e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:26:63:03:96:02:82:E1:A4:CD:68:CF:0E:83:C6:16:60:03:2A:32
X509v3 Authority Key Identifier:
keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:dc:33:c1:b2:6a:26:64:db:4c:83:0a:cc:ed:0a:75:2e:96:
60:bd:a9:fb:93:6d:f2:05:5d:17:1b:7f:c5:1f:5e:61:52:c1:
68:81:de:9d:95:9f:0a:11:66:a8:62:08:d6:e8:ab:87:97:28:
ea:38:66:78:76:b5:07:df:67:d8:2f:6f:04:8b:d6:a7:ff:5d:
22:e7:04:c0:6b:62:08:d6:38:73:63:b4:cd:51:5a:18:21:4f:
49:4a:fd:85:80:13:95:05:7d:a1:1b:fc:3c:8b:65:ad:2d:b5:
43:aa:6f:fd:45:ec:3d:a1:dc:4c:1b:1c:ff:94:be:8e:65:f7:
da:06:7a:be:8d:66:13:9d:1c:80:04:08:b7:87:bc:f9:65:ba:
09:ed:d1:c5:0e:b9:c7:34:b1:51:38:e1:26:17:f8:3b:6e:ac:
fa:22:47:8f:c9:14:42:b4:d3:b0:6d:4d:b0:60:3e:74:63:d6:
88:ce:1e:22:40:8c:20:52:4b:19:15:a8:ad:8f:b5:a5:a6:b0:
d7:7e:a2:f7:01:7a:c0:39:91:7d:7a:04:81:8e:a7:2f:fb:3a:
bb:46:8d:a7:12:e8:f8:0f:6c:59:1f:35:ed:05:e9:af:a9:b2:
97:ae:ad:52:2b:e9:36:23:23:58:6c:df:8a:a4:12:67:73:89:
43:d2:4d:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNKm0MbtCTtSG5r6i4mUuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwNzRkNjUxZGZlYzRiMGQzNzFlMDI1MDViMWY4NjkzZWQx
ZDhlMDIwHhcNMjYwMzAxMjEwMTIwWhcNMjYwMzAyMjEwMTIwWjAzMTEwLwYDVQQD
Eyg2ZTI2NjMwMzk2MDI4MmUxYTRjZDY4Y2YwZTgzYzYxNjYwMDMyYTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreLdsx48pX/K969nLBMAIt2aidLH
qulqmBiTl+/zOJ2bCKVmt9ceTvAgtiVhUVtVERXwoXEdP8D8eg2lJiWVONIkmLr7
X8LOh1IYHy7uVzJuA4ZKmVmFXXdvVfQBHYZvzktRvIP6xHqRpEgg6md6QTjnEXaF
eOvH4rS4haUeYrfL/nIuzLPcmxpkN01/VLXoSGxfxJq3R0MOHrk2X1nuA+nh8et6
HIPaoIySIa3y+4so3CbxiTEwrZ0QFmSrVTeiRL25bcNJaqtI4Q8SmXnAzgZgf6hA
j0jL47FlK9Cq5ETlaqS9EGQkwD+/WdQ+Xdj/PcOxjzpumMje8gG93dQ+iwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG4mYwOWAoLhpM1ozw6DxhZgAyoyMB8GA1UdIwQY
MBaAFDB01lHf7EsNNx4CUFsfhpPtHY4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAt
OTJiYTJkNTA3N2MzLzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAtOTJiYTJkNTA3N2Mz
LzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKtwzwbJq
JmTbTIMKzO0KdS6WYL2p+5Nt8gVdFxt/xR9eYVLBaIHenZWfChFmqGII1uirh5co
6jhmeHa1B99n2C9vBIvWp/9dIucEwGtiCNY4c2O0zVFaGCFPSUr9hYATlQV9oRv8
PItlrS21Q6pv/UXsPaHcTBsc/5S+jmX32gZ6vo1mE50cgAQIt4e8+WW6Ce3RxQ65
xzSxUTjhJhf4O26s+iJHj8kUQrTTsG1NsGA+dGPWiM4eIkCMIFJLGRWorY+1paaw
136i9wF6wDmRfXoEgY6nL/s6u0aNpxLo+A9sWR817QXpr6myl66tUivpNiMjWGzf
iqQSZ3OJQ9JNtQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:36:01 2026 by rpki-client