Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
File: 2sMmMqqRVCU8bc0jMemtaSC2vcw.mft (raw, json)
Hash identifier: ZMJo7lgVxyopAVTZTL1gQmR+23w0mFd+vnDyeFmfMaM=
Subject key identifier: 46:47:DB:A3:63:34:FB:98:BA:97:1D:2F:15:8E:EF:1E:F3:3E:0F:15
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: 019CACB45CDC0C06DE2DD7100841DD8924BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
Manifest number: 0FDC
Signing time: Mon 02 Mar 2026 04:00:27 +0000
Manifest this update: Mon 02 Mar 2026 04:00:27 +0000
Manifest next update: Tue 03 Mar 2026 04:00:27 +0000
Files and hashes: 1: 2iDN05uSq0ol30Boqq292O8hl4w.roa (hash: /yvDilMky3xNO6oMx1wmAxjj1Dh8TVWdR92wXw9xSFU=)
2: 2sMmMqqRVCU8bc0jMemtaSC2vcw.crl (hash: YUrBZv99fXcSQE+CzEVbdyG8vYMgLcPeNcs/1lA/zyw=)
3: UpZ-DRH2FLqKcZot9WnKKGPDaxI.roa (hash: Z2/3lO45yvIZPeXxsjAynXOHDKVBDLOjLTwLnTbPDbU=)
4: YU-dNj0P1RSXNpgu-NfjfVOGIXI.roa (hash: 5xF+3ALjS9ETnu2nZD1BWStkHokbMoA1FcBVvhuzz4g=)
5: xlsFyDdwgZeZV5xnjDclge-AA8U.roa (hash: TXOJJRDjmANYnvqhNdlEFYN20qaFGtzeMxtt4daAeOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:5c:dc:0c:06:de:2d:d7:10:08:41:dd:89:24:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Mar 2 04:00:27 2026 GMT
Not After : Mar 3 04:00:27 2026 GMT
Subject: CN=4647dba36334fb98ba971d2f158eef1ef33e0f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ba:fd:70:b1:79:3f:44:b6:0a:ad:92:8e:0d:
6b:85:d3:87:b9:9f:c2:7c:d3:9a:bc:78:8c:da:fb:
18:64:b1:d3:c1:ae:9f:71:90:81:c8:02:36:35:8e:
ae:62:b2:23:15:92:1d:eb:d9:72:5d:be:3b:72:9b:
6b:5f:fb:84:90:b9:13:e8:0e:ad:8a:ea:56:99:4d:
3e:0e:b0:6e:b5:26:be:22:25:d6:ca:fd:c6:f2:f2:
14:4a:80:c7:ab:ce:60:c3:ad:d3:e0:68:c2:02:1a:
f8:5c:3c:8d:51:d8:15:50:b8:08:44:3b:8f:95:b3:
2b:c2:2b:a6:3f:ea:e8:fb:29:54:a6:39:b9:98:81:
23:21:63:12:72:ce:23:49:81:56:ee:94:85:55:26:
0e:93:7b:b7:f2:94:1f:e3:2f:c4:00:61:5b:93:d9:
f2:29:c8:5a:14:26:0d:65:6b:6b:c8:68:59:cf:94:
83:fb:ae:32:e6:2b:13:ec:28:8a:c5:09:48:62:68:
57:be:9e:52:ee:40:7c:51:2d:47:40:8f:d1:1b:e3:
67:30:da:d3:e4:c4:4b:de:c8:39:e0:da:56:90:94:
39:1a:56:ae:a0:19:b4:45:ea:b5:e0:12:a9:19:91:
bb:e4:50:41:c0:7a:72:16:85:49:07:f0:fb:8c:e0:
bf:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:47:DB:A3:63:34:FB:98:BA:97:1D:2F:15:8E:EF:1E:F3:3E:0F:15
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:86:d4:32:46:13:5f:79:e3:e1:c5:ac:89:bf:82:29:ba:90:
7b:67:64:4d:52:34:cc:60:da:0a:3b:c7:5c:87:ef:ce:ed:63:
d2:ec:86:42:9d:f9:97:b4:24:8c:8a:74:3f:47:8b:5e:d9:eb:
ab:11:f7:87:28:c2:b3:82:7f:42:5d:73:e9:23:9a:d4:11:b6:
fc:dd:49:fe:63:24:2c:6a:73:d0:2c:97:c0:bc:ba:16:78:da:
d3:2a:31:70:13:65:e8:b9:3e:e6:50:24:97:79:27:93:98:b5:
7c:66:2a:8b:2e:e8:72:b6:fa:bf:1a:bd:25:1e:07:5f:cb:aa:
81:ab:d3:3f:82:6f:39:74:91:2d:8b:4f:d3:74:92:b0:f6:bd:
74:05:55:82:88:1d:5f:d8:98:0f:5c:12:9c:4c:ba:9c:e9:53:
f8:46:70:aa:c8:2e:31:ab:0f:3a:35:fa:7b:7b:34:88:52:81:
f6:ed:29:dc:34:eb:2d:73:c3:ef:18:45:56:60:b9:6b:8e:7c:
cf:49:e9:de:1b:e8:0d:0f:05:fa:91:7c:c6:4f:77:3a:d9:dc:
cb:13:ac:9f:d2:fb:7f:96:2f:5c:8a:23:ec:22:42:8c:38:0a:
3f:59:15:3e:4f:57:2e:8d:ae:5d:18:d2:1e:c2:5d:5c:5b:09:
9b:e7:6a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:58:42 2026 by rpki-client