Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
File: 2sMmMqqRVCU8bc0jMemtaSC2vcw.mft (raw, json)
Hash identifier: TZeza2MFBNi/BRzLIjfh4L514Rj7QL327bCgF4yuqdY=
Subject key identifier: 11:1A:77:C4:02:C4:30:09:BE:3A:33:51:A1:E8:4D:54:B1:02:3F:C3
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: 019CAAC723705A924FC4A90DFC56598B4DA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
Manifest number: 0FDB
Signing time: Sun 01 Mar 2026 19:01:43 +0000
Manifest this update: Sun 01 Mar 2026 19:01:43 +0000
Manifest next update: Mon 02 Mar 2026 19:01:43 +0000
Files and hashes: 1: 2iDN05uSq0ol30Boqq292O8hl4w.roa (hash: /yvDilMky3xNO6oMx1wmAxjj1Dh8TVWdR92wXw9xSFU=)
2: 2sMmMqqRVCU8bc0jMemtaSC2vcw.crl (hash: /IcGvtAWShAw3oO+HEsbxnpg73kDipq84h2VY+TE8Oo=)
3: UpZ-DRH2FLqKcZot9WnKKGPDaxI.roa (hash: Z2/3lO45yvIZPeXxsjAynXOHDKVBDLOjLTwLnTbPDbU=)
4: YU-dNj0P1RSXNpgu-NfjfVOGIXI.roa (hash: 5xF+3ALjS9ETnu2nZD1BWStkHokbMoA1FcBVvhuzz4g=)
5: xlsFyDdwgZeZV5xnjDclge-AA8U.roa (hash: TXOJJRDjmANYnvqhNdlEFYN20qaFGtzeMxtt4daAeOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:23:70:5a:92:4f:c4:a9:0d:fc:56:59:8b:4d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Mar 1 19:01:43 2026 GMT
Not After : Mar 2 19:01:43 2026 GMT
Subject: CN=111a77c402c43009be3a3351a1e84d54b1023fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ef:45:f1:ac:2e:80:61:d1:dd:a5:b8:9f:f8:
80:44:be:05:c0:31:fe:b7:45:d6:07:8d:cd:8c:9d:
0d:78:57:27:73:7f:42:0a:52:79:15:cc:05:62:03:
31:16:3a:39:cc:f0:b5:07:84:4c:d5:f9:82:60:10:
90:4a:66:d7:f2:88:9a:c2:14:0a:53:89:af:ce:5f:
d3:95:c7:b9:14:ac:04:f5:14:69:d1:a4:38:7a:bb:
2e:e8:60:95:66:e6:c1:d3:3a:93:15:63:9b:12:12:
3a:98:1f:e0:72:a1:e4:0f:ba:1d:b6:ad:d6:ef:e1:
09:4b:b6:53:35:8a:50:71:20:38:03:3d:1a:0f:26:
f8:8c:f5:46:86:e4:ff:33:80:53:81:8e:5f:f4:2b:
58:71:4b:da:7f:0c:68:b8:13:a5:c9:60:42:b4:4f:
4b:a7:0a:29:8e:7a:60:e8:19:da:c8:11:16:f4:5e:
94:94:4b:e4:da:fd:aa:82:f1:3f:11:da:f5:ad:7a:
49:6b:31:d8:86:25:06:eb:37:6c:2c:21:3c:c4:d6:
78:3c:a3:b4:86:36:d5:3b:26:e6:9f:b0:c7:bc:e7:
7c:71:5b:68:f2:a3:d1:14:5a:60:ce:2f:60:86:c9:
8a:45:56:86:be:8d:ba:8f:5c:0b:b9:39:dd:dd:d4:
af:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1A:77:C4:02:C4:30:09:BE:3A:33:51:A1:E8:4D:54:B1:02:3F:C3
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:23:42:ce:05:b3:56:61:9e:61:dd:b6:38:46:64:e1:75:b1:
02:3e:bd:8e:ec:e1:b7:1b:4f:a8:59:7a:35:f3:1c:70:c9:94:
d0:47:39:5a:c1:25:a4:d3:6d:08:b3:06:ac:ac:17:b1:91:6d:
02:e0:ce:90:3d:fd:9d:38:f9:9c:e7:6f:8c:f5:0d:04:d7:d2:
e7:f4:d0:9d:f2:62:e9:94:50:66:01:72:eb:da:f5:60:82:5c:
11:95:a0:67:36:03:f8:c7:c4:50:3a:72:ff:41:99:56:ec:e7:
00:0e:27:79:01:b3:19:10:46:fe:88:36:27:7a:d5:8b:09:b3:
23:f6:8a:bb:76:df:f3:ae:0b:45:b4:e6:e3:b9:8d:95:14:3f:
a3:a1:8b:fa:72:1e:f8:d8:14:71:02:dd:d7:71:0f:9a:83:ae:
12:d2:69:86:d3:f9:a3:ae:39:be:45:74:b2:5a:fa:83:05:e7:
53:b0:41:bf:40:61:8c:73:56:13:a5:05:6e:d1:40:79:13:4f:
10:4e:94:74:4e:1a:2c:6a:3f:11:6f:f3:22:6d:d5:78:f6:7a:
43:fb:ee:ae:f7:61:df:d8:06:b1:2e:d2:29:f0:14:be:35:b7:
d1:75:1b:db:ca:3f:2c:12:80:1d:1a:11:c2:ad:79:62:2f:4e:
68:f2:5f:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxyNwWpJPxKkN/FZZi02mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYzMyNjMyYWE5MTU0MjUzYzZkY2QyMzMxZTlhZDY5MjBi
NmJkY2MwHhcNMjYwMzAxMTkwMTQzWhcNMjYwMzAyMTkwMTQzWjAzMTEwLwYDVQQD
EygxMTFhNzdjNDAyYzQzMDA5YmUzYTMzNTFhMWU4NGQ1NGIxMDIzZmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAku9F8awugGHR3aW4n/iARL4FwDH+
t0XWB43NjJ0NeFcnc39CClJ5FcwFYgMxFjo5zPC1B4RM1fmCYBCQSmbX8oiawhQK
U4mvzl/Tlce5FKwE9RRp0aQ4ersu6GCVZubB0zqTFWObEhI6mB/gcqHkD7odtq3W
7+EJS7ZTNYpQcSA4Az0aDyb4jPVGhuT/M4BTgY5f9CtYcUvafwxouBOlyWBCtE9L
pwopjnpg6BnayBEW9F6UlEvk2v2qgvE/Edr1rXpJazHYhiUG6zdsLCE8xNZ4PKO0
hjbVOybmn7DHvOd8cVto8qPRFFpgzi9ghsmKRVaGvo26j1wLuTnd3dSvYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBEad8QCxDAJvjozUaHoTVSxAj/DMB8GA1UdIwQY
MBaAFNrDJjKqkVQlPG3NIzHprWkgtr3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2Mjct
MjQ2NTRlOTQxYzEyLzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi80OTQyNGEtYWE1Zi00YjlmLWE2MjctMjQ2NTRlOTQxYzEy
LzEvMnNNbU1xcVJWQ1U4YmMwak1lbXRhU0MydmN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHCNCzgWz
VmGeYd22OEZk4XWxAj69juzhtxtPqFl6NfMccMmU0Ec5WsElpNNtCLMGrKwXsZFt
AuDOkD39nTj5nOdvjPUNBNfS5/TQnfJi6ZRQZgFy69r1YIJcEZWgZzYD+MfEUDpy
/0GZVuznAA4neQGzGRBG/og2J3rViwmzI/aKu3bf864LRbTm47mNlRQ/o6GL+nIe
+NgUcQLd13EPmoOuEtJphtP5o645vkV0slr6gwXnU7BBv0BhjHNWE6UFbtFAeRNP
EE6UdE4aLGo/EW/zIm3VePZ6Q/vurvdh39gGsS7SKfAUvjW30XUb28o/LBKAHRoR
wq15Yi9OaPJf4g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:31:26 2026 by rpki-client