Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
File: 2AtWXXc2dT2-f2YkvfHSvBiW98A.mft (raw, json)
Hash identifier: W9o1RZd6VI+6FsMpQ63aRGEwwUS/AmbJWRCHBGNwZhA=
Subject key identifier: 33:B6:B2:8E:97:89:B6:96:85:A3:C8:64:D4:B5:D0:D2:BD:65:6B:CF
Authority key identifier: D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
Certificate issuer: /CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Certificate serial: 019CC8D08AA2EFD1F26DFC3B301294E7BB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
Manifest number: 11B1
Signing time: Sat 07 Mar 2026 15:00:35 +0000
Manifest this update: Sat 07 Mar 2026 15:00:35 +0000
Manifest next update: Sun 08 Mar 2026 15:00:35 +0000
Files and hashes: 1: 2AtWXXc2dT2-f2YkvfHSvBiW98A.crl (hash: TaTAXTFf24aoGSZ5D1GRqjermzgVvy+pNBnWRiwhlQ0=)
2: 5XOq4BMraJ6-AegtlaIWTtUkqxo.roa (hash: hDvJTYUbzgM4Etq6PCbmzufkHK2RaHqzKqogboxsQ0c=)
3: iIJMhiXnC0TkNFq6MHPCGZcJKp4.roa (hash: 6M+PNBTs7Ydc22YxEOoAXWjHO6P/9d3SsLY8rQkfu3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 10:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c8:d0:8a:a2:ef:d1:f2:6d:fc:3b:30:12:94:e7:bb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Validity
Not Before: Mar 7 15:00:35 2026 GMT
Not After : Mar 8 15:00:35 2026 GMT
Subject: CN=33b6b28e9789b69685a3c864d4b5d0d2bd656bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:be:74:fb:55:5f:88:e0:eb:d6:c8:87:ca:a3:
53:42:d7:33:9b:80:09:68:95:61:20:db:89:27:f5:
0b:e4:4a:57:9d:a9:33:bf:95:c5:89:9e:d3:83:d4:
00:b6:2d:7f:72:8f:92:4b:9f:39:ee:dd:96:80:5c:
97:64:3c:5a:01:05:b2:01:e3:9a:ae:c1:ae:64:21:
ea:43:d0:88:1b:e8:6e:b8:f5:e8:ea:1a:6a:63:75:
50:3e:a3:11:f4:b3:4b:22:99:1f:d7:d5:40:df:bd:
0b:2e:2b:30:dd:00:6d:65:85:6f:14:fd:d2:cb:6e:
09:a5:60:c6:4c:53:6b:dd:cf:97:9a:b2:b6:33:a4:
c0:47:d7:52:c2:4f:be:26:4a:ae:ae:0a:b8:10:43:
db:ba:86:88:f2:6e:9a:0a:24:90:f5:5a:3a:06:ce:
ed:e7:25:90:cd:36:73:75:11:1d:48:3e:d8:6c:ab:
a2:0b:d1:20:ac:5c:cf:3e:22:d1:40:80:ad:11:50:
26:7a:45:bb:09:37:0f:bc:74:a0:57:7f:81:b8:36:
22:58:8b:c3:27:58:b8:9c:c7:1d:1d:db:07:3f:fe:
4b:01:00:23:a2:f6:4f:62:dc:bb:b4:04:ee:da:19:
fc:27:a7:36:be:11:75:ae:0c:87:52:1e:c2:4d:82:
84:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B6:B2:8E:97:89:B6:96:85:A3:C8:64:D4:B5:D0:D2:BD:65:6B:CF
X509v3 Authority Key Identifier:
keyid:D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:1e:f0:30:4b:f1:9b:0e:aa:28:9c:bb:53:3b:bd:96:19:47:
bd:54:e3:13:91:a0:4e:5b:e1:4e:8d:45:d3:46:27:57:f7:a2:
52:40:db:a5:8b:59:7f:24:93:cd:98:68:cd:ec:84:19:4e:be:
0a:0e:f9:1c:0d:5e:f0:d8:4e:93:d4:51:b5:31:63:c7:97:0b:
12:4e:cc:c6:b4:30:97:08:e3:c4:69:40:09:4f:22:84:34:07:
e1:67:41:43:d9:ae:e6:24:79:1a:3b:18:e9:f7:24:22:c2:17:
5a:cd:cd:81:80:1b:e7:e0:80:91:42:ef:82:4c:9e:09:51:fc:
f8:e6:00:c6:30:f7:c5:4b:f2:32:04:24:15:98:15:c2:fa:65:
cf:ca:7a:20:df:2d:e8:1d:d8:c5:90:a4:6b:41:e0:ed:0f:2f:
b5:08:cb:6b:e4:e5:c3:02:eb:ec:ea:3f:01:bb:69:db:f0:59:
89:37:20:69:e1:6a:07:97:40:0f:c9:98:bb:16:40:64:a6:41:
de:fb:ec:4c:0d:b7:19:6d:4e:93:32:45:a5:2b:5c:54:11:25:
e9:ba:5c:17:97:e1:67:b0:85:a3:d8:3f:82:d9:37:62:2b:95:
4f:46:9a:34:c8:8e:32:a2:f8:62:88:49:d0:e5:3e:72:27:29:
7f:0f:36:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzI0Iqi79Hybfw7MBKU57tdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MGI1NjVkNzczNjc1M2RiZTdmNjYyNGJkZjFkMmJjMTg5
NmY3YzAwHhcNMjYwMzA3MTUwMDM1WhcNMjYwMzA4MTUwMDM1WjAzMTEwLwYDVQQD
EygzM2I2YjI4ZTk3ODliNjk2ODVhM2M4NjRkNGI1ZDBkMmJkNjU2YmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL50+1VfiODr1siHyqNTQtczm4AJ
aJVhINuJJ/UL5EpXnakzv5XFiZ7Tg9QAti1/co+SS5857t2WgFyXZDxaAQWyAeOa
rsGuZCHqQ9CIG+huuPXo6hpqY3VQPqMR9LNLIpkf19VA370LLisw3QBtZYVvFP3S
y24JpWDGTFNr3c+XmrK2M6TAR9dSwk++Jkqurgq4EEPbuoaI8m6aCiSQ9Vo6Bs7t
5yWQzTZzdREdSD7YbKuiC9EgrFzPPiLRQICtEVAmekW7CTcPvHSgV3+BuDYiWIvD
J1i4nMcdHdsHP/5LAQAjovZPYty7tATu2hn8J6c2vhF1rgyHUh7CTYKEswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDO2so6XibaWhaPIZNS10NK9ZWvPMB8GA1UdIwQY
MBaAFNgLVl13NnU9vn9mJL3x0rwYlvfAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5Mjct
MjMyNzc4MjJmZWZhLzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9mNzYzMzktMTcxNC00MDNiLTk5MjctMjMyNzc4MjJmZWZh
LzEvMkF0V1hYYzJkVDItZjJZa3ZmSFN2QmlXOThBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACx7wMEvx
mw6qKJy7Uzu9lhlHvVTjE5GgTlvhTo1F00YnV/eiUkDbpYtZfySTzZhozeyEGU6+
Cg75HA1e8NhOk9RRtTFjx5cLEk7MxrQwlwjjxGlACU8ihDQH4WdBQ9mu5iR5GjsY
6fckIsIXWs3NgYAb5+CAkULvgkyeCVH8+OYAxjD3xUvyMgQkFZgVwvplz8p6IN8t
6B3YxZCka0Hg7Q8vtQjLa+TlwwLr7Oo/Abtp2/BZiTcgaeFqB5dAD8mYuxZAZKZB
3vvsTA23GW1OkzJFpStcVBEl6bpcF5fhZ7CFo9g/gtk3YiuVT0aaNMiOMqL4YohJ
0OU+cicpfw821Q==
-----END CERTIFICATE-----
Generated at Sat Mar 7 19:18:29 2026 by rpki-client