Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
File: MtOVxX39MMDNLDD0IziuTBSnUKE.mft (raw, json)
Hash identifier: lZPCuqo4tHkqn0FLKDfTFDbjK27FSKejp5MF6T1rgaU=
Subject key identifier: EA:9F:2D:FA:57:77:C0:39:83:25:C0:71:FD:6B:F6:3E:14:21:89:20
Authority key identifier: 32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
Certificate issuer: /CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Certificate serial: 019D28BB7FCD80386F31818D102315B2C781
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
Manifest number: 0D70
Signing time: Thu 26 Mar 2026 06:01:09 +0000
Manifest this update: Thu 26 Mar 2026 06:01:09 +0000
Manifest next update: Fri 27 Mar 2026 06:01:09 +0000
Files and hashes: 1: 44IrAvvEKSWJ98iqKpkSKb-6qZQ.roa (hash: U4fdOWuwUY9/P9u0/ZElUYWz4NntxpKIR4cfbGlP9vk=)
2: MtOVxX39MMDNLDD0IziuTBSnUKE.crl (hash: XxUowN/AfelitUFUAp8oIvb1x/2c3QA2zQU2uikFj2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:7f:cd:80:38:6f:31:81:8d:10:23:15:b2:c7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d395c57dfd30c0cd2c30f42338ae4c14a750a1
Validity
Not Before: Mar 26 06:01:09 2026 GMT
Not After : Mar 27 06:01:09 2026 GMT
Subject: CN=ea9f2dfa5777c0398325c071fd6bf63e14218920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b7:94:1d:b0:32:07:5d:f0:82:ff:f4:a8:fe:
03:a6:18:27:98:15:08:dd:05:2b:c7:d1:ba:01:7d:
65:15:43:61:3d:d7:a0:9b:49:10:12:70:fb:4b:0f:
0d:79:5a:c9:84:1d:29:6c:5e:eb:b1:e8:36:b7:52:
f5:80:dc:b6:fa:06:01:78:d0:2d:09:0f:92:0e:b8:
a9:8a:91:86:53:d8:12:7c:b4:d0:cb:97:22:75:fe:
c6:31:6b:a8:bf:c4:dc:3c:a3:85:cc:5c:42:13:90:
51:a2:01:ce:bf:a3:d6:95:f3:2f:60:ba:00:e3:92:
18:b1:60:fb:31:f6:d0:68:43:a7:2c:80:48:82:46:
fb:49:cc:13:fc:35:8c:9a:a0:75:10:1c:b0:1a:9d:
5f:f3:56:50:52:f4:e5:06:a6:93:6b:60:d6:26:e4:
6e:71:45:5e:53:15:70:87:aa:07:4f:17:92:1e:ae:
90:28:1f:f2:a3:0e:91:45:c7:64:21:d9:99:f5:c7:
51:e5:ef:72:c2:7c:0f:1a:8c:12:60:40:26:7e:a1:
fa:1c:67:4b:9b:0c:4c:fe:81:8c:f0:42:27:26:ef:
7f:bb:34:e5:5e:d6:42:a1:75:1f:94:76:d4:8c:02:
22:c5:af:47:8e:e3:e1:1e:70:4e:10:aa:e5:eb:94:
f3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:9F:2D:FA:57:77:C0:39:83:25:C0:71:FD:6B:F6:3E:14:21:89:20
X509v3 Authority Key Identifier:
keyid:32:D3:95:C5:7D:FD:30:C0:CD:2C:30:F4:23:38:AE:4C:14:A7:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtOVxX39MMDNLDD0IziuTBSnUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/35b49b-03a3-4101-a3fe-1d8e19df4a62/1/MtOVxX39MMDNLDD0IziuTBSnUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:67:19:63:e7:ea:30:5a:a8:7a:20:8e:d0:90:d0:e4:98:fe:
81:f1:9c:c4:fe:b1:d6:6f:dc:2f:8e:20:3d:96:f0:10:dc:9e:
48:14:67:eb:a9:12:4a:09:42:ad:3e:40:26:51:53:b4:0d:a6:
88:ac:86:a5:a3:e8:fb:54:a0:57:03:23:44:da:5c:a9:1f:c2:
93:04:8b:8f:8b:9a:d0:cd:05:8c:5e:80:aa:c9:da:8d:5f:e3:
70:61:ba:66:4b:64:8d:57:03:8d:53:2a:60:98:aa:c2:bc:d2:
59:27:05:74:25:37:57:4f:2f:40:76:b8:0e:f5:a7:3d:a2:a1:
4d:95:05:73:ca:a5:56:2f:cf:97:d3:e2:a5:1e:34:25:11:ab:
87:9d:e6:9b:43:19:27:e0:eb:5d:07:b6:7e:8a:77:c1:d9:fe:
25:00:cc:7a:4e:27:8b:ee:a5:18:2b:9d:16:4e:73:f2:89:4a:
13:97:fd:05:93:0c:43:2e:2c:62:1b:26:e3:b6:f1:ae:a0:0b:
14:57:97:c2:8f:a3:b7:85:31:41:7c:42:53:ed:1d:78:08:a8:
30:e4:e9:6f:4c:90:45:60:96:76:75:8e:73:ec:e5:ec:8e:0c:
a0:0d:c1:06:bf:e9:f1:27:b2:92:91:85:52:cd:7d:49:b5:53:
da:44:d8:e7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou3/NgDhvMYGNECMVsseBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyZDM5NWM1N2RmZDMwYzBjZDJjMzBmNDIzMzhhZTRjMTRh
NzUwYTEwHhcNMjYwMzI2MDYwMTA5WhcNMjYwMzI3MDYwMTA5WjAzMTEwLwYDVQQD
EyhlYTlmMmRmYTU3NzdjMDM5ODMyNWMwNzFmZDZiZjYzZTE0MjE4OTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj7eUHbAyB13wgv/0qP4DphgnmBUI
3QUrx9G6AX1lFUNhPdegm0kQEnD7Sw8NeVrJhB0pbF7rseg2t1L1gNy2+gYBeNAt
CQ+SDripipGGU9gSfLTQy5cidf7GMWuov8TcPKOFzFxCE5BRogHOv6PWlfMvYLoA
45IYsWD7MfbQaEOnLIBIgkb7ScwT/DWMmqB1EBywGp1f81ZQUvTlBqaTa2DWJuRu
cUVeUxVwh6oHTxeSHq6QKB/yow6RRcdkIdmZ9cdR5e9ywnwPGowSYEAmfqH6HGdL
mwxM/oGM8EInJu9/uzTlXtZCoXUflHbUjAIixa9HjuPhHnBOEKrl65Tz/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOqfLfpXd8A5gyXAcf1r9j4UIYkgMB8GA1UdIwQY
MBaAFDLTlcV9/TDAzSww9CM4rkwUp1ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUt
MWQ4ZTE5ZGY0YTYyLzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zNWI0OWItMDNhMy00MTAxLWEzZmUtMWQ4ZTE5ZGY0YTYy
LzEvTXRPVnhYMzlNTUROTEREMEl6aXVUQlNuVUtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj2cZY+fq
MFqoeiCO0JDQ5Jj+gfGcxP6x1m/cL44gPZbwENyeSBRn66kSSglCrT5AJlFTtA2m
iKyGpaPo+1SgVwMjRNpcqR/CkwSLj4ua0M0FjF6AqsnajV/jcGG6ZktkjVcDjVMq
YJiqwrzSWScFdCU3V08vQHa4DvWnPaKhTZUFc8qlVi/Pl9PipR40JRGrh53mm0MZ
J+DrXQe2fop3wdn+JQDMek4ni+6lGCudFk5z8olKE5f9BZMMQy4sYhsm47bxrqAL
FFeXwo+jt4UxQXxCU+0deAioMOTpb0yQRWCWdnWOc+zl7I4MoA3BBr/p8SeykpGF
Us19SbVT2kTY5w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:58:22 2026 by rpki-client