Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: kWilCzfMKKSzIAUpzAA5JGmYcG/aEHivnPkpV10LF5E=
Subject key identifier: 6C:03:BF:20:2F:A4:F4:91:B4:40:CA:29:3F:F5:0B:86:05:63:9D:3D
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019CD49DFA4AF1097CC1C6E012536910723B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1860
Signing time: Mon 09 Mar 2026 22:00:48 +0000
Manifest this update: Mon 09 Mar 2026 22:00:48 +0000
Manifest next update: Tue 10 Mar 2026 22:00:48 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: TZkeU2mPVuaaquC4Obs4BzccnEWbbg0h3T9qEUfQ+hk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Mar 2026 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d4:9d:fa:4a:f1:09:7c:c1:c6:e0:12:53:69:10:72:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 9 22:00:48 2026 GMT
Not After : Mar 10 22:00:48 2026 GMT
Subject: CN=6c03bf202fa4f491b440ca293ff50b8605639d3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:84:21:a7:a4:4a:2b:60:5b:c7:ac:fe:71:a4:
6e:a0:86:f0:91:23:44:57:f4:15:f4:3d:87:28:c7:
0c:3e:b0:ae:a4:61:af:91:00:ec:fc:db:5c:f9:a8:
03:f0:22:90:6a:53:ef:71:56:a5:77:e3:d9:8a:c2:
6e:2b:72:1a:e3:bf:aa:1e:a2:a9:f6:d7:df:d0:1f:
e6:76:9d:57:06:f6:46:22:4a:b0:af:fd:a5:e3:7b:
2d:6d:ee:94:69:68:16:e6:a2:e6:a4:b6:c2:91:d1:
ea:53:1c:31:25:63:1b:92:11:b5:80:68:c9:03:37:
d9:9c:61:e9:38:0c:5e:50:13:14:3f:42:c1:d6:ac:
73:f7:56:a6:26:cc:86:28:a2:27:32:92:99:ca:3a:
92:0d:58:85:57:83:77:89:95:8f:c1:88:5a:91:2f:
b7:0d:37:5c:f5:34:83:95:43:b1:d2:77:4a:72:17:
a6:3e:3c:64:4b:5a:22:96:45:05:bb:8d:51:44:e5:
77:7f:49:fe:73:69:f2:c1:74:67:2f:29:59:e1:85:
60:43:8a:94:ce:79:56:98:ec:71:cc:94:2d:f4:d0:
89:cb:48:94:3b:d2:32:ce:59:5b:06:0a:c8:1c:2d:
bc:24:8d:30:4b:25:f6:07:10:c3:c0:44:91:3d:a4:
40:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:03:BF:20:2F:A4:F4:91:B4:40:CA:29:3F:F5:0B:86:05:63:9D:3D
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:7d:e4:12:01:dd:2a:2b:14:86:63:c0:cc:43:3a:78:a4:d1:
05:44:50:cb:87:a3:e2:30:f3:25:a9:97:6f:ec:18:b5:7c:10:
07:14:07:79:4f:1e:8a:19:42:05:79:7d:ce:c9:dd:19:53:93:
ca:6b:3f:4b:61:8d:44:5f:14:40:6e:18:20:61:ce:ab:4f:d0:
ff:0a:b5:82:88:c9:69:4c:b4:a3:69:1f:ad:9f:1d:a1:88:ad:
bf:b0:a1:e9:cd:98:7d:ff:7a:a1:39:c2:f6:29:13:03:93:11:
f5:80:75:a0:1d:5b:e5:86:74:9d:06:f6:fd:db:80:07:cd:2e:
b5:11:97:17:2c:8a:67:50:b4:c6:10:d3:1d:9c:ce:49:93:74:
02:bb:70:f4:13:fa:f5:1e:58:e7:40:45:64:cd:5a:b8:00:c3:
e7:57:40:7d:b0:a2:ed:18:19:36:1d:8a:73:2c:72:b8:9e:89:
ce:9d:22:d8:d0:d3:f7:c3:72:2d:fa:b0:f6:93:b5:2f:84:b1:
c3:10:23:f5:90:84:53:d8:bd:f6:b0:32:f0:b8:e1:bf:2a:72:
61:51:b9:73:7d:c5:85:2a:aa:66:a3:d9:3e:70:37:af:5e:06:
24:69:bb:60:f8:b0:e3:7d:c1:73:76:96:d0:88:77:a2:5c:11:
c1:26:e3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 10 04:15:28 2026 by rpki-client