Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: Uyf8dSX6ek0bP57yesd6f0dWRZ7vlGfoIeAnAPC6xUo=
Subject key identifier: C8:9C:58:92:1E:07:40:CF:E7:E8:C4:E9:DC:D3:C2:28:2E:5C:AF:3F
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DC4158418CABA6DFB8A1D4316FDE9FD65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18DC
Signing time: Sat 25 Apr 2026 10:00:37 +0000
Manifest this update: Sat 25 Apr 2026 10:00:37 +0000
Manifest next update: Sun 26 Apr 2026 10:00:37 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: oP/6wKImHaE66qhuW4QCTs0CDpLUN8QssbkyEmx9IXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Apr 2026 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c4:15:84:18:ca:ba:6d:fb:8a:1d:43:16:fd:e9:fd:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 25 10:00:37 2026 GMT
Not After : Apr 26 10:00:37 2026 GMT
Subject: CN=c89c58921e0740cfe7e8c4e9dcd3c2282e5caf3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:84:35:75:d8:b3:57:48:02:84:2c:56:86:1d:
ce:f0:04:ee:ff:67:f0:95:26:70:37:6a:2f:71:cf:
77:cc:f4:89:ab:42:a5:37:f8:23:35:1d:5a:63:3e:
04:c6:d3:b2:36:3c:b8:d7:f3:16:8d:6e:c7:b8:f2:
c4:07:5a:a8:e9:e5:ba:f3:23:33:75:8e:b5:26:8e:
72:e7:db:2e:09:08:b9:3e:32:53:cf:53:e8:82:60:
86:2e:71:25:da:45:6b:67:ac:49:3c:7c:a9:25:41:
8b:80:84:45:23:4d:fd:09:85:5d:7f:09:6e:98:b8:
8b:71:3f:2e:a8:52:e7:73:b8:a9:41:c3:56:fe:88:
4f:c0:2b:f3:9d:e3:1c:34:4c:ca:5b:67:78:7b:f0:
6d:9b:a1:35:de:28:ea:da:43:ca:27:9c:ca:46:d7:
73:9e:aa:b9:83:01:66:94:02:ea:a3:e8:be:24:02:
ed:49:e7:f2:f3:06:f0:c5:74:48:41:ec:c6:08:8a:
02:13:aa:c1:cb:6e:78:59:95:4d:c0:9e:9a:4c:5a:
d3:05:86:35:f6:43:c4:d1:9e:41:40:4e:96:59:94:
2b:45:0b:c5:08:f6:a1:ad:30:c3:c8:ac:44:64:39:
1f:35:14:3a:13:be:c6:49:93:44:fa:c8:60:a2:c2:
99:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9C:58:92:1E:07:40:CF:E7:E8:C4:E9:DC:D3:C2:28:2E:5C:AF:3F
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:fa:9d:05:c1:40:2f:7d:44:c9:f6:1b:07:25:25:06:c7:6f:
96:31:0e:c1:17:6b:90:72:95:15:e9:b2:c8:44:51:e9:b1:83:
3c:31:55:3c:05:fa:b3:06:18:94:91:a0:28:ec:5f:90:3a:08:
0f:2e:27:ea:1c:18:c9:aa:d5:2e:1a:40:56:5e:45:df:a5:d5:
55:e9:4a:98:e3:16:3c:27:18:36:96:0b:bf:22:71:61:90:d2:
d9:10:cc:51:f2:80:b7:c5:d1:c4:9e:c3:cc:5c:45:4b:64:8e:
83:b7:c9:cf:c4:86:34:e7:bf:bc:e4:4c:22:d1:d7:77:16:39:
ab:26:1d:df:25:15:e1:4a:f9:31:27:b2:ce:49:a4:d6:8b:6e:
b7:9c:e4:18:c8:48:ad:87:c9:3c:86:ef:47:af:4f:e8:6f:cc:
ca:a7:4c:62:8f:44:92:c1:3c:ec:f2:7b:10:65:cf:8f:26:46:
99:57:bf:e2:33:4f:df:1f:9e:6e:6c:2f:ea:59:2f:0e:3c:9e:
9e:3f:d9:a3:7c:eb:bd:aa:f5:a9:e1:cb:49:56:77:c8:2a:2e:
35:87:4a:67:09:02:5a:77:50:40:a7:82:96:17:05:d1:8c:a9:
b0:ac:ce:7d:f3:67:03:e6:22:3c:35:e1:0e:0f:20:9a:41:11:
39:ba:b6:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3EFYQYyrpt+4odQxb96f1lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwNDI1MTAwMDM3WhcNMjYwNDI2MTAwMDM3WjAzMTEwLwYDVQQD
EyhjODljNTg5MjFlMDc0MGNmZTdlOGM0ZTlkY2QzYzIyODJlNWNhZjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4oQ1ddizV0gChCxWhh3O8ATu/2fw
lSZwN2ovcc93zPSJq0KlN/gjNR1aYz4ExtOyNjy41/MWjW7HuPLEB1qo6eW68yMz
dY61Jo5y59suCQi5PjJTz1PogmCGLnEl2kVrZ6xJPHypJUGLgIRFI039CYVdfwlu
mLiLcT8uqFLnc7ipQcNW/ohPwCvzneMcNEzKW2d4e/Btm6E13ijq2kPKJ5zKRtdz
nqq5gwFmlALqo+i+JALtSefy8wbwxXRIQezGCIoCE6rBy254WZVNwJ6aTFrTBYY1
9kPE0Z5BQE6WWZQrRQvFCPahrTDDyKxEZDkfNRQ6E77GSZNE+shgosKZIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMicWJIeB0DP5+jE6dzTwiguXK8/MB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABPqdBcFA
L31EyfYbByUlBsdvljEOwRdrkHKVFemyyERR6bGDPDFVPAX6swYYlJGgKOxfkDoI
Dy4n6hwYyarVLhpAVl5F36XVVelKmOMWPCcYNpYLvyJxYZDS2RDMUfKAt8XRxJ7D
zFxFS2SOg7fJz8SGNOe/vORMItHXdxY5qyYd3yUV4Ur5MSeyzkmk1otut5zkGMhI
rYfJPIbvR69P6G/MyqdMYo9EksE87PJ7EGXPjyZGmVe/4jNP3x+ebmwv6lkvDjye
nj/Zo3zrvar1qeHLSVZ3yCouNYdKZwkCWndQQKeClhcF0YypsKzOffNnA+YiPDXh
Dg8gmkERObq23Q==
-----END CERTIFICATE-----
Generated at Sat Apr 25 15:11:29 2026 by rpki-client