Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: vSpxCyeDMsn5y285Yu0J54zO/XaE/oFPZ2q+PWcKmaA=
Subject key identifier: 43:A6:E3:84:8F:13:0A:D7:B2:80:22:0A:5F:E1:94:3C:3E:36:86:D5
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019EE9A07A7C99C89F204DAE84D12B527FFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1974
Signing time: Sun 21 Jun 2026 10:01:08 +0000
Manifest this update: Sun 21 Jun 2026 10:01:08 +0000
Manifest next update: Mon 22 Jun 2026 10:01:08 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: CjKc6AJGpt6vfzYXkcQeealR5Dkpsj5y7dOScTpApRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e9:a0:7a:7c:99:c8:9f:20:4d:ae:84:d1:2b:52:7f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 21 10:01:08 2026 GMT
Not After : Jun 22 10:01:08 2026 GMT
Subject: CN=43a6e3848f130ad7b280220a5fe1943c3e3686d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3e:d6:0a:26:02:5d:a6:e2:70:91:c7:c6:02:
ec:40:1a:0d:7e:b0:3f:db:26:b7:30:ad:61:e5:1a:
35:6d:7f:37:eb:ba:83:54:1b:a2:67:12:3e:b3:cd:
9c:8b:31:f8:3f:63:26:f3:d6:84:b3:91:9f:67:98:
98:65:46:eb:82:68:12:17:62:97:5a:47:cf:12:7a:
ad:23:6d:0e:40:ee:25:05:5b:82:53:5f:e3:c7:69:
12:41:00:c5:94:f2:58:5f:5f:15:dd:2b:66:e1:d2:
2e:7d:3e:01:f3:f5:4f:92:30:21:ee:ca:75:fe:ba:
8e:d5:26:4e:d4:d5:47:9e:40:0c:47:63:e1:08:92:
51:89:73:ee:7f:89:5e:3e:a9:24:a7:04:55:f5:36:
15:c7:83:1b:4b:a0:e5:28:b6:b6:03:35:41:bf:37:
4d:9d:96:26:8a:5d:b1:99:ae:ff:d4:23:54:0b:4c:
b0:1d:28:c3:f5:e2:ae:1a:0c:94:68:82:76:5f:e4:
a1:b5:b6:13:6f:4e:4c:b4:8f:1a:73:d6:c4:05:3a:
4e:19:ff:bc:77:9e:dc:f6:b4:55:aa:0b:f2:21:6c:
e3:51:70:aa:a2:14:23:d3:12:bf:01:51:62:00:ed:
85:7b:0c:e7:3c:fd:c3:ed:91:c5:be:e8:06:75:f6:
d9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A6:E3:84:8F:13:0A:D7:B2:80:22:0A:5F:E1:94:3C:3E:36:86:D5
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:0c:01:aa:4b:7e:32:0f:ee:3c:0a:d2:cf:ef:c4:fc:b8:ad:
4b:d8:ae:00:c2:47:91:ab:fd:1b:16:7c:2f:e2:e6:fb:0e:85:
ba:74:d7:e2:40:26:d0:76:1a:6b:cd:b2:30:e0:a6:18:9b:80:
43:54:48:90:fc:1a:59:a9:bc:78:05:d6:51:07:37:6b:aa:0c:
37:bf:93:3a:d7:af:b0:2c:a7:6d:6f:36:23:d6:9e:e8:b4:18:
56:86:58:ba:56:a8:ac:54:2a:6b:05:e3:9f:5a:5d:37:f3:0f:
09:34:6a:63:78:11:b8:05:0d:15:c0:bb:6a:ee:c2:04:ba:35:
ee:60:7e:04:d3:26:1f:16:c5:02:53:de:e4:d7:09:05:a8:f3:
cd:03:e0:c0:a4:87:64:e2:96:35:ee:c7:71:f1:57:b9:51:c6:
ee:28:3c:c3:60:49:bc:98:38:99:df:1c:1c:b2:71:dd:71:76:
b6:f1:00:8b:ec:90:27:03:83:b1:2d:4f:45:79:32:d2:09:74:
89:58:56:94:34:51:5b:df:eb:a8:5f:8b:79:3c:25:6d:9d:fd:
20:d2:19:c2:f4:e9:d9:1c:ff:9c:36:c1:b7:9f:7e:2e:95:15:
8d:be:96:62:d5:ab:20:1a:26:d2:d1:fa:ac:f1:2e:0c:a3:88:
0b:44:37:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7poHp8mcifIE2uhNErUn//MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwNjIxMTAwMTA4WhcNMjYwNjIyMTAwMTA4WjAzMTEwLwYDVQQD
Eyg0M2E2ZTM4NDhmMTMwYWQ3YjI4MDIyMGE1ZmUxOTQzYzNlMzY4NmQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhT7WCiYCXabicJHHxgLsQBoNfrA/
2ya3MK1h5Ro1bX8367qDVBuiZxI+s82cizH4P2Mm89aEs5GfZ5iYZUbrgmgSF2KX
WkfPEnqtI20OQO4lBVuCU1/jx2kSQQDFlPJYX18V3Stm4dIufT4B8/VPkjAh7sp1
/rqO1SZO1NVHnkAMR2PhCJJRiXPuf4lePqkkpwRV9TYVx4MbS6DlKLa2AzVBvzdN
nZYmil2xma7/1CNUC0ywHSjD9eKuGgyUaIJ2X+ShtbYTb05MtI8ac9bEBTpOGf+8
d57c9rRVqgvyIWzjUXCqohQj0xK/AVFiAO2FewznPP3D7ZHFvugGdfbZbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEOm44SPEwrXsoAiCl/hlDw+NobVMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAigwBqkt+
Mg/uPArSz+/E/LitS9iuAMJHkav9GxZ8L+Lm+w6FunTX4kAm0HYaa82yMOCmGJuA
Q1RIkPwaWam8eAXWUQc3a6oMN7+TOtevsCynbW82I9ae6LQYVoZYulaorFQqawXj
n1pdN/MPCTRqY3gRuAUNFcC7au7CBLo17mB+BNMmHxbFAlPe5NcJBajzzQPgwKSH
ZOKWNe7HcfFXuVHG7ig8w2BJvJg4md8cHLJx3XF2tvEAi+yQJwODsS1PRXky0gl0
iVhWlDRRW9/rqF+LeTwlbZ39INIZwvTp2Rz/nDbBt59+LpUVjb6WYtWrIBom0tH6
rPEuDKOIC0Q3fQ==
-----END CERTIFICATE-----
Generated at Sun Jun 21 12:48:44 2026 by rpki-client