Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: OXg2znqvEouGU4rgsPAoC3E8TzAcL5MEF2kC77izVyY=
Subject key identifier: 98:5C:7B:17:23:19:DC:F0:3C:31:2F:A7:C7:10:17:25:17:91:5A:C8
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DD5775513067B3F46B642C13C70F95A0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18E5
Signing time: Tue 28 Apr 2026 19:01:00 +0000
Manifest this update: Tue 28 Apr 2026 19:01:00 +0000
Manifest next update: Wed 29 Apr 2026 19:01:00 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: F7Dv86Sy9gp2yPHwELA1lZPa1xHD8S3FntgmoZHTGCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d5:77:55:13:06:7b:3f:46:b6:42:c1:3c:70:f9:5a:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 28 19:01:00 2026 GMT
Not After : Apr 29 19:01:00 2026 GMT
Subject: CN=985c7b172319dcf03c312fa7c710172517915ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c6:f9:b2:8b:58:e8:7b:59:0f:8c:9a:d9:51:
14:ca:61:9b:f0:2e:b5:73:a9:b7:14:c7:00:33:0f:
0f:9d:ba:85:52:3a:18:dd:9f:38:01:5d:f1:90:d0:
54:44:c5:cd:e7:6a:34:10:7d:78:8b:64:cb:5c:38:
1a:51:1e:c6:f8:c4:2c:14:bb:0e:28:50:e0:c0:d1:
1a:ab:c1:7a:6e:a5:27:2a:b9:7e:ea:7d:fc:ce:12:
3d:21:85:bf:18:0a:2b:ab:07:87:12:32:e4:dd:4b:
bd:2b:25:03:c4:91:94:0c:14:80:d7:3c:5b:2c:38:
ba:72:7b:98:b9:88:69:6d:50:21:14:8a:7f:61:90:
e6:1e:4a:48:eb:7e:cd:62:ea:0b:83:af:27:ea:ba:
20:94:29:1b:94:df:9c:6f:24:14:3b:d7:1c:53:f1:
21:06:06:2c:16:60:f5:db:2d:a6:b2:e0:c5:a1:56:
e6:ca:4c:72:d9:d6:0d:df:19:c0:fb:07:19:1e:4f:
35:d2:84:12:e3:9b:22:01:2d:c0:19:ec:26:15:93:
4b:ca:51:f8:07:29:d1:ec:7b:8e:22:04:82:38:84:
64:d3:eb:77:2c:39:1e:ac:50:74:6d:5f:6d:8c:db:
d5:5a:bf:22:f5:42:e3:0f:5b:a8:25:fb:9c:ef:b1:
f9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5C:7B:17:23:19:DC:F0:3C:31:2F:A7:C7:10:17:25:17:91:5A:C8
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:c9:f3:c3:ca:61:73:f5:63:02:71:22:b9:82:41:6c:d5:4c:
91:b2:1a:7a:2f:e5:62:b2:05:2f:99:3a:91:11:8e:50:10:de:
f6:a3:06:2a:65:44:0f:3d:d9:4b:77:da:c9:fb:99:a7:98:af:
61:18:f4:b1:7d:42:c2:55:eb:17:c3:9f:a9:fa:69:21:c1:18:
23:d0:3d:20:89:4b:86:d7:ab:40:16:9d:11:82:87:63:e6:6a:
34:85:03:0d:8f:80:51:23:89:99:f3:8e:5d:67:43:1d:a3:03:
06:b7:5a:ee:c0:79:df:f6:24:48:41:06:df:27:f8:dd:18:07:
ec:42:df:75:17:04:2f:23:68:7c:ea:b2:47:e8:77:da:ab:65:
cc:58:66:d2:1f:d7:75:7b:45:49:f0:37:dc:15:43:b0:81:4e:
7e:03:b0:da:f4:da:bd:ca:8d:9a:0d:2f:d7:c6:9d:5c:9e:e7:
aa:74:f7:8b:57:4c:f5:d4:e4:f1:76:c5:b8:b4:21:64:4d:60:
08:e1:56:73:43:ad:3a:2c:c5:f4:6f:3b:bb:78:7e:06:64:73:
57:e5:fb:8f:ab:d3:c6:f4:35:02:33:f4:a6:d8:b2:50:5d:3f:
cb:e8:1b:f3:c1:f5:e3:32:8d:6b:9f:30:33:9a:74:62:94:1a:
b0:42:ba:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 29 03:09:21 2026 by rpki-client