Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 7Fp7uqgfcCs/r41br4xpmDXIBmLbmxrBkhgTHCOHnoM=
Subject key identifier: B9:0B:0E:F2:D9:25:96:56:E7:48:2B:A0:17:F1:3B:84:D3:7B:4E:74
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019EED7D36DDF055FE179AC296422C6E0F53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1976
Signing time: Mon 22 Jun 2026 04:01:06 +0000
Manifest this update: Mon 22 Jun 2026 04:01:06 +0000
Manifest next update: Tue 23 Jun 2026 04:01:06 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: O8lfYCd1lWakVt7xt+mleM5efvHLVKdOyzPeTozL0GU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ed:7d:36:dd:f0:55:fe:17:9a:c2:96:42:2c:6e:0f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 22 04:01:06 2026 GMT
Not After : Jun 23 04:01:06 2026 GMT
Subject: CN=b90b0ef2d9259656e7482ba017f13b84d37b4e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e5:35:64:e7:2e:4e:fa:c9:2d:23:c0:e9:31:
76:22:56:e9:f6:fc:4a:cc:38:45:80:50:42:32:a3:
ab:80:db:2d:99:26:5f:31:93:8f:8d:43:d3:60:17:
68:60:c4:d1:eb:3e:aa:d7:94:1c:9d:64:9f:f3:b1:
d6:35:cb:ef:b2:63:80:a4:24:30:0f:e6:24:83:94:
8d:c0:a4:0b:6f:2a:e3:ef:2c:1e:c0:87:6b:35:07:
66:88:03:ba:c7:77:27:57:7c:dc:6c:06:4b:c1:76:
46:7d:c9:ab:68:4a:7f:3a:5e:aa:17:a6:9d:dc:b0:
98:15:6d:08:3c:6f:e1:85:a4:87:dc:52:63:f7:96:
5c:45:47:5f:f9:79:b5:ec:5d:c3:48:35:91:df:ad:
39:61:7f:67:9d:4a:71:be:9e:09:8f:39:8d:ea:80:
22:54:23:58:14:72:b8:96:c6:86:e7:74:49:90:a4:
91:4d:4a:e9:d8:63:14:36:08:27:8b:f3:21:98:3e:
1c:82:8f:ca:7b:7d:06:5a:1b:30:34:5d:c0:ca:09:
12:89:57:04:cb:84:ae:d7:fb:c4:b0:0b:ec:4a:e2:
66:11:44:9d:20:3e:28:9c:35:f4:a7:f9:02:29:fd:
0a:42:1d:e2:38:46:2b:43:92:15:9a:56:ad:a9:ba:
14:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0B:0E:F2:D9:25:96:56:E7:48:2B:A0:17:F1:3B:84:D3:7B:4E:74
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:45:f6:39:9a:94:c4:ef:40:88:a7:44:56:de:d0:42:7e:3d:
1c:ea:fc:3f:7f:7f:ad:44:5c:ba:5a:65:fa:98:25:5d:36:c7:
7f:5f:52:4f:6d:61:67:1e:4b:f3:8d:01:a1:ff:c3:1c:bf:bb:
ba:89:3c:79:5f:b5:85:9b:b7:a1:a4:9c:f7:e8:66:52:26:39:
38:aa:16:ec:96:95:ff:87:18:b9:98:e8:3e:ca:06:66:11:23:
d3:fe:fa:39:b5:91:37:79:39:83:f5:8b:56:92:c1:b5:6a:79:
70:6b:ef:1f:e7:72:55:1f:82:ef:d5:46:b2:42:2f:b1:24:84:
3e:36:cc:20:39:9f:2c:62:73:da:ea:ea:b4:d2:09:33:d6:e5:
f5:98:fd:0c:ae:f3:51:04:5e:1d:5f:7d:0a:50:1b:ba:03:fd:
17:0a:15:54:3e:b3:d4:a8:e7:0f:2c:fe:1c:a7:b5:dd:10:5d:
30:5d:8d:77:a5:be:5d:2b:ba:e8:ec:4b:25:65:33:45:9f:f8:
ce:0d:27:7d:b1:97:b0:2b:67:00:45:80:8c:de:3a:09:a2:6e:
c4:11:44:b0:c2:9d:fb:2e:60:81:b7:0c:1e:df:74:f5:ff:af:
b2:9f:04:c4:57:55:0d:43:3b:84:b3:63:73:1e:19:b3:e4:34:
c0:6a:2e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 13:27:00 2026 by rpki-client