
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: v6D6QFQ7o6xI8iCCuQweTIW2XgDBYSm6W6clMnO6gsM=
Subject key identifier: 67:42:21:C3:BB:F1:B6:A5:F5:1A:C1:92:46:60:B0:9C:CD:F3:92:95
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019F1DC4F601CE24730634FD0B7D8B3D20D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 198F
Signing time: Wed 01 Jul 2026 13:01:14 +0000
Manifest this update: Wed 01 Jul 2026 13:01:14 +0000
Manifest next update: Thu 02 Jul 2026 13:01:14 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: DmVx2Bl7a7YadJ7GxTpwGWLUYvBWS2lMLXnDsJLDgo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 Jul 2026 13:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1d:c4:f6:01:ce:24:73:06:34:fd:0b:7d:8b:3d:20:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jul 1 13:01:14 2026 GMT
Not After : Jul 2 13:01:14 2026 GMT
Subject: CN=674221c3bbf1b6a5f51ac1924660b09ccdf39295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:36:1b:71:57:9b:b3:47:c1:e4:c9:95:cd:5e:
fa:13:89:22:a7:c0:0e:e8:44:61:6d:e9:fd:a0:25:
f0:77:01:b7:f9:d1:03:c0:78:d5:a4:1d:78:88:21:
3d:aa:08:51:c6:88:32:a6:9a:10:ff:bf:90:48:ad:
9c:24:56:69:41:83:b6:a0:20:57:ca:24:09:26:a6:
fa:c2:82:b6:c8:24:e3:be:ef:b6:1d:01:b3:61:c0:
83:61:7b:ae:41:35:ac:3b:87:d6:c9:87:ab:f4:ae:
9e:62:00:0f:91:5c:f8:a2:7d:df:ed:a5:23:22:71:
52:fd:25:d7:55:00:e0:bf:37:ad:56:90:5b:08:22:
58:80:20:b7:90:d2:52:dc:7f:ab:1a:31:62:00:a6:
2e:da:02:bf:3c:a2:54:be:1d:86:d0:80:c5:f3:b6:
f5:4a:0d:3f:2b:2d:14:d3:f9:ec:67:b5:cf:d8:f3:
73:95:9a:32:bf:e0:75:4e:85:ad:f4:25:98:36:f0:
5b:f5:8e:9e:32:7f:1f:4c:ea:43:6d:93:33:69:70:
48:2e:b1:9f:37:7c:d8:46:11:56:70:0e:fa:2e:9c:
0a:79:28:36:6d:76:8b:e2:9f:0e:61:2c:17:ee:01:
94:79:e2:e9:79:31:85:78:d6:6b:9b:18:72:05:15:
20:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:42:21:C3:BB:F1:B6:A5:F5:1A:C1:92:46:60:B0:9C:CD:F3:92:95
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:a9:06:61:73:f6:43:7f:07:4e:6e:59:cf:75:75:e4:8d:d1:
d5:b7:7d:1c:5d:e9:58:7c:9d:bd:9c:e4:23:19:ae:57:6d:c6:
62:09:e8:10:19:f0:24:0c:fc:f5:eb:42:0e:7b:f8:36:0a:29:
4b:6e:21:0d:1d:8a:0e:41:78:6f:fb:7b:a6:66:0e:29:64:ce:
5a:4a:2b:c4:c6:31:80:69:40:1c:3c:b7:70:97:fd:8d:14:3f:
dc:9e:dd:f6:78:62:eb:03:eb:81:8c:e1:d3:8b:03:fd:2c:7c:
7e:f1:01:60:c9:f1:c5:81:67:c4:fa:03:bd:14:17:dd:73:5e:
e3:d4:a3:10:6f:04:03:be:19:65:33:a4:ca:2a:0f:d3:b9:71:
91:ce:28:8d:19:e2:b4:9b:67:ae:ab:13:bc:d3:4d:d8:d0:79:
fa:ae:a4:40:7c:73:33:72:66:45:9e:6b:10:a0:16:76:ff:1b:
44:5b:93:19:cb:f3:29:2a:6c:21:ad:c4:35:cc:e1:a0:b3:41:
bb:fc:c6:c0:5e:ce:21:2e:e0:1a:07:4a:28:10:6c:9f:dd:91:
c6:49:61:a5:16:0e:f9:64:b1:8e:03:9a:4c:df:ab:06:30:32:
d5:f5:54:4d:f7:ff:0a:2d:1d:01:be:8c:8e:e1:85:b5:ed:af:
b8:0a:e9:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 21:07:00 2026 by rpki-client