Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: /+mQleKmPyK1ZjVXDKaYN9lRQTXX7VqbT2e/DpIfw98=
Subject key identifier: FE:6F:11:11:35:8D:18:FC:61:81:73:5E:F6:03:6D:C8:BE:6B:5A:72
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019D1647654B02F1EAEA9C03139BEF9A8291
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1882
Signing time: Sun 22 Mar 2026 16:01:10 +0000
Manifest this update: Sun 22 Mar 2026 16:01:10 +0000
Manifest next update: Mon 23 Mar 2026 16:01:10 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: YN6rSXMcbMmOQNBMhyVxJeLH1WzXaDfF6Q715IIU3j4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Mar 2026 09:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:16:47:65:4b:02:f1:ea:ea:9c:03:13:9b:ef:9a:82:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 22 16:01:10 2026 GMT
Not After : Mar 23 16:01:10 2026 GMT
Subject: CN=fe6f1111358d18fc6181735ef6036dc8be6b5a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:58:7b:4d:59:83:d2:eb:9b:f2:63:c1:76:9e:
ce:b4:3b:bd:7a:c8:8b:93:7e:15:b1:75:0b:5d:ea:
ef:06:bb:72:f9:57:69:ae:c8:e3:e2:e1:a6:c9:d8:
4f:7a:9e:f7:4d:f5:5a:8b:9b:be:05:48:14:75:d8:
7a:4b:01:be:bc:b7:e0:19:35:3f:e5:4f:6c:cb:fd:
d9:b1:dd:1c:06:e1:64:29:86:f0:02:f0:73:25:42:
be:35:78:3a:23:07:5c:7f:da:00:43:7c:53:29:8f:
a1:7b:88:f2:67:f6:16:ac:e9:e2:d1:6d:03:d9:3e:
59:27:18:b0:78:31:27:a1:29:45:ed:4a:bc:d9:2e:
73:31:46:4b:12:1d:98:b0:7f:a9:9d:23:67:a1:08:
57:fb:59:98:0a:99:4d:b7:3e:e3:3d:f4:2c:d1:46:
86:92:00:3e:7f:75:78:d4:3f:27:af:87:2c:74:93:
59:c9:2c:05:8a:3e:1c:f6:da:35:7a:55:90:70:de:
89:6c:f0:70:a8:54:a5:41:46:e3:75:c7:26:fc:1f:
46:73:ff:87:7f:0f:b2:9c:6d:a8:21:9a:17:b2:0b:
e9:08:18:11:62:60:ef:e1:83:a7:40:c0:24:50:d7:
7d:4b:28:8a:0e:7b:b3:65:61:a8:7c:58:00:00:64:
d8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6F:11:11:35:8D:18:FC:61:81:73:5E:F6:03:6D:C8:BE:6B:5A:72
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:c2:aa:f4:13:4d:0a:04:cb:b6:23:a8:ba:af:bc:81:48:b1:
ad:2f:c8:e2:84:1d:8d:7b:02:f7:5b:48:90:8d:ea:a2:c5:60:
6a:92:aa:78:fd:30:d9:6a:26:f9:dd:42:01:96:a3:31:f1:5f:
d6:15:d5:81:96:48:29:17:08:91:44:a2:df:b8:42:c5:82:e1:
c1:f7:21:26:3c:a9:21:92:bb:f1:1a:04:9d:b1:15:cd:48:5f:
2c:75:89:45:1b:63:4d:9c:7e:13:fd:19:a4:cf:d4:8b:04:bf:
26:36:d5:17:6c:1a:b1:0e:f9:4b:3d:96:22:40:33:91:ae:56:
91:a1:08:83:18:b9:63:b9:7c:30:11:c9:c7:5a:23:f2:5c:4a:
4a:39:4e:06:da:27:92:26:2a:b4:ab:8a:ee:8e:0d:41:b0:60:
b0:66:9e:2f:17:73:f5:36:fd:d0:42:72:99:4d:25:70:b6:3e:
bf:65:be:47:a4:bb:e1:05:86:7e:58:a9:30:04:ae:70:51:97:
c6:21:d3:64:0d:f5:1a:27:48:1b:1b:81:cb:af:76:0d:1a:0b:
4d:56:92:46:4e:39:35:fd:75:36:ed:2c:bd:97:3a:5c:bd:21:
7e:66:af:cd:65:08:49:98:68:ee:f6:21:72:37:74:7f:d8:c7:
ea:41:bb:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 22 19:52:33 2026 by rpki-client