Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: sel8KcHiWd/GVX80CK1Pgkakpl/URsar/mHTqbpKT3g=
Subject key identifier: 61:89:F9:13:CD:1E:8C:98:73:2D:AC:56:2F:D6:BD:3F:B5:01:4C:F6
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DB87F1C9514495A3D4DF1F98F42F6B67C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18D6
Signing time: Thu 23 Apr 2026 04:00:31 +0000
Manifest this update: Thu 23 Apr 2026 04:00:31 +0000
Manifest next update: Fri 24 Apr 2026 04:00:31 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: z6Oo+KafnDkLcdhfMGypIo0FZQU7ZjJ0K7k0d1FA1Q4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Apr 2026 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b8:7f:1c:95:14:49:5a:3d:4d:f1:f9:8f:42:f6:b6:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 23 04:00:31 2026 GMT
Not After : Apr 24 04:00:31 2026 GMT
Subject: CN=6189f913cd1e8c98732dac562fd6bd3fb5014cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:aa:6e:22:51:ba:57:eb:01:86:89:ac:2a:16:
57:c5:ef:31:b0:b5:c6:56:96:a6:80:01:a9:30:cd:
fa:35:3c:6f:6c:bb:b2:18:ce:2e:4a:3a:67:65:ce:
11:3a:62:c1:71:49:8e:c8:3c:d8:9b:b2:cc:00:bb:
cb:f1:e2:ec:c0:06:8a:96:17:f8:c6:4e:8f:46:86:
af:0d:17:12:c4:d2:86:69:07:40:d9:c2:ce:7d:d1:
ad:dc:2a:d7:e1:7c:9f:22:86:c2:8e:a0:d7:35:87:
3e:34:cf:fe:aa:f3:fc:64:7e:c5:fb:d5:2c:9a:e6:
47:b7:89:14:65:4f:9d:7d:ec:30:06:56:4c:fe:b8:
7d:99:f2:6b:62:eb:4a:fb:13:25:ff:62:0e:90:65:
ab:5c:2f:89:38:c8:50:b3:11:1e:80:7b:ff:94:9c:
dc:4e:e7:57:06:7a:b8:3f:31:30:e8:c6:ad:11:f6:
8e:64:04:c3:35:56:0d:d7:0e:4a:be:0b:34:68:75:
4a:ca:c3:34:b6:83:ec:e4:53:53:90:94:bb:e3:d8:
1f:54:e2:c1:67:8d:79:56:df:73:68:8e:4f:5e:4e:
ac:53:69:3c:0e:0c:3c:77:bb:02:7b:a3:75:bb:8d:
3d:04:bc:52:36:b7:32:0f:e5:39:10:1c:3a:e6:de:
1d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:89:F9:13:CD:1E:8C:98:73:2D:AC:56:2F:D6:BD:3F:B5:01:4C:F6
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:d7:d5:01:ce:4b:c0:37:7e:39:6f:c2:ff:b9:2c:8f:7e:d4:
f5:ed:aa:0c:b9:71:1d:83:9b:22:d9:79:73:ae:dc:90:44:6e:
9f:df:08:75:69:5a:86:94:4e:75:88:86:af:08:fd:a4:53:16:
8e:27:1a:a3:6e:db:34:af:b5:55:c9:ef:fe:d0:d7:be:19:04:
40:d7:aa:f8:ef:f7:1f:22:25:a3:7d:18:47:24:53:c1:53:fd:
1f:cc:14:55:67:91:3e:20:db:b3:9d:a4:43:e0:76:55:07:46:
55:69:31:ba:58:c2:04:fc:e2:89:fd:8e:a5:8a:50:0a:ef:36:
3a:86:b7:35:d9:26:d6:c5:19:08:e1:e4:8d:08:f3:ae:e4:57:
1f:8e:cf:cf:fa:27:fc:5e:0c:35:0c:d4:20:e7:71:fc:c7:23:
29:41:0f:ba:d8:a8:ee:23:5d:14:d4:66:3b:e7:76:61:d1:4d:
25:ba:b0:8b:3d:0a:4d:b6:f1:14:8e:91:4a:b2:10:71:96:fd:
d6:5c:b9:76:3d:3e:60:5e:19:ed:2f:46:8d:26:13:14:db:66:
4f:d2:c6:54:44:a3:31:e7:b9:a9:67:20:5e:1c:d3:d7:70:c6:
ea:2e:36:06:fb:3a:af:bc:d3:93:27:5a:86:9c:d8:b7:9b:1f:
77:13:6d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 23 11:53:00 2026 by rpki-client