Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: rkvMG0jnf4vOKvfeQitzDTw75VnfMBOr/mtmGMokv50=
Subject key identifier: 04:4C:A7:BA:53:0C:A2:78:4B:D6:A2:AB:AA:99:63:AB:F4:00:D9:B6
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019E099BAAEDEABFD86BE9FC9228E46A53BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1900
Signing time: Fri 08 May 2026 22:00:57 +0000
Manifest this update: Fri 08 May 2026 22:00:57 +0000
Manifest next update: Sat 09 May 2026 22:00:57 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: BIvPFDIkkLviXxWmgzdfBHMIIveJmFPnPpubZtRL3LA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 May 2026 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:09:9b:aa:ed:ea:bf:d8:6b:e9:fc:92:28:e4:6a:53:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 8 22:00:57 2026 GMT
Not After : May 9 22:00:57 2026 GMT
Subject: CN=044ca7ba530ca2784bd6a2abaa9963abf400d9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:1b:6c:54:ae:1d:a2:38:61:28:aa:7f:e3:
6d:7e:03:0c:7b:e5:62:f4:3c:a3:f8:f4:42:73:9d:
83:21:01:f4:79:53:f6:22:3e:54:2d:a3:ac:26:4c:
d3:98:ef:ba:ce:ab:c0:42:f6:fd:aa:5b:16:b8:8c:
ac:78:b9:c3:4d:9e:97:ed:4d:6e:41:e5:23:18:e8:
fe:33:12:09:87:ae:83:18:3a:55:b9:16:2a:2f:8c:
31:16:db:03:24:ef:2f:c9:af:69:5c:e4:fa:dc:7a:
bb:df:d2:86:c1:4b:a3:b9:c0:f2:19:e2:98:6d:0c:
2f:87:6e:57:43:9c:1f:80:62:2a:ab:05:01:4c:45:
e0:b2:8a:57:48:01:30:a1:64:92:cd:a5:ba:84:ad:
eb:4a:b8:19:ea:5e:d3:d8:bb:93:b8:09:52:ef:fc:
a1:86:32:e5:f6:76:e7:5d:c1:2e:db:81:5a:2e:72:
23:96:84:e9:12:43:ef:67:c8:f3:9a:68:d7:e7:78:
48:1d:84:22:c1:11:26:fd:39:d8:41:72:50:a4:55:
9e:69:7c:7c:87:fd:05:93:9e:90:b7:89:25:ec:fc:
a4:a7:1f:08:99:af:53:3c:08:32:8f:49:db:b4:e1:
ed:af:c1:18:42:80:70:19:53:dc:57:b7:73:f6:6b:
1c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:4C:A7:BA:53:0C:A2:78:4B:D6:A2:AB:AA:99:63:AB:F4:00:D9:B6
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:6f:7a:ff:70:3f:8b:7c:47:30:8d:56:a0:bc:20:e9:3a:f7:
69:78:25:6e:34:33:18:d9:34:d8:00:82:29:bd:04:b3:a5:ea:
04:78:4e:f0:c5:fd:bc:6c:0f:85:1f:cb:a9:6a:2b:42:6f:d3:
fb:9e:e7:2c:6a:f2:b2:b3:3c:d3:ca:b2:88:93:21:50:28:7b:
de:c1:79:0c:c6:08:99:88:3d:70:73:b8:56:d9:fe:3f:5b:ba:
ce:5b:71:6a:8f:12:95:e3:a1:2c:12:66:9a:b7:2b:a3:f0:76:
4b:05:9a:de:3c:74:24:5b:5b:39:29:39:5c:1e:2d:08:cb:85:
cb:d0:b8:21:be:1c:a9:90:00:56:f9:5b:14:16:85:68:7d:30:
89:49:11:29:33:4e:f5:65:69:1c:62:61:79:7c:00:44:19:2f:
aa:64:54:75:31:e5:59:eb:1d:07:59:e8:db:b9:10:47:5d:3b:
ed:80:c7:60:54:d6:68:db:b0:f8:1d:cf:a8:80:fc:94:ea:15:
ab:3e:5c:c7:63:cc:b3:7f:d3:ba:77:ac:69:ee:dc:fa:ed:7c:
6b:bd:21:bd:d8:ff:62:e9:1a:22:4c:41:74:83:3d:76:1f:af:
c6:e8:df:24:43:b1:77:89:b0:8c:d6:c1:f5:76:22:19:7c:75:
6d:4e:9b:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 08:54:51 2026 by rpki-client