Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 0c7t3+mZE+TcIBjPivDxtkWAG2q+b1vvYklZm51c5rk=
Subject key identifier: 91:21:CF:C1:9E:E3:21:7A:F2:B4:57:A6:5E:CC:3F:74:41:08:05:AA
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019CE411028EE30557E5BAA1669F8012D144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1868
Signing time: Thu 12 Mar 2026 22:00:45 +0000
Manifest this update: Thu 12 Mar 2026 22:00:45 +0000
Manifest next update: Fri 13 Mar 2026 22:00:45 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 0h4xT2jc9Cd6N/4IgXnNaybkxBrHVahsnK9wRKzxpMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:11:02:8e:e3:05:57:e5:ba:a1:66:9f:80:12:d1:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 12 22:00:45 2026 GMT
Not After : Mar 13 22:00:45 2026 GMT
Subject: CN=9121cfc19ee3217af2b457a65ecc3f74410805aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3e:d4:58:d8:fd:73:11:f5:c5:f6:76:a2:9e:
ba:7f:79:4b:4c:5e:a9:c3:fe:66:a1:d1:91:ce:e3:
9c:25:64:ae:57:03:94:2f:10:da:8e:b1:4b:45:db:
88:12:0f:86:38:15:d6:ff:4d:a0:f4:31:04:a3:8a:
c1:ee:e8:11:98:aa:6a:ab:82:8f:66:7e:eb:c4:89:
e7:79:5b:83:25:f6:4f:e1:22:b1:48:f0:92:94:96:
29:fa:07:68:01:7b:aa:a8:bf:59:7d:d1:1f:37:25:
cf:a6:df:23:01:c2:91:03:fd:b3:3e:d5:d7:58:c5:
c0:cc:5f:63:c2:4d:39:d2:4a:84:35:f3:26:c8:6a:
2d:98:34:e1:2d:c2:e7:b5:a1:df:c4:36:bf:4f:75:
69:6d:1c:f8:78:8b:e3:16:55:4e:e7:a5:0a:28:d6:
6b:3b:58:81:c5:cc:08:a8:a8:b3:f5:f0:62:ef:02:
89:ab:1b:55:62:49:c3:14:7b:ad:bd:7a:64:5e:bf:
53:6c:74:33:8d:6e:39:38:c4:bc:e9:55:d9:0d:9d:
18:65:c6:cf:56:77:99:ef:69:a9:fa:4a:d7:e3:5e:
ff:5a:51:dd:92:44:a3:13:47:22:51:a7:ed:ce:e2:
a0:49:ea:5c:25:58:1b:31:ce:dc:7a:71:5a:ea:da:
d7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:21:CF:C1:9E:E3:21:7A:F2:B4:57:A6:5E:CC:3F:74:41:08:05:AA
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:de:c7:ba:73:60:8a:a3:7e:b7:52:f9:80:6f:05:25:08:19:
65:ec:21:02:d8:dd:e3:e6:5b:a1:a7:90:80:cf:fd:22:3d:44:
43:f6:16:c0:ca:b8:86:4d:47:0b:2d:aa:a8:33:42:9f:28:e7:
96:fc:00:c6:51:f4:8c:f9:d5:6c:bd:73:81:1d:4e:4a:3a:94:
cf:75:97:d5:ca:f9:1e:1d:72:5e:f1:7d:c4:90:aa:34:2d:d0:
59:74:d1:91:cc:c7:f6:60:cf:9d:c4:e3:7e:f1:45:c4:4f:0e:
a1:54:4e:47:b2:65:85:93:59:0d:0a:49:97:26:a5:7f:a6:e2:
84:d3:54:32:4a:61:9f:c6:de:aa:47:66:cb:a9:ed:ca:02:0b:
12:0d:7b:25:86:72:bc:e4:12:1e:e1:91:a6:28:10:df:91:00:
0e:0e:fb:ad:15:93:00:45:99:0f:89:57:3b:20:5a:69:4c:d9:
07:7c:a7:c2:e1:63:9c:db:46:ad:80:b9:d7:90:00:92:b2:07:
10:4b:b2:9e:bb:77:56:1c:50:d5:38:27:c8:87:3e:4a:ab:c0:
6b:61:1e:d8:99:ef:4a:1e:74:d7:4a:d1:47:64:ec:69:a8:ef:
0c:55:a5:48:9d:09:61:0c:b6:a2:21:cd:86:f2:00:bf:82:d2:
81:02:41:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 04:54:57 2026 by rpki-client