Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: IzhyKwcvHg6KH/kbD6vAVxdkcsohwPyx84DGsiW5Mqo=
Subject key identifier: 95:D6:94:15:43:CF:7C:8A:92:27:2A:F9:F5:F8:4C:37:B7:1B:F2:F9
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019CAFECF9A2ECC2CCC85DA082A67D2E91DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 184D
Signing time: Mon 02 Mar 2026 19:01:09 +0000
Manifest this update: Mon 02 Mar 2026 19:01:09 +0000
Manifest next update: Tue 03 Mar 2026 19:01:09 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: t5tw9vG6O4nlZdTV5er3U6Q554tLadVKdhGr6tkRE7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:ec:f9:a2:ec:c2:cc:c8:5d:a0:82:a6:7d:2e:91:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 2 19:01:09 2026 GMT
Not After : Mar 3 19:01:09 2026 GMT
Subject: CN=95d6941543cf7c8a92272af9f5f84c37b71bf2f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fb:3a:c7:3f:59:31:2f:6c:1c:19:f2:50:af:
f7:41:da:69:81:aa:b9:01:ec:af:5c:cd:7c:61:0d:
bc:a6:a5:af:f0:5d:5d:6d:02:1a:0f:10:f0:76:e3:
81:83:42:21:d5:4c:70:b5:28:9f:07:d0:90:26:84:
f9:af:8e:5e:89:10:19:93:6d:6c:74:7c:45:a9:56:
3f:9c:eb:ba:43:d7:23:e3:f0:db:19:19:60:aa:24:
53:21:6f:62:65:18:a9:12:31:f1:2c:29:e5:a9:47:
d3:ea:a2:ac:26:f0:69:78:7b:65:6b:5d:3b:fe:ed:
c9:a0:8f:a6:9b:25:a3:27:43:e3:1a:1a:0f:c4:00:
eb:0f:79:f2:72:a6:ee:1f:4f:0c:db:68:89:7d:75:
09:88:4c:0c:8c:63:8d:1c:96:c0:a5:27:26:cb:be:
52:30:ca:da:02:ab:50:cd:65:41:d5:a9:3f:cd:c4:
11:01:6a:42:15:04:88:de:c2:a5:4b:a3:dd:05:9b:
8e:27:27:2d:82:39:a0:3c:1b:e7:5b:2a:3a:fb:86:
e4:d2:ba:d9:f9:2d:bb:fa:dc:80:4c:89:41:ef:f7:
ec:1c:95:61:46:8d:e1:ed:3b:76:34:24:c2:3c:f0:
37:72:9f:f4:14:69:e8:c9:00:7e:e5:57:c4:50:46:
5e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D6:94:15:43:CF:7C:8A:92:27:2A:F9:F5:F8:4C:37:B7:1B:F2:F9
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:5c:7b:f5:30:01:90:29:ff:81:6a:99:8d:e4:79:75:00:63:
2c:bc:ba:f4:dc:3c:46:01:06:e2:47:50:c9:76:11:35:a4:07:
11:56:2f:ab:83:6e:a5:b6:3a:ce:ef:a7:5c:67:9b:59:be:52:
9d:c7:67:dc:06:4d:bd:c9:bf:60:60:e3:0c:66:5e:8c:ba:2d:
ac:73:b4:9c:f9:c1:88:4b:14:80:7e:d6:9c:0d:78:8e:55:d3:
66:ff:c9:4d:11:f9:68:fd:59:4e:7c:03:9b:cb:92:c1:4d:cd:
40:96:c2:a0:89:62:e4:20:dd:83:b2:56:8b:78:b1:49:05:74:
0a:bb:3e:d4:fd:93:99:07:b9:22:74:c9:13:98:46:de:86:b5:
bc:dd:6e:99:c3:74:70:e6:c0:4c:28:fa:cf:74:cc:9e:31:2a:
97:0f:8b:7c:33:c7:df:d0:7e:a1:cf:3e:7c:e3:85:2a:9f:be:
12:c0:99:0a:fc:7f:47:88:be:bc:f6:42:19:0c:37:0a:af:2e:
53:9b:09:57:78:b1:6a:ae:97:a7:a2:ea:35:3f:07:5a:d2:10:
5a:ca:e6:cb:d3:d9:50:09:53:1e:35:fa:f5:88:6b:72:4a:92:
42:ea:98:ae:00:78:96:76:01:20:4f:22:ff:51:e0:10:5e:21:
34:d8:29:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyv7Pmi7MLMyF2ggqZ9LpHbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwMzAyMTkwMTA5WhcNMjYwMzAzMTkwMTA5WjAzMTEwLwYDVQQD
Eyg5NWQ2OTQxNTQzY2Y3YzhhOTIyNzJhZjlmNWY4NGMzN2I3MWJmMmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPs6xz9ZMS9sHBnyUK/3Qdppgaq5
AeyvXM18YQ28pqWv8F1dbQIaDxDwduOBg0Ih1UxwtSifB9CQJoT5r45eiRAZk21s
dHxFqVY/nOu6Q9cj4/DbGRlgqiRTIW9iZRipEjHxLCnlqUfT6qKsJvBpeHtla107
/u3JoI+mmyWjJ0PjGhoPxADrD3nycqbuH08M22iJfXUJiEwMjGONHJbApScmy75S
MMraAqtQzWVB1ak/zcQRAWpCFQSI3sKlS6PdBZuOJyctgjmgPBvnWyo6+4bk0rrZ
+S27+tyATIlB7/fsHJVhRo3h7Tt2NCTCPPA3cp/0FGnoyQB+5VfEUEZeEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJXWlBVDz3yKkicq+fX4TDe3G/L5MB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAilx79TAB
kCn/gWqZjeR5dQBjLLy69Nw8RgEG4kdQyXYRNaQHEVYvq4NupbY6zu+nXGebWb5S
ncdn3AZNvcm/YGDjDGZejLotrHO0nPnBiEsUgH7WnA14jlXTZv/JTRH5aP1ZTnwD
m8uSwU3NQJbCoIli5CDdg7JWi3ixSQV0Crs+1P2TmQe5InTJE5hG3oa1vN1umcN0
cObATCj6z3TMnjEqlw+LfDPH39B+oc8+fOOFKp++EsCZCvx/R4i+vPZCGQw3Cq8u
U5sJV3ixaq6Xp6LqNT8HWtIQWsrmy9PZUAlTHjX69YhrckqSQuqYrgB4lnYBIE8i
/1HgEF4hNNgpNQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 22:18:53 2026 by rpki-client