Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: lvmUlxLFIJZFEQvGEOTqxxgaEhxzTbe0f9QjPNorfdo=
Subject key identifier: F5:A2:32:74:DB:FC:87:09:EE:C8:70:0F:47:EC:03:B1:B8:C1:46:84
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019E6460280AB464BA7602B277E1F0BFB72C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 192F
Signing time: Tue 26 May 2026 13:01:23 +0000
Manifest this update: Tue 26 May 2026 13:01:23 +0000
Manifest next update: Wed 27 May 2026 13:01:23 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: uVhhDcEDvitR4y0GjzedeeIhPfwbjPyPVEY9M3sv4c4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 May 2026 13:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:64:60:28:0a:b4:64:ba:76:02:b2:77:e1:f0:bf:b7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 26 13:01:23 2026 GMT
Not After : May 27 13:01:23 2026 GMT
Subject: CN=f5a23274dbfc8709eec8700f47ec03b1b8c14684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4e:04:45:f0:79:a6:d3:d3:26:da:76:35:0a:
0e:98:c7:94:9b:02:d0:d8:40:2c:f4:47:4d:9b:9a:
91:80:b2:95:36:41:bd:10:51:2d:c2:61:20:fd:f2:
ea:8e:fa:eb:6f:84:ae:aa:84:38:17:d9:c0:53:85:
87:b0:e5:5a:a3:b9:71:8b:50:da:6a:c0:24:34:2a:
67:7f:dd:59:4a:72:e1:e2:55:58:a8:60:22:b0:94:
d4:83:81:11:fb:05:bc:7d:4d:df:a5:ec:e6:fe:e5:
5d:09:9e:bc:a1:85:d5:62:d3:a8:d0:da:b4:e0:7f:
05:90:dd:88:47:3b:0c:1e:b4:2a:3b:67:d1:fd:21:
65:ff:05:98:9a:e4:54:fd:e8:2f:d4:e5:3f:76:4f:
1b:63:52:e6:03:44:32:ff:45:ff:09:94:8d:4c:cb:
52:6c:74:8f:5d:23:4d:cf:76:c0:51:ec:22:d8:90:
43:85:11:3c:22:1a:ab:db:4c:41:00:ca:ee:71:ba:
a9:ee:e1:23:47:11:dd:bf:86:13:6b:49:2a:71:01:
de:fe:b5:ac:89:da:12:6d:bd:28:c3:2b:a1:9d:cf:
0f:bd:c5:04:f8:d1:66:32:61:13:07:9b:77:30:ee:
b1:42:82:24:de:91:53:a0:4f:8e:fa:f0:73:7a:da:
6f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A2:32:74:DB:FC:87:09:EE:C8:70:0F:47:EC:03:B1:B8:C1:46:84
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:db:1f:1a:bf:9b:00:f6:d8:60:cb:94:5c:d3:a6:75:bd:24:
c2:6c:70:fa:eb:01:a5:fb:6b:ce:e2:4a:63:ad:bb:89:52:20:
a2:24:d8:20:84:d2:1e:2e:f6:e7:2e:92:3c:b9:85:57:ff:a3:
67:d2:1e:9e:30:7c:eb:cd:a6:45:d4:a3:74:27:2c:12:9d:b3:
f9:f2:1f:27:3b:14:4f:ef:a4:5c:ba:1b:f2:37:99:f8:9f:04:
bd:7d:cb:1d:fe:30:c9:94:81:8e:b5:4a:a8:26:5c:01:6e:c8:
a5:8c:10:0a:86:d4:90:42:a0:e0:96:19:a6:32:42:b3:ca:28:
cf:a8:35:e3:21:f8:bf:1f:a2:b8:98:39:a4:01:62:24:f8:7d:
5f:53:02:eb:fa:94:37:23:c8:d7:61:40:b7:30:75:fc:14:b0:
df:a9:a4:13:a1:ed:a3:59:73:d0:23:cd:62:7c:94:23:f5:e3:
d2:9f:91:fa:1e:1d:76:02:00:47:97:e2:52:18:f9:c3:d7:b9:
b2:b0:2d:eb:0b:f4:5c:a9:15:10:46:34:66:12:f0:a8:91:69:
62:37:f0:34:05:a4:48:8d:b5:e4:a7:80:75:a8:cb:a2:d7:0f:
de:38:6b:86:43:5e:ea:10:23:99:26:ac:0a:79:5c:f8:a6:48:
5d:af:70:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 26 15:37:37 2026 by rpki-client