Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 7fW4qo3QpKiZNbrUxbeRkb6xilhGBfw1FjEK2nuHjqY=
Subject key identifier: 17:0F:35:34:0C:56:81:50:58:2F:1A:55:A8:0A:56:85:FA:78:20:F6
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019EF348192830EE12F6E3A45A497F96D675
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1979
Signing time: Tue 23 Jun 2026 07:00:48 +0000
Manifest this update: Tue 23 Jun 2026 07:00:48 +0000
Manifest next update: Wed 24 Jun 2026 07:00:48 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: n9cSpntbC4Sg35ootvO7ld24iDCZ8hBQpEFxLdzXzWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Jun 2026 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f3:48:19:28:30:ee:12:f6:e3:a4:5a:49:7f:96:d6:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 23 07:00:48 2026 GMT
Not After : Jun 24 07:00:48 2026 GMT
Subject: CN=170f35340c568150582f1a55a80a5685fa7820f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:eb:54:5e:a6:dd:f2:d5:60:75:5b:4c:d9:00:
03:e9:eb:2a:7e:ec:51:c5:d3:b0:85:83:14:f5:11:
9b:c1:34:c2:ae:9b:fa:d9:fc:14:8a:64:7a:87:e9:
4d:43:db:fa:c2:a7:84:b3:9e:3a:ef:b1:02:f2:79:
15:f7:44:66:40:04:cc:5d:b6:07:42:31:ee:bd:3a:
56:d0:94:54:bf:7d:88:66:22:27:84:b5:5e:20:49:
47:ab:8f:19:1e:03:2f:cd:2a:95:1b:55:29:da:e2:
2a:ac:df:93:72:df:58:0d:8e:e5:01:e4:1c:32:1b:
cc:f1:3a:3f:ee:7c:db:ab:7f:f1:94:ab:6a:60:9e:
d2:3a:aa:1d:f3:ad:bb:e9:10:86:40:97:cb:07:fc:
f7:71:ce:31:b8:da:dd:6a:76:77:d6:1f:cd:98:45:
c1:26:3b:47:58:a8:61:80:65:8e:a5:23:75:61:bf:
81:08:0f:92:c9:a1:fa:b5:f8:c3:98:13:ee:7f:fa:
c7:3d:3e:b7:9a:2c:f4:ab:f0:57:e9:86:43:06:99:
2b:f7:86:f2:1d:89:99:5a:fd:24:0f:19:a1:3d:2b:
99:39:43:b1:c5:0d:50:1d:a7:3e:47:94:f9:31:71:
52:01:49:90:d4:1e:1d:d9:02:e4:79:e1:45:2c:fa:
b9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0F:35:34:0C:56:81:50:58:2F:1A:55:A8:0A:56:85:FA:78:20:F6
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c5:d8:d4:24:fe:11:7c:59:e6:c8:90:6b:dd:6a:6d:e4:3d:
59:5a:4e:e0:67:0a:9c:4e:40:46:09:94:7e:d8:fa:2b:45:64:
3f:73:a6:97:29:cb:c2:c6:4a:d9:3c:67:9f:1e:b9:b7:f9:21:
03:0e:be:a2:37:5c:e6:50:e9:31:37:2b:e1:a9:00:3d:3d:48:
e6:5c:78:5b:cf:7d:06:df:10:03:31:cf:0f:72:09:e9:cb:69:
3a:e8:2a:7f:9e:5f:6e:f1:7b:7a:70:db:b2:8a:38:90:06:e1:
17:ce:94:45:d6:89:11:bb:5f:01:bc:ea:b1:69:0b:c1:0f:2a:
6f:80:3a:78:e7:1d:07:53:f7:ed:fa:76:85:ca:de:5b:65:3a:
fd:69:6e:8e:a7:17:30:4d:ac:0d:e6:7b:52:0b:1f:9a:25:9b:
f9:43:57:6f:65:77:28:d9:e0:9a:e3:36:95:90:99:92:d9:38:
94:94:33:d8:77:51:b5:a8:1c:cd:43:55:ab:50:77:5c:45:01:
e2:fa:3d:01:2d:2a:28:8f:c8:15:d7:bb:e7:70:8f:65:f9:8a:
da:84:5b:ee:d1:ab:7c:63:9b:2a:4e:ea:99:ff:4b:cb:78:b4:
fb:2d:3a:3f:a4:0d:2e:a8:15:90:d9:24:85:73:e8:42:1b:dd:
40:4a:42:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 13:23:10 2026 by rpki-client