Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: ZE0ZIY19cLbsfLp0O7PGH6GAl/JGpqodn+nxJeuRWHM=
Subject key identifier: D8:F2:FA:77:7F:4F:D3:E1:FD:5E:9A:2B:01:C7:A2:BF:AC:E9:69:25
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019EE1E6E0D5075534BF81EBF95F5EF97959
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1970
Signing time: Fri 19 Jun 2026 22:01:04 +0000
Manifest this update: Fri 19 Jun 2026 22:01:04 +0000
Manifest next update: Sat 20 Jun 2026 22:01:04 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: c0nCq8HBAi4UAWAcpnsYe9hZQJjR5Sqd6s8hHosHVrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Jun 2026 22:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e1:e6:e0:d5:07:55:34:bf:81:eb:f9:5f:5e:f9:79:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 19 22:01:04 2026 GMT
Not After : Jun 20 22:01:04 2026 GMT
Subject: CN=d8f2fa777f4fd3e1fd5e9a2b01c7a2bface96925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:05:62:2d:e4:d2:70:b7:99:d4:c9:44:43:f4:
84:fa:bd:f9:74:5a:97:da:d2:de:fa:ef:4f:f1:0b:
bf:e3:59:33:ba:32:43:12:09:aa:75:15:85:54:ff:
93:48:38:73:5f:71:15:dc:cd:4a:01:08:c0:47:fa:
1e:6b:73:2d:0a:94:55:93:dd:ff:9e:03:36:b1:7b:
52:a9:90:39:09:d0:82:c9:be:3f:8c:74:de:9a:ec:
d4:61:18:3c:06:26:13:c3:44:c9:f9:de:2f:d5:70:
f0:83:49:bb:29:bd:62:19:20:d4:67:f4:6a:30:a6:
c1:b4:79:c2:c3:38:30:56:ff:be:eb:88:17:57:9c:
ac:2a:aa:05:b0:5d:fb:2f:39:6a:d3:88:9a:8a:25:
cc:8c:23:5a:9d:9d:2c:c4:39:65:7e:39:0f:28:fa:
05:05:1c:1f:17:c2:23:19:fd:f4:62:79:d8:9f:9a:
98:01:68:b3:67:1c:f6:4e:c1:28:47:e2:1c:84:ce:
17:44:b7:89:49:9b:e4:30:d2:7c:42:e5:3f:7a:8a:
4d:35:a8:35:0d:e9:dd:8a:f4:5c:90:0f:be:a1:6a:
50:ca:e7:1d:1a:fa:3d:0c:cf:47:6f:8c:89:98:7a:
71:7c:de:a0:16:74:0d:70:76:6b:94:dc:97:af:0f:
eb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F2:FA:77:7F:4F:D3:E1:FD:5E:9A:2B:01:C7:A2:BF:AC:E9:69:25
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:c8:67:af:df:a2:a5:d4:07:04:d3:5a:15:62:66:a9:e7:8a:
a8:60:3a:a4:ea:3d:9b:a0:06:db:3b:05:b5:97:6b:a9:4c:75:
74:2f:c9:9c:61:dd:fe:af:16:fa:ab:eb:a3:90:b4:ba:5e:51:
9b:0b:57:0e:fa:14:3d:5f:85:8c:db:6a:77:82:d5:7b:1e:8a:
9c:b1:e0:12:5a:a6:17:49:78:ed:c4:1d:70:f6:f4:0e:19:eb:
68:7a:a6:20:ca:e3:36:a8:d8:1f:04:66:27:10:0d:50:f6:d4:
b2:f7:2e:14:d0:19:be:47:8d:42:8b:1d:91:94:8b:a8:c7:64:
fa:93:d9:f3:56:87:df:5e:9d:69:2d:08:92:b4:2e:bd:5b:07:
1f:88:c7:b0:34:5f:4e:7b:8d:7c:82:60:55:13:7e:e9:aa:c5:
87:1e:db:9c:ca:c1:85:59:18:e7:1e:de:cd:08:d1:09:0a:8b:
75:c5:36:c5:1d:a5:c6:dc:3c:54:1c:c8:51:c9:9d:1d:10:c3:
54:94:db:f2:df:2e:0f:ca:d1:81:2e:cb:08:3c:ae:40:9c:e6:
3c:14:0d:ba:13:9e:a4:58:43:82:49:75:e1:7e:ad:03:cd:5f:
8b:b3:66:51:31:f9:d1:21:67:f7:0d:72:ff:bd:98:5d:c3:d4:
ea:45:83:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 08:05:48 2026 by rpki-client