Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: XSS+eC27Nk1ia7gl34I+sEjJCHKMz1K7flDkOaHT8n4=
Subject key identifier: 38:C4:A9:B9:09:35:C5:E7:BA:F9:A4:2F:19:FD:90:EA:30:51:8B:30
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019EC3006FE0AB59EAC1A4E4CA1FF6BDD6E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1960
Signing time: Sat 13 Jun 2026 22:00:46 +0000
Manifest this update: Sat 13 Jun 2026 22:00:46 +0000
Manifest next update: Sun 14 Jun 2026 22:00:46 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: jXphqP9AyoZLrsS3zXF9WVdzOUcHtbDoYarO85T0OSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:6f:e0:ab:59:ea:c1:a4:e4:ca:1f:f6:bd:d6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 13 22:00:46 2026 GMT
Not After : Jun 14 22:00:46 2026 GMT
Subject: CN=38c4a9b90935c5e7baf9a42f19fd90ea30518b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:88:22:db:ad:50:8c:d9:cc:48:77:5a:6d:1e:
71:4e:71:55:52:9e:8a:f1:b9:27:ef:0c:af:23:14:
e2:1b:a4:70:7e:4d:97:da:8b:33:dc:d0:7c:15:e2:
22:4e:f0:4a:31:5a:a3:74:c1:50:0f:2f:83:8a:08:
59:aa:ef:d0:ef:8e:c0:a0:73:81:0f:d4:00:1a:b6:
4f:7c:92:0e:1e:68:fc:94:c4:5d:70:4e:8d:da:92:
40:eb:1d:f1:9b:2d:69:de:eb:d6:59:7f:bd:73:bc:
4b:67:ae:fc:1d:ee:c4:2d:e9:57:8a:99:98:df:c0:
93:cf:f4:89:bc:87:4b:3e:f3:1f:28:b4:da:6b:3e:
63:28:75:b0:ed:f6:c9:bb:91:98:57:8e:ae:16:3d:
03:c4:60:47:38:89:f2:45:05:08:8c:15:7a:ce:d6:
60:6a:42:e0:ea:ea:67:29:85:31:ea:2b:b8:77:b6:
dd:1e:34:92:2b:aa:93:f1:35:b5:be:fe:64:dd:c3:
a7:17:16:e0:f9:f5:0e:49:7d:14:ae:e7:93:e9:69:
eb:07:77:99:58:23:50:f2:05:5f:d2:c8:85:03:13:
ce:7c:f9:63:35:10:b8:de:4a:27:71:44:b7:e4:b5:
0c:5f:7e:01:ae:04:e6:41:d8:d2:3a:86:a8:3f:1f:
cb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:C4:A9:B9:09:35:C5:E7:BA:F9:A4:2F:19:FD:90:EA:30:51:8B:30
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:16:46:a1:95:ac:59:f6:86:7b:9a:b5:d4:8d:36:88:c1:6a:
51:7a:02:b1:0f:e0:5b:d2:4e:d8:97:de:a9:c4:f6:43:b6:40:
74:b6:8a:78:ba:8e:5d:62:5c:ad:a3:69:b4:c6:88:a2:b9:94:
9b:44:b0:5e:6e:e7:b7:89:07:c3:55:50:7d:ff:5f:64:f9:d1:
78:47:15:41:30:2d:88:79:20:23:d8:3b:15:8e:b3:01:35:55:
52:33:1d:39:a3:8d:4b:ce:c0:08:5a:ae:ff:81:3c:04:3f:4c:
5c:d0:9d:0f:e1:d9:42:76:81:06:5a:9e:6e:09:2a:1b:58:a6:
a7:63:1c:c5:52:bd:28:70:0d:d2:5b:a7:cf:27:fb:44:b1:c3:
c6:c4:ce:e9:b9:84:78:f7:c7:25:a8:31:22:cb:99:d3:cf:66:
99:e0:40:20:74:d0:22:47:e1:ba:3d:e5:b1:1e:4d:ba:c1:0c:
bf:03:68:d9:b0:e3:69:ab:1f:81:02:fc:f7:6e:cc:9c:6d:51:
d6:9a:c1:18:cb:e4:b9:24:1f:e6:87:88:1d:bf:d9:b1:1b:6b:
46:cb:ed:10:c5:0e:cd:85:e4:16:8c:51:da:32:75:18:88:58:
cc:86:cf:ee:a1:22:4d:47:81:e2:4b:0f:4d:f7:80:81:92:cc:
5e:46:a1:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 03:30:38 2026 by rpki-client