Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: jz/2HRiTFDIpz/dub7t+VNwC1NTIjmhL/uMO5peBDC8=
Subject key identifier: 21:D2:3E:2E:69:07:F9:26:CB:20:C8:60:C1:F0:9E:92:0C:82:B7:B2
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019D3AF7EE393D7ED6134C1483F52BEC8AB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1895
Signing time: Sun 29 Mar 2026 19:00:19 +0000
Manifest this update: Sun 29 Mar 2026 19:00:19 +0000
Manifest next update: Mon 30 Mar 2026 19:00:19 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: +i7E35rOZAP+hwrU/7G9cj8LR3PVz4p5gkzmt0kbmkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 19:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:f7:ee:39:3d:7e:d6:13:4c:14:83:f5:2b:ec:8a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 29 19:00:19 2026 GMT
Not After : Mar 30 19:00:19 2026 GMT
Subject: CN=21d23e2e6907f926cb20c860c1f09e920c82b7b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7e:03:29:9b:29:d7:03:d0:00:5a:4c:05:a1:
7d:aa:fc:b7:e9:75:b8:62:ea:ca:30:5c:92:53:ad:
0b:79:6b:96:af:0f:6a:09:d5:af:a1:c1:41:a2:25:
56:01:a5:46:f8:f2:c8:eb:c3:43:67:d8:69:d8:6a:
62:6a:39:65:cb:a6:67:4d:bc:39:29:d4:f9:72:55:
ee:1a:e7:ce:52:29:9e:b3:8f:02:1d:3a:e4:66:b0:
cb:6a:22:dc:f4:bd:29:65:5f:e6:a1:3d:94:6a:bd:
0d:1d:9b:7a:39:3d:33:98:2a:45:00:f8:13:59:ee:
3e:d5:af:18:bd:88:b3:c1:22:15:41:c5:45:6a:1f:
5f:74:b7:ab:c0:40:6c:dc:6e:ef:28:6e:d0:af:de:
8c:23:00:4e:ce:3d:4f:3d:4e:21:dd:1b:0c:2a:f2:
d4:c5:99:bc:5f:f2:8e:25:e6:06:06:ad:2d:14:30:
a4:ad:57:23:d4:5e:44:da:4b:83:59:94:68:37:7f:
9b:0e:8c:1d:8f:38:68:27:ae:93:0e:6e:92:58:4d:
b6:88:67:52:43:23:48:23:68:2e:d3:82:2b:0c:85:
c1:02:e2:dc:fb:dc:14:a3:d0:c0:1d:a3:0d:ce:e2:
26:47:22:00:07:e3:6a:cf:70:2b:49:5c:2e:44:16:
45:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D2:3E:2E:69:07:F9:26:CB:20:C8:60:C1:F0:9E:92:0C:82:B7:B2
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:66:b8:be:e1:e5:42:27:68:58:2d:4c:99:5a:62:19:82:ce:
84:bc:d9:7b:f6:20:e2:8a:41:33:59:80:89:4f:4f:99:6f:6e:
ad:f9:91:56:ce:a3:d8:fd:da:f4:fe:cf:6a:8d:25:54:3e:ea:
bc:32:c1:30:bf:2a:49:07:5d:d5:d5:fa:be:97:63:68:a8:fe:
6a:bd:e9:41:3d:c7:e0:97:d2:c9:29:9a:05:ab:33:bc:71:53:
46:53:75:17:c2:80:8e:cb:0d:c8:46:91:01:25:1b:26:97:df:
2b:a3:f5:28:db:69:1d:81:92:7f:cd:31:43:53:31:fd:fa:b1:
de:10:ff:dd:9d:9b:b6:a3:d5:57:63:d0:73:66:bf:23:ef:37:
67:f7:00:86:9e:6a:82:27:f8:51:0a:42:9c:16:c4:bf:f4:32:
91:8a:48:da:1c:e0:7d:1c:14:fb:4b:9d:d9:78:ee:5c:27:c3:
a0:b2:69:d0:17:73:4d:64:e9:63:cc:c6:9c:fb:ef:8e:4c:57:
31:58:9b:84:32:36:ec:24:c4:6e:fa:a5:9a:1c:96:80:47:7c:
33:0f:24:2d:75:c2:14:d0:61:c6:5b:ac:d2:5c:6e:0e:97:92:
67:af:5f:b1:14:d4:80:53:f9:47:06:70:14:af:e4:27:d4:f5:
46:d0:56:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 30 06:02:50 2026 by rpki-client