Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 1+wApi4raAUKiVD7+izpikV0vtCFqQqSBESM99NsQEg=
Subject key identifier: 0A:C4:26:90:B7:1A:EC:BD:1F:27:D0:1A:59:6E:AD:30:47:00:8C:E2
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019E438BC46E1A0514C1101582505623C2E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 191E
Signing time: Wed 20 May 2026 04:01:33 +0000
Manifest this update: Wed 20 May 2026 04:01:33 +0000
Manifest next update: Thu 21 May 2026 04:01:33 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: n/3DuI/+0XYKy/uLm6r71+LCpZgs8LIVvgWPGlXdcI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 May 2026 04:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:43:8b:c4:6e:1a:05:14:c1:10:15:82:50:56:23:c2:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 20 04:01:33 2026 GMT
Not After : May 21 04:01:33 2026 GMT
Subject: CN=0ac42690b71aecbd1f27d01a596ead3047008ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:48:3f:b7:a3:c1:74:79:8d:73:91:bf:79:27:
72:82:a0:1e:64:1f:66:2a:d1:f0:ca:69:6d:a4:3e:
95:83:75:8c:10:d7:73:70:bb:ea:22:ce:45:4d:c1:
7a:5f:57:f3:8a:74:54:36:c1:0b:fd:cc:79:4a:30:
37:41:d2:30:1b:c5:88:42:3d:24:5f:98:7f:75:0a:
fa:48:29:91:1e:a7:b7:3e:f7:98:4f:48:3c:d2:cd:
bf:6e:5e:20:49:54:86:e2:a6:6b:70:41:60:f1:cf:
e1:27:8b:11:c7:66:38:72:33:89:75:90:e8:7d:d7:
5b:b0:6d:6b:d7:71:ca:3f:18:02:bc:4d:8b:38:49:
34:1b:56:ba:02:14:d1:4e:57:c5:d4:e3:fb:7c:b1:
3a:89:95:ce:ca:97:40:2d:ed:73:37:27:71:8f:f6:
77:91:86:c4:57:f9:b3:bf:9f:7a:ae:24:85:ff:8b:
f2:76:ad:56:5f:3f:f2:09:3d:04:f1:a3:37:4d:fe:
4d:49:78:1d:bf:72:cf:6d:9b:f7:a4:27:ce:2b:09:
93:b3:0c:13:70:b1:19:df:c5:18:8e:fc:51:7c:13:
00:46:90:c5:b1:6b:ea:45:c0:3d:3a:e3:97:5a:19:
b9:10:03:45:e5:b2:cf:0b:a5:3b:df:ec:53:70:a2:
cc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C4:26:90:B7:1A:EC:BD:1F:27:D0:1A:59:6E:AD:30:47:00:8C:E2
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:a4:7a:46:28:00:46:30:63:a3:00:c1:2d:db:ab:80:56:ce:
23:99:1a:58:d0:62:df:69:c2:0e:83:67:9e:9a:55:86:91:3e:
c5:e6:90:ca:f8:b5:2a:42:80:45:07:b6:3b:5e:d9:6a:7d:59:
3b:f6:95:a1:72:e7:73:69:9d:e3:37:2b:1d:68:80:5a:d1:66:
16:c1:5c:16:50:85:0d:92:1d:9b:2d:6f:1f:a5:10:02:e9:de:
90:17:3c:2b:06:97:27:4e:f9:c1:ca:8b:72:ef:2f:e2:4c:ab:
d5:09:3c:da:2c:0b:c9:37:84:e6:58:64:25:7b:d7:98:95:1e:
1d:fe:0c:53:a7:e4:c3:0d:77:13:8d:d4:64:6f:2d:49:31:7e:
7f:f6:69:21:10:11:38:5f:bd:c2:4c:ba:64:1d:c4:b3:ca:3f:
7f:19:bb:3c:1f:02:15:15:43:c7:9c:ed:ce:f4:dc:8d:81:21:
42:fc:99:04:ee:28:c9:27:20:ae:10:65:7f:18:cc:b2:b8:f7:
b1:83:08:ec:d1:19:ec:c2:fa:01:c2:de:fb:ac:d6:75:ce:9f:
9e:67:8c:0e:53:ee:b8:0b:dc:dd:65:a4:d6:42:a6:ad:a8:f1:
74:d7:0b:0c:54:c9:3b:e8:ec:3c:d5:f3:03:1a:80:bf:54:5a:
43:50:3e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 20 11:54:18 2026 by rpki-client