
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: oehC4zAZl724papuDak0ljLXkvJ1SqK1ftWnAQi6WMQ=
Subject key identifier: C2:12:E8:77:4F:4E:CC:00:C9:F6:B3:FE:19:8B:01:D7:7A:6E:95:01
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019F42762E48C05FA175871B727EA8196DE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 19A2
Signing time: Wed 08 Jul 2026 16:01:09 +0000
Manifest this update: Wed 08 Jul 2026 16:01:09 +0000
Manifest next update: Thu 09 Jul 2026 16:01:09 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: R5kWbhH5TvWw827Aw7xLkAgUydaXePnErpWgqdTSqqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Jul 2026 16:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:42:76:2e:48:c0:5f:a1:75:87:1b:72:7e:a8:19:6d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jul 8 16:01:09 2026 GMT
Not After : Jul 9 16:01:09 2026 GMT
Subject: CN=c212e8774f4ecc00c9f6b3fe198b01d77a6e9501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5a:4a:c6:11:86:92:b1:c6:f7:fa:57:ab:fa:
e8:a3:6a:8d:3e:37:ed:be:3e:0b:e9:f9:9d:7c:8f:
16:b2:dd:ae:d9:a4:11:16:23:4c:28:57:99:6e:c8:
2f:0a:b1:46:57:93:f5:47:87:bb:71:1b:2b:49:bd:
97:31:44:d6:85:1f:e3:81:f1:84:a9:95:ee:5f:d8:
70:6a:35:7b:26:99:30:69:36:60:ad:49:d8:93:d3:
b4:4f:d7:95:4e:e9:07:bb:1a:1d:c3:ab:66:c8:84:
13:d7:28:08:f0:65:99:f1:c4:34:7a:20:fe:f6:75:
fd:25:a8:3e:8f:15:cb:eb:34:41:b9:e3:1f:41:71:
64:c8:3b:76:41:c0:6c:75:f0:65:41:06:4b:86:fd:
08:0b:24:96:fc:2e:9a:04:46:57:69:05:3a:35:c1:
bb:1c:15:a2:5f:c9:71:04:13:9a:8a:00:fc:3f:5e:
d7:15:e4:6b:00:fd:a1:ca:60:11:33:c9:44:70:18:
b2:06:57:b7:9b:cb:eb:fa:f7:18:08:4b:82:8b:1a:
01:72:36:28:d7:05:b3:65:16:da:d9:a7:3c:9f:22:
93:46:cc:cc:2b:be:eb:19:1f:c6:69:06:36:97:25:
e8:ca:a5:59:74:19:dd:01:14:e4:3d:8c:df:49:0a:
cb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:12:E8:77:4F:4E:CC:00:C9:F6:B3:FE:19:8B:01:D7:7A:6E:95:01
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:aa:8a:3e:3d:4a:fd:a9:a9:c9:94:30:60:57:5a:c4:ac:ce:
5d:3a:f1:42:bb:18:56:99:7f:68:c7:cd:da:b4:57:e1:44:35:
44:42:92:9c:90:ec:2d:96:6a:1a:f6:44:94:ce:6f:5e:b3:59:
1f:88:cf:08:e3:cf:48:d4:2d:34:81:8b:2e:a0:3f:e8:ef:06:
e7:e4:41:0e:a8:7e:97:41:f7:02:55:69:af:78:56:33:3d:c9:
51:cf:c1:38:7d:c6:5d:65:3a:a3:f0:31:fb:a5:2b:40:aa:76:
1e:af:e8:bc:4f:e8:fc:50:36:d3:aa:73:70:fb:41:fd:45:79:
b0:5d:fd:ea:26:98:d9:43:16:57:03:0a:52:d3:de:80:91:aa:
68:f4:b8:42:42:00:28:d6:99:bf:cc:50:70:2d:b9:54:2c:83:
35:66:01:ec:5d:6c:9d:02:73:d3:88:24:dc:61:01:8f:66:a7:
ca:13:63:42:87:4a:e8:f5:48:b8:91:fb:d8:81:54:e0:56:bd:
f0:27:ea:02:46:fb:dc:50:d8:de:e6:c4:e2:3b:92:d0:ff:4d:
95:0e:5a:da:e6:bb:0c:38:8a:b6:02:8b:71:12:b7:46:8c:2e:
3a:b9:21:77:2a:37:7b:3a:c9:f1:1f:63:5c:87:e6:a2:35:79:
01:04:29:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 00:02:51 2026 by rpki-client