Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: gXKK0zEKQb2dOKg7iVrO4HpyiiWJfQo4eyYcFP8c4Wc=
Subject key identifier: C6:EC:C9:5D:2D:7E:41:4E:83:00:50:EC:87:CC:72:95:7F:FF:FA:5A
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019E05BEFB7EC9429171B9D096D755B592AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18FE
Signing time: Fri 08 May 2026 04:01:02 +0000
Manifest this update: Fri 08 May 2026 04:01:02 +0000
Manifest next update: Sat 09 May 2026 04:01:02 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: ejBQr1ucqExhvg29qhq0jOVIuuVLwAP7cS2LMqZtM2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 May 2026 23:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:05:be:fb:7e:c9:42:91:71:b9:d0:96:d7:55:b5:92:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 8 04:01:02 2026 GMT
Not After : May 9 04:01:02 2026 GMT
Subject: CN=c6ecc95d2d7e414e830050ec87cc72957ffffa5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:18:c5:cf:12:e9:79:ed:ad:47:cb:ec:47:af:
6b:8a:e0:b5:50:ad:b7:1b:2b:51:71:f0:ec:3d:ba:
81:42:61:8c:42:9f:d2:26:28:e8:41:4c:ee:69:38:
a4:cf:30:3e:5b:84:50:9b:50:4a:b0:33:20:ce:8d:
c8:a9:76:c9:c0:69:76:d3:0c:3f:c3:19:9f:23:6b:
78:9b:92:02:4a:f0:4e:94:da:df:1e:60:77:ec:59:
63:d7:6b:37:78:12:5f:b0:d8:f1:04:a4:68:1d:cc:
73:01:2c:41:f2:60:9d:12:91:b7:dc:bf:27:cb:2e:
e7:ea:93:49:0b:23:89:1e:94:a7:c3:70:9f:3b:32:
51:69:66:f9:ca:a2:8d:0a:59:d9:25:46:26:fa:f5:
bc:b8:72:33:5e:bf:f6:ed:88:48:98:d8:56:af:b2:
7c:18:a8:b5:24:59:f5:7c:6d:e3:af:d3:1b:3a:4b:
02:ba:c8:86:f4:6f:10:52:fc:17:ea:a3:e5:f2:b2:
5a:4b:7e:76:14:9b:85:7b:91:75:06:ba:2b:aa:6a:
52:91:3b:59:49:55:ef:f9:fe:b1:26:07:40:29:b2:
85:a2:1b:66:37:11:74:a0:52:8b:6f:e1:92:21:80:
f1:c1:02:cc:44:26:a5:4b:60:ce:6a:1d:2c:7f:d4:
08:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EC:C9:5D:2D:7E:41:4E:83:00:50:EC:87:CC:72:95:7F:FF:FA:5A
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:3f:ba:7e:a7:56:fa:19:6e:d2:1d:05:fc:9e:86:e1:9c:22:
98:97:60:a6:58:46:8e:33:9c:12:88:ea:8b:24:e2:34:2e:c9:
12:78:e8:74:c3:92:8e:e2:d7:1b:86:48:06:70:2f:34:8d:da:
32:91:5b:06:4b:68:36:6d:1a:35:c0:82:90:c1:b4:19:7c:b0:
76:7b:53:75:2c:60:6b:29:3a:fd:4f:53:8d:56:b7:f2:fa:21:
fc:74:93:74:f3:f1:43:d3:6a:e7:cc:e6:fe:d9:06:be:eb:52:
46:34:20:74:14:80:c7:62:cf:75:0d:a2:06:94:63:8a:cc:5e:
39:43:96:d8:da:8d:2f:c5:82:ac:40:f8:60:ef:c0:00:77:f6:
8c:12:06:e4:79:88:d7:3a:bc:24:98:54:23:d7:5a:84:61:bb:
1c:36:2e:b1:ef:9f:6f:ab:1c:cd:03:9e:1c:18:0b:7b:b4:aa:
5c:3f:7a:a5:ed:b6:e4:2d:fe:18:65:bf:c6:dd:fb:14:6d:99:
31:f4:ef:48:84:aa:32:27:7b:45:e3:00:dc:8a:a7:42:e3:ac:
5f:e2:01:47:dd:4a:a0:5e:06:e9:1c:3b:d8:e9:8a:e5:73:a4:
ef:41:f0:83:e6:63:af:67:ec:1a:c0:6d:d0:2c:bd:51:ca:ed:
b2:5c:1d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 8 08:37:26 2026 by rpki-client