Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: ytoJxdCFwIWfcw0yys1l4aeMvONWldMwlOnrDIvbuGA=
Subject key identifier: 5E:BD:09:22:BF:AD:80:42:4C:A8:78:B0:8C:EE:97:CB:9B:D7:AA:D0
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019E683C4D14E16E571CB3C875A56D1CA6D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1931
Signing time: Wed 27 May 2026 07:00:42 +0000
Manifest this update: Wed 27 May 2026 07:00:42 +0000
Manifest next update: Thu 28 May 2026 07:00:42 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: wVknChu6lvv4DI+o5UGwZSoTXsgk2YSDuPgnLnjyEpk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 May 2026 07:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:68:3c:4d:14:e1:6e:57:1c:b3:c8:75:a5:6d:1c:a6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 27 07:00:42 2026 GMT
Not After : May 28 07:00:42 2026 GMT
Subject: CN=5ebd0922bfad80424ca878b08cee97cb9bd7aad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:73:1d:65:4c:58:2c:59:3e:9c:49:81:6c:08:
80:0a:d4:ee:3c:80:e6:09:5e:54:8b:80:b5:e5:f4:
6a:d8:b2:34:e3:d0:1e:a2:f7:92:bf:f0:33:7b:df:
cc:8c:a0:88:14:38:22:c9:27:26:bc:67:b2:47:cf:
9b:7c:c8:07:e9:76:29:22:c0:f5:90:54:f1:32:be:
bd:78:44:56:7e:54:18:12:da:68:da:7e:40:4e:5c:
18:07:db:5c:cc:f9:4b:91:46:19:d7:2a:cd:80:72:
83:69:1a:4d:22:6f:db:c4:8f:ca:97:6f:61:00:ea:
88:9a:87:bf:62:45:8d:03:0b:95:2f:cb:f8:af:1c:
86:3f:53:20:cf:6a:e1:1d:30:e2:b0:e2:f2:b2:b9:
fa:d8:7f:5d:73:79:a7:89:d8:e9:22:08:81:59:56:
c0:7b:1a:23:1c:cd:05:dc:2b:77:cb:d5:1d:e1:53:
e7:c4:2f:16:63:33:26:d6:2b:89:ee:c2:a2:12:26:
b7:f7:a5:f5:9e:d1:c7:ab:b6:63:47:f2:0b:ea:55:
83:cc:b3:e9:33:d2:0d:7a:8c:3a:0a:3b:d1:59:dd:
0c:d1:59:a3:a1:c6:41:84:0a:0a:92:59:55:fb:00:
ea:67:e4:62:28:e3:d6:ce:35:1e:0e:e1:f3:99:21:
af:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:BD:09:22:BF:AD:80:42:4C:A8:78:B0:8C:EE:97:CB:9B:D7:AA:D0
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:8f:c3:75:8f:f0:ce:c9:a8:f2:f3:3c:61:4c:3f:72:d9:ee:
87:01:e2:3b:e1:8b:97:fc:be:cd:00:02:db:f0:b9:b5:10:2b:
14:b1:f5:f9:26:6d:e0:8d:7b:56:ee:a6:8c:db:91:77:07:d5:
20:ab:b2:11:31:87:db:92:59:46:66:e5:ed:c8:bb:cb:d1:b2:
26:c1:33:f2:75:99:e0:62:9b:ce:8a:17:e0:24:69:19:1d:42:
15:0c:44:bc:97:f8:cf:fe:b8:28:6f:e9:38:b0:08:48:97:fa:
2e:be:35:f4:7a:dc:22:a8:06:9d:b4:18:99:61:35:fa:a9:2b:
a5:bc:ad:99:7b:dc:24:c8:28:3c:e6:d5:68:30:c6:4a:59:ca:
7e:5e:e5:aa:ae:4f:aa:86:19:ed:77:32:33:f2:cb:2e:cf:11:
a2:9b:80:59:64:4b:10:75:62:76:17:ca:1b:e2:e5:7a:30:e3:
5f:c3:a2:b7:e8:a7:74:c3:5e:98:80:b7:73:23:4f:45:8d:ec:
63:08:bf:86:21:c1:19:bf:46:d4:31:e7:f6:e7:0e:d4:44:61:
26:fd:ac:1f:b6:62:20:d6:ad:a1:18:93:72:8f:98:dc:b1:16:
67:e0:82:56:d4:99:fa:28:60:fc:f3:9b:ee:34:e3:3e:ed:2b:
f7:98:7a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 27 17:07:08 2026 by rpki-client