Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: oOAF2DI360x0LAqTtwEpZZQHHu0VgzWh5eJREnMK964=
Subject key identifier: 24:44:A6:14:F5:F1:15:55:6D:FA:B4:79:22:DD:7B:76:52:1B:95:B6
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019ED273A8B43C711809E60F71B6CA8606BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1968
Signing time: Tue 16 Jun 2026 22:00:55 +0000
Manifest this update: Tue 16 Jun 2026 22:00:55 +0000
Manifest next update: Wed 17 Jun 2026 22:00:55 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: UKd/gz37pg77xd7h2btN0fOf6M90YQOnomv/jSoMevI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 21:56:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d2:73:a8:b4:3c:71:18:09:e6:0f:71:b6:ca:86:06:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 16 22:00:55 2026 GMT
Not After : Jun 17 22:00:55 2026 GMT
Subject: CN=2444a614f5f115556dfab47922dd7b76521b95b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fc:bc:15:d9:0c:07:57:30:e0:8c:3e:dc:d1:
83:a2:d1:c0:7b:dd:1f:b1:da:5e:1a:ea:65:44:36:
7e:e2:4a:83:4d:03:64:d6:96:96:61:c5:2a:5b:c3:
74:9d:95:e7:b7:f0:fd:ee:96:8e:82:f9:09:5a:37:
66:a3:a0:36:24:94:bd:6d:94:6d:a2:69:96:86:2d:
2d:09:63:58:11:46:d2:83:19:ac:5a:3d:22:d2:8b:
4a:22:a5:0d:25:17:55:a4:53:96:a8:2b:5e:19:67:
01:c9:89:06:50:86:d3:af:2f:b8:ce:f2:19:20:67:
97:2a:bf:5c:5b:d9:fc:87:76:c4:37:58:fb:1d:c2:
a8:89:73:2a:71:fa:06:f2:32:3a:91:95:59:33:1f:
15:12:17:e5:8e:74:60:2b:82:44:36:63:63:ce:37:
b3:a8:a9:c7:8a:35:a2:03:1f:60:d0:49:78:6d:bd:
f9:7e:d0:69:08:42:df:4d:d5:e6:95:e9:1e:db:54:
b1:d1:05:83:65:cf:3d:a8:ec:7f:07:82:f2:53:f7:
8f:e5:ed:f0:ca:ec:ab:91:29:bd:68:ea:d9:d6:57:
10:7e:fa:ee:f8:54:98:b9:cc:6f:61:f5:11:84:97:
13:52:e1:3a:31:64:ef:94:59:dd:ef:85:5c:48:70:
87:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:44:A6:14:F5:F1:15:55:6D:FA:B4:79:22:DD:7B:76:52:1B:95:B6
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:3d:89:a9:22:51:52:93:c4:44:e0:9a:44:2e:41:f9:d1:0c:
02:58:dd:a9:7a:42:9d:7e:fc:7b:2f:60:2a:6d:f7:29:d0:9f:
33:fa:dd:cc:43:05:e0:c2:c7:be:be:7a:ac:24:1c:31:bf:7d:
ae:e4:9e:e2:98:99:49:2e:91:2f:df:d4:02:50:11:b2:9b:cd:
25:79:78:00:65:87:47:f0:88:3d:4c:3c:a5:5f:e8:26:2b:f5:
7b:18:0f:b0:4d:52:f2:5c:50:6e:46:5f:54:77:66:17:41:2b:
31:a0:ae:25:c5:cc:e8:f7:85:7c:81:e6:ea:fa:f8:b2:69:5a:
fb:ce:53:c6:59:5a:1e:da:56:38:31:49:06:55:92:da:b9:ac:
b7:90:b9:73:7c:06:67:fd:ed:00:23:1d:7b:c8:6a:e8:8b:c6:
15:04:3a:8e:34:40:4e:2b:b3:b6:ba:c4:ac:8a:42:aa:93:8d:
dd:5d:b0:18:59:fb:93:15:37:c3:f5:88:a5:24:79:54:7c:79:
a0:27:6e:55:b7:2f:52:f4:29:73:94:ca:91:02:8d:2c:05:83:
f2:9a:2c:0d:49:2e:5f:f3:d3:2d:b2:d8:26:60:74:43:69:6f:
e9:bb:ac:f1:2c:e9:7f:24:d6:2c:24:9a:f1:eb:24:c8:67:8f:
01:a1:3d:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Sc6i0PHEYCeYPcbbKhga+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwNjE2MjIwMDU1WhcNMjYwNjE3MjIwMDU1WjAzMTEwLwYDVQQD
EygyNDQ0YTYxNGY1ZjExNTU1NmRmYWI0NzkyMmRkN2I3NjUyMWI5NWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvy8FdkMB1cw4Iw+3NGDotHAe90f
sdpeGuplRDZ+4kqDTQNk1paWYcUqW8N0nZXnt/D97paOgvkJWjdmo6A2JJS9bZRt
ommWhi0tCWNYEUbSgxmsWj0i0otKIqUNJRdVpFOWqCteGWcByYkGUIbTry+4zvIZ
IGeXKr9cW9n8h3bEN1j7HcKoiXMqcfoG8jI6kZVZMx8VEhfljnRgK4JENmNjzjez
qKnHijWiAx9g0El4bb35ftBpCELfTdXmleke21Sx0QWDZc89qOx/B4LyU/eP5e3w
yuyrkSm9aOrZ1lcQfvru+FSYucxvYfURhJcTUuE6MWTvlFnd74VcSHCHwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCREphT18RVVbfq0eSLde3ZSG5W2MB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhT2JqSJR
UpPEROCaRC5B+dEMAljdqXpCnX78ey9gKm33KdCfM/rdzEMF4MLHvr56rCQcMb99
ruSe4piZSS6RL9/UAlARspvNJXl4AGWHR/CIPUw8pV/oJiv1exgPsE1S8lxQbkZf
VHdmF0ErMaCuJcXM6PeFfIHm6vr4smla+85TxllaHtpWODFJBlWS2rmst5C5c3wG
Z/3tACMde8hq6IvGFQQ6jjRATiuztrrErIpCqpON3V2wGFn7kxU3w/WIpSR5VHx5
oCduVbcvUvQpc5TKkQKNLAWD8posDUkuX/PTLbLYJmB0Q2lv6bus8SzpfyTWLCSa
8eskyGePAaE9Zw==
-----END CERTIFICATE-----
Generated at Wed Jun 17 05:13:43 2026 by rpki-client