Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 0PPnKZq0U4n30d6GSv9f+csJe/8U0kFtQrg74e3WaNw=
Subject key identifier: 43:36:46:D4:77:AD:F1:07:61:62:E5:70:B5:A5:31:89:52:69:10:99
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DC6044DBC9660FCBEB5345FBB067BB2A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18DD
Signing time: Sat 25 Apr 2026 19:01:03 +0000
Manifest this update: Sat 25 Apr 2026 19:01:03 +0000
Manifest next update: Sun 26 Apr 2026 19:01:03 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: g2E0DTn9iicbLy/eHLwYD5p5gg5wD2CinFhMm5fhekM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Apr 2026 19:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c6:04:4d:bc:96:60:fc:be:b5:34:5f:bb:06:7b:b2:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 25 19:01:03 2026 GMT
Not After : Apr 26 19:01:03 2026 GMT
Subject: CN=433646d477adf1076162e570b5a5318952691099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e3:0e:fc:e3:97:e0:b3:59:9f:fa:79:62:e8:
d9:a3:27:8c:f5:f0:2c:22:fb:34:af:a1:32:90:9f:
42:fe:37:71:66:93:82:7c:fc:27:c4:fa:2f:f5:85:
cc:d8:8b:05:79:34:b7:31:ae:2b:36:b8:53:f6:1c:
6c:90:95:b5:8a:14:67:eb:c7:fe:a1:33:05:32:a6:
70:30:52:aa:9b:bc:3c:a1:a5:50:a0:21:cc:a8:df:
76:5e:ed:c3:13:6a:f3:fd:da:79:23:10:33:5d:df:
a4:1d:04:05:16:34:49:c8:c9:d9:88:b3:9a:18:72:
f6:0a:40:2a:3c:9b:d9:35:2c:fb:79:95:08:34:cb:
70:89:d2:60:f2:71:ef:fc:84:9e:9b:50:84:c1:7f:
dc:d7:52:f6:b5:59:38:f6:90:dc:15:16:6e:81:ab:
5e:56:cb:07:32:81:a7:99:6e:48:e7:ce:17:11:80:
41:c0:bc:d8:b6:84:e2:1c:41:d7:c1:67:29:a1:de:
c6:89:45:ee:09:1d:cb:21:16:3f:8f:db:02:2c:e7:
a0:79:03:77:08:a1:44:c2:65:b7:c3:dd:15:f7:a2:
58:68:c5:c9:f6:d8:8d:9d:96:a0:6c:c5:b6:2c:ef:
03:a0:55:b6:d2:f7:f7:75:2c:d9:5d:0c:7a:49:11:
c3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:36:46:D4:77:AD:F1:07:61:62:E5:70:B5:A5:31:89:52:69:10:99
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:96:48:1a:da:8d:9d:3f:1e:02:86:56:53:b2:24:2d:b5:9e:
27:00:b1:c6:0d:8a:05:26:7c:72:79:eb:8e:16:89:70:2a:b5:
11:b7:49:1c:6d:c8:06:0a:65:69:8e:4d:33:e6:12:98:9a:57:
7a:ae:c8:62:55:06:84:29:c1:71:80:5d:23:8e:26:6b:27:82:
76:f3:8a:d7:b1:09:ae:24:d4:5b:fc:69:20:73:93:da:1a:2f:
2d:a8:9f:1f:41:52:91:04:c6:9d:0d:9c:4e:0c:5c:93:20:34:
f1:ef:fd:aa:33:1b:cc:5b:7a:83:7e:ae:ee:12:37:18:82:6a:
ff:51:98:4e:62:b7:e5:80:6f:39:3b:6a:37:e8:8d:97:24:5a:
e7:0f:66:fe:79:30:4f:a5:9d:a0:ff:63:77:75:90:6f:26:c0:
43:b2:2b:11:70:1e:40:56:31:85:b3:60:16:b4:4c:2b:56:ea:
e3:6e:ce:c9:71:01:f8:a6:0d:86:47:5e:d9:29:b0:a0:8b:53:
d0:28:26:d4:c7:b7:8f:f5:6e:64:81:5e:23:00:a3:d4:ec:31:
60:af:3b:75:cb:4d:4c:b6:47:9a:43:54:0d:71:de:f4:40:83:
3c:34:80:0c:14:62:1a:29:e1:e9:bc:91:a0:5e:53:be:3f:62:
6d:f8:c3:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 26 03:01:34 2026 by rpki-client