Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 4fN/YKCAuFyYt12rOkBkW3SvqBNt1poUPzynQGk01Kk=
Subject key identifier: AD:03:D7:75:C9:21:E0:5C:F0:76:A1:C6:41:B8:A2:AE:D3:72:AB:CC
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DF080C9B6DAF8B706A73178AB5DCCAA93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18F3
Signing time: Mon 04 May 2026 01:01:05 +0000
Manifest this update: Mon 04 May 2026 01:01:05 +0000
Manifest next update: Tue 05 May 2026 01:01:05 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: U76hR8QTL2MCX+HVM0oPKmJSeekQiCiEWkdProzDFh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 20:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f0:80:c9:b6:da:f8:b7:06:a7:31:78:ab:5d:cc:aa:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 4 01:01:05 2026 GMT
Not After : May 5 01:01:05 2026 GMT
Subject: CN=ad03d775c921e05cf076a1c641b8a2aed372abcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:77:9e:9e:60:4f:67:1a:78:d7:b3:95:51:e5:
b1:15:50:71:c0:c9:39:46:51:fc:d5:76:81:7d:f7:
c3:7e:b2:67:09:3e:e6:22:f2:af:15:e8:ec:dd:ac:
71:0a:cc:95:90:5c:d8:0a:89:1e:9f:61:7e:c1:19:
d0:7c:b6:d7:3e:96:64:2e:d3:29:73:de:ba:5e:38:
64:0c:e5:3b:fb:6f:29:13:11:8b:76:3d:88:14:df:
ed:a9:c5:df:15:0a:2e:72:ef:59:11:c0:ed:c2:96:
3c:bc:f0:cc:22:50:36:c5:58:dd:81:7e:32:7b:99:
f7:3c:c4:ca:14:ac:c8:8f:48:66:49:5e:af:42:fe:
33:db:06:70:9c:cf:59:46:ed:e4:da:d6:4c:b2:4c:
16:0f:1d:91:11:66:f9:4d:e9:4a:fc:2d:d2:db:15:
38:f2:38:06:50:b2:10:30:4d:4e:05:5d:6d:9d:6b:
c2:4e:be:be:51:13:1e:d4:2c:20:dc:66:cc:81:2e:
71:24:97:5c:5d:05:9a:4c:ed:7c:56:74:61:cf:b6:
96:7b:ea:9b:4b:24:28:07:01:8f:c9:c7:1d:41:9f:
dc:1a:eb:92:d0:6d:96:30:e3:5a:c2:bf:3f:fc:e0:
f2:ca:ba:fb:e4:91:f1:7e:1b:dc:1e:46:42:5d:d5:
6c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:03:D7:75:C9:21:E0:5C:F0:76:A1:C6:41:B8:A2:AE:D3:72:AB:CC
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:8f:f7:14:a7:65:bd:58:b3:28:8a:fb:e4:3d:34:73:e1:f3:
04:6f:1c:94:15:78:91:ed:7e:30:46:d6:b5:b9:c2:2c:87:69:
d4:ed:c7:d5:9f:13:f5:bb:0d:58:a5:29:47:c1:bd:f0:2f:51:
3f:bc:ac:3f:18:e1:88:b4:3b:c1:b7:df:f9:c0:0e:a0:74:c0:
47:6f:22:f2:45:b1:22:83:d6:dd:3e:9e:08:16:26:9a:46:5f:
52:9a:a3:1b:0e:4e:a8:89:86:14:f4:95:e4:53:2a:a5:fa:38:
52:1e:bb:8d:6b:1a:61:f9:87:c2:c5:f4:fa:8e:00:c5:66:73:
6f:fc:ab:45:c3:a7:1a:e9:8e:9c:ad:1a:87:43:fc:e1:80:68:
c0:a8:c5:54:e0:de:ec:d7:ab:c3:9a:21:16:c1:b8:4c:d8:76:
ff:d4:50:39:2e:97:ed:f0:82:f3:32:dc:66:5c:48:6a:3d:4a:
a8:6b:99:7a:63:f5:ab:cf:f6:af:58:8b:bb:40:54:dd:94:6c:
bf:3e:a6:80:b4:2c:93:b6:ce:05:e5:71:8d:a9:e3:ef:4e:2e:
ea:14:07:a5:45:ca:3f:2e:21:ef:c0:1c:a5:40:b5:ff:54:13:
24:8b:18:46:70:ee:74:ef:ee:f5:de:49:e7:5b:be:4f:3d:d7:
1c:80:82:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 4 06:14:40 2026 by rpki-client