Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: ZOoEga7znOPaVoK0n2nXF7hKWFn9gtuzVbq/I52KTlA=
Subject key identifier: BC:31:31:01:73:B0:11:40:6C:C4:69:86:B6:AF:75:76:9F:10:5D:46
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019D845C2C2647BEAF6580999E93A1D6E964
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18BB
Signing time: Mon 13 Apr 2026 01:02:06 +0000
Manifest this update: Mon 13 Apr 2026 01:02:06 +0000
Manifest next update: Tue 14 Apr 2026 01:02:06 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 50ZI9+sdjvhnn4tzrgNdwbMtnv731WbwjwJGLlrBEko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 Apr 2026 21:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:84:5c:2c:26:47:be:af:65:80:99:9e:93:a1:d6:e9:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 13 01:02:06 2026 GMT
Not After : Apr 14 01:02:06 2026 GMT
Subject: CN=bc31310173b011406cc46986b6af75769f105d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:41:9c:d9:2a:73:34:c9:1e:7f:9b:4e:23:66:
62:c7:02:27:49:5d:22:67:6a:ed:40:79:73:de:12:
87:c0:51:d3:ef:44:9e:fd:0f:cd:b3:75:b6:68:b9:
94:26:6a:47:01:c4:5b:e2:00:5c:a0:9c:b9:2d:35:
c4:21:9f:42:1a:be:01:55:83:b6:70:d1:a1:35:34:
72:5d:e8:5b:55:06:19:62:56:f3:fd:43:86:66:b0:
68:40:af:4f:73:74:ba:ad:4d:13:0f:88:c5:c6:22:
bc:21:0f:7d:05:d5:90:59:7c:bb:13:a1:e0:9e:d1:
be:2c:e1:93:c5:22:12:3c:c7:59:0b:ec:3e:8e:aa:
bc:c3:03:b8:ea:0a:aa:9a:cb:39:f1:64:ae:6c:a1:
ee:38:f7:2a:49:59:46:0f:de:c4:f9:b4:8d:00:ab:
9c:93:46:ab:7a:2a:7a:2a:68:95:7a:27:83:87:77:
4e:f2:09:49:ee:2a:3b:b4:73:5a:6f:9e:c6:9b:01:
4c:3c:be:37:07:2b:f7:6d:14:74:4e:a6:9f:f5:17:
02:82:21:76:c8:91:22:c3:6f:fb:ff:d6:a9:63:83:
f7:47:f4:bc:29:80:d9:7d:5a:e1:b0:3b:72:a5:b4:
cb:70:09:d3:21:8f:90:4d:7d:96:ad:1b:82:2c:33:
de:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:31:31:01:73:B0:11:40:6C:C4:69:86:B6:AF:75:76:9F:10:5D:46
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:f8:25:fd:af:e2:12:2a:21:6a:f0:96:6b:1c:c2:44:bf:c1:
27:25:8d:44:72:4c:d4:c7:d6:9d:c6:35:f3:09:26:dd:50:7a:
ed:d8:19:68:5e:68:66:93:9c:a7:76:f0:15:4b:d4:7e:57:ef:
02:9a:57:5d:3c:85:2d:bc:f8:b8:2b:bc:46:f6:85:47:61:32:
3f:42:4f:2c:1f:1a:3c:fa:01:ce:08:ac:49:36:90:4d:22:39:
f7:e7:cc:7b:4b:e1:bc:93:3a:bd:76:65:9d:74:e4:df:41:40:
3a:ae:f7:b8:49:16:b0:d6:fa:cc:4e:f8:fe:52:5e:d4:5a:80:
18:75:fc:f2:e9:bf:0d:4f:47:1f:35:a7:27:55:65:b1:18:7a:
da:43:30:93:e6:d4:59:33:86:c5:4b:1e:dc:f1:54:47:5c:aa:
5b:85:a6:d1:1b:6f:fc:60:96:b7:ce:23:6f:25:19:5b:8f:1b:
a5:b7:d3:4c:10:40:c3:cb:65:df:be:57:43:5d:1d:9d:91:d3:
b8:56:f0:a5:f1:6f:24:94:b0:ab:46:24:bc:76:8f:46:f3:4a:
13:75:c3:d5:c1:82:47:99:2d:51:bd:72:bf:09:ff:3d:0c:6c:
6e:7f:1b:09:62:e3:57:4e:da:0a:46:33:60:7d:b2:b4:2c:0f:
c9:e2:28:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 13 06:48:50 2026 by rpki-client