Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: fnzjx2O1cev0ULZxNVIg7fG+42Slsg9Q9okHhWN6eAI=
Subject key identifier: 18:1C:18:8F:F6:CE:E8:38:2C:88:0A:E5:38:50:B3:D3:28:F2:AE:CA
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019E0F66C722C21665B5A02D8000C256D75E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1903
Signing time: Sun 10 May 2026 01:00:54 +0000
Manifest this update: Sun 10 May 2026 01:00:54 +0000
Manifest next update: Mon 11 May 2026 01:00:54 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: tb5bKh5AjjYC6oDl0zOg8LlbUHMNp3iuaMBTBtM1i30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 May 2026 01:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0f:66:c7:22:c2:16:65:b5:a0:2d:80:00:c2:56:d7:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 10 01:00:54 2026 GMT
Not After : May 11 01:00:54 2026 GMT
Subject: CN=181c188ff6cee8382c880ae53850b3d328f2aeca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:84:36:ea:79:f0:88:21:e1:ff:be:e2:ba:23:
eb:84:0e:a2:16:ee:9b:7b:c6:e5:2d:58:08:70:24:
1d:b3:24:31:76:64:6d:39:52:dc:75:ca:e8:21:a7:
49:1c:af:14:e5:b2:52:23:86:21:8d:1f:f7:30:5e:
a7:d7:fb:6d:b2:7d:fc:96:1c:c4:af:71:92:dc:66:
2c:04:21:b2:18:6f:1e:f6:2e:3d:ce:11:10:cd:3b:
dd:39:20:a3:d1:07:93:d9:33:e0:a6:9e:af:16:b4:
da:60:e1:07:48:7c:c6:a7:ce:5c:26:79:0a:aa:9d:
db:20:bf:b0:92:e5:a6:75:d5:20:99:9f:9b:d7:ce:
0c:39:e9:87:37:97:20:ff:71:5a:0a:4e:bf:3b:65:
88:18:49:c0:58:08:78:94:e7:9c:a7:9d:f2:b1:55:
dd:cf:bd:c9:67:bb:aa:70:e2:f5:1d:56:6c:5b:1b:
96:70:89:57:25:59:d9:47:c6:42:a4:1c:59:6e:91:
1a:6a:f1:50:1e:6d:7a:5a:73:94:25:5b:bd:b9:3c:
1f:83:7d:51:a5:14:f8:44:f1:b9:aa:eb:79:51:2e:
79:9f:b2:5b:66:14:27:33:9b:c7:f5:2e:43:46:ff:
88:a2:a7:39:52:19:c4:b8:cd:72:94:1d:11:a1:b3:
7c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1C:18:8F:F6:CE:E8:38:2C:88:0A:E5:38:50:B3:D3:28:F2:AE:CA
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:2c:f8:09:0f:1e:ca:0e:f2:2c:9b:76:55:de:90:cc:ba:30:
2f:76:ee:f2:a3:fd:c7:18:fc:3e:85:f0:8d:36:ae:6e:d0:b1:
fb:db:dc:e3:a8:28:8b:75:76:fe:0c:8e:1d:66:19:b1:32:41:
68:86:32:3f:09:97:3a:7d:f3:9b:73:9c:fa:6d:d6:ea:b7:9c:
40:03:b1:2b:05:ce:99:83:a1:d3:c1:47:3a:32:4c:e8:88:71:
d6:bd:75:25:0c:a4:af:e8:66:a5:86:02:d6:85:5d:e1:81:9c:
8f:ae:eb:17:55:5b:dd:67:b7:9c:a6:67:e7:1a:39:a3:77:ae:
fa:7b:10:4d:b6:aa:b8:ab:24:03:de:62:96:ad:f9:0e:79:69:
e7:0a:1c:65:46:b9:36:b2:64:83:df:7c:19:b1:88:d0:de:bf:
33:ea:cd:53:00:b5:41:9c:15:01:9f:ea:30:68:ad:51:7c:8e:
70:5e:3b:0d:4c:1d:02:c4:ef:91:b0:2f:34:e3:b4:18:9b:3c:
42:12:34:8d:b9:03:4d:e3:e9:71:62:5e:f3:6e:a2:a5:6a:de:
2d:1a:b9:05:01:0f:67:42:86:aa:49:82:a2:b1:40:bd:07:72:
64:2a:83:69:e9:65:57:23:f7:35:03:72:1b:02:5d:7d:4b:84:
4d:f6:69:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4PZsciwhZltaAtgADCVtdeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwNTEwMDEwMDU0WhcNMjYwNTExMDEwMDU0WjAzMTEwLwYDVQQD
EygxODFjMTg4ZmY2Y2VlODM4MmM4ODBhZTUzODUwYjNkMzI4ZjJhZWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYQ26nnwiCHh/77iuiPrhA6iFu6b
e8blLVgIcCQdsyQxdmRtOVLcdcroIadJHK8U5bJSI4YhjR/3MF6n1/ttsn38lhzE
r3GS3GYsBCGyGG8e9i49zhEQzTvdOSCj0QeT2TPgpp6vFrTaYOEHSHzGp85cJnkK
qp3bIL+wkuWmddUgmZ+b184MOemHN5cg/3FaCk6/O2WIGEnAWAh4lOecp53ysVXd
z73JZ7uqcOL1HVZsWxuWcIlXJVnZR8ZCpBxZbpEaavFQHm16WnOUJVu9uTwfg31R
pRT4RPG5qut5US55n7JbZhQnM5vH9S5DRv+Ioqc5UhnEuM1ylB0RobN8bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBgcGI/2zug4LIgK5ThQs9Mo8q7KMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQyz4CQ8e
yg7yLJt2Vd6QzLowL3bu8qP9xxj8PoXwjTaubtCx+9vc46goi3V2/gyOHWYZsTJB
aIYyPwmXOn3zm3Oc+m3W6recQAOxKwXOmYOh08FHOjJM6Ihx1r11JQykr+hmpYYC
1oVd4YGcj67rF1Vb3We3nKZn5xo5o3eu+nsQTbaquKskA95ilq35Dnlp5wocZUa5
NrJkg998GbGI0N6/M+rNUwC1QZwVAZ/qMGitUXyOcF47DUwdAsTvkbAvNOO0GJs8
QhI0jbkDTePpcWJe826ipWreLRq5BQEPZ0KGqkmCorFAvQdyZCqDaellVyP3NQNy
GwJdfUuETfZp+Q==
-----END CERTIFICATE-----
Generated at Sun May 10 10:32:16 2026 by rpki-client