Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: NUiQ+ikNZt3l+cc7XE9S/F38lXKN5SBsuHAHdHZpUlw=
Subject key identifier: F3:F6:BC:E8:3E:10:62:9A:72:33:D7:52:36:08:FD:04:C1:3C:B3:C4
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DC0391887490D82FC749C9AE6C637D004
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18DA
Signing time: Fri 24 Apr 2026 16:01:00 +0000
Manifest this update: Fri 24 Apr 2026 16:01:00 +0000
Manifest next update: Sat 25 Apr 2026 16:01:00 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: YDMcLhi20XU/espQ+IeyJG8SctQ7q3HEUZ5bkh+d5IE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Apr 2026 16:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:c0:39:18:87:49:0d:82:fc:74:9c:9a:e6:c6:37:d0:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 24 16:01:00 2026 GMT
Not After : Apr 25 16:01:00 2026 GMT
Subject: CN=f3f6bce83e10629a7233d7523608fd04c13cb3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6b:e3:26:f4:fc:57:c6:02:d9:27:a3:22:c1:
17:92:7f:00:80:0d:e4:3e:fb:c5:5b:20:c2:e8:d0:
35:ab:1f:44:4c:0d:15:8f:e6:75:77:67:dd:b4:1a:
ff:75:00:1c:59:b7:7a:9d:b5:ed:90:e0:24:69:16:
a5:d8:21:e7:66:7e:26:a0:2b:0d:79:33:59:7e:17:
8d:24:d0:f5:41:ca:9c:25:e8:e4:bb:e1:b7:72:a5:
8e:58:fa:36:2d:50:9d:64:9f:a5:97:2f:fa:5e:73:
55:dd:13:ef:0c:62:5c:4d:72:3d:dd:bd:db:6e:36:
9d:f8:e8:1f:3d:11:85:a0:fc:1b:b6:34:e7:78:75:
08:13:da:e8:cd:9b:3d:61:78:3e:ac:ed:30:06:c8:
17:bf:1d:43:5f:89:ab:5d:a6:89:66:55:4f:81:8f:
1d:e6:36:fe:5c:e5:75:c5:66:f4:94:49:f8:f8:d8:
73:14:ad:56:0d:a7:72:0b:03:75:08:78:19:c0:30:
d8:22:5d:8e:64:2f:f6:57:7e:2b:94:07:4b:1a:ca:
5f:2a:46:e8:1c:54:5b:d4:12:92:22:bd:34:17:2a:
f4:23:40:10:05:63:bd:54:c1:42:53:71:de:92:42:
bc:a8:bd:b2:5d:7b:71:80:bf:bd:dd:31:dd:55:8e:
7c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:F6:BC:E8:3E:10:62:9A:72:33:D7:52:36:08:FD:04:C1:3C:B3:C4
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:b7:04:c7:9b:fc:6d:2b:d6:41:9a:95:04:9f:99:ad:d6:be:
33:75:78:bb:f7:16:1e:54:63:62:03:bf:42:cb:4a:7d:53:23:
5f:8b:7c:d3:0d:b0:4b:54:3a:0a:a7:99:f2:50:1f:22:04:1f:
c3:62:8f:9d:e0:aa:ec:b0:41:c8:d9:77:de:56:26:f0:f4:4e:
3b:e7:31:e6:12:38:a9:d7:b7:8d:0e:51:c1:0f:44:c5:75:36:
fc:cc:dd:26:1a:67:f1:a5:40:fb:f5:cb:53:89:e8:c8:36:44:
0e:18:3a:c1:ce:a6:a7:59:6a:9d:9f:a1:0d:8a:15:0b:44:00:
ce:30:ce:e9:b1:56:8f:e9:65:8d:1a:c2:28:8c:a2:ce:54:82:
b6:0a:7c:01:00:1f:27:5b:41:e8:5e:46:22:30:ae:85:2c:b8:
6f:63:a9:b9:4f:8b:52:58:05:a2:32:58:38:5d:47:2f:43:5a:
2a:64:cf:cc:19:d3:1b:db:a5:c7:48:a7:f4:7a:d4:13:f7:82:
cc:b9:45:21:80:0e:90:42:ae:d5:2d:37:80:55:45:13:f9:4a:
dd:e1:5a:14:97:24:65:77:09:87:cf:5a:0f:04:10:a5:8a:a1:
1c:c0:1c:11:a8:88:ca:f6:01:fc:69:1d:65:e8:b6:44:fe:1c:
c0:b9:d5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 25 02:16:26 2026 by rpki-client