Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: KxPNSKQz74lErDv1bCwIp59DeHQQcXhgLEJCNGn5TYA=
Subject key identifier: C9:F1:50:15:0E:D8:2A:1F:42:4E:D8:D2:FE:5D:A1:2E:B0:EE:DB:4E
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019EA7F769E6E838EA8D3B793D98327EACF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1952
Signing time: Mon 08 Jun 2026 16:01:09 +0000
Manifest this update: Mon 08 Jun 2026 16:01:09 +0000
Manifest next update: Tue 09 Jun 2026 16:01:09 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: IRzl/cH9/s+Pu5A7rdn16/qlyeOEuOdtdzpAbxi5Deg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 14:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a7:f7:69:e6:e8:38:ea:8d:3b:79:3d:98:32:7e:ac:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 8 16:01:09 2026 GMT
Not After : Jun 9 16:01:09 2026 GMT
Subject: CN=c9f150150ed82a1f424ed8d2fe5da12eb0eedb4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a4:94:2f:b2:98:c8:11:6c:25:e5:b3:fc:43:
63:2a:19:69:69:1d:ce:cb:e3:bb:00:68:88:b2:bb:
a1:0f:47:91:de:eb:d7:3e:44:d0:ef:1d:d8:5d:8f:
2d:40:04:3a:67:8d:31:ae:e2:13:82:98:6a:90:7c:
c0:14:9e:07:96:8f:58:c2:58:aa:76:90:3c:67:c4:
64:ba:ec:0d:32:c2:42:ac:ed:46:cd:b9:55:47:f8:
c0:25:57:a8:70:c0:24:68:55:2f:57:67:7a:1e:10:
d8:be:87:be:3b:92:82:62:b4:0d:de:0b:d6:48:ba:
c1:24:39:f8:1b:ac:7e:62:7b:ad:9d:c8:1d:93:92:
ba:17:6c:54:ad:31:b3:9b:1a:39:e3:c0:08:fa:71:
99:60:93:58:03:32:48:41:37:bf:af:ba:19:f8:5f:
9b:79:c5:a9:2a:d2:60:60:94:bf:d4:38:50:c8:64:
8e:84:c5:af:cf:60:18:a6:a1:93:47:65:b9:a9:cf:
75:29:09:ae:d1:1c:c7:46:1b:0b:59:97:a2:44:aa:
0d:0e:ad:d4:d9:fa:e3:58:f3:53:5d:6e:ed:67:e7:
70:be:61:4a:9c:0a:e9:18:33:47:02:74:a5:60:8d:
5f:c2:46:b2:a5:dd:4e:90:f2:3e:6f:0b:b2:d0:7f:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F1:50:15:0E:D8:2A:1F:42:4E:D8:D2:FE:5D:A1:2E:B0:EE:DB:4E
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:ed:51:7f:00:27:b6:5a:8c:b5:e9:4b:34:a0:1d:0d:af:f6:
46:9f:83:32:0a:5b:74:99:c8:13:5d:9e:47:81:48:32:bf:19:
93:e0:b2:dd:99:f0:e2:c5:c1:1d:f1:5f:ce:73:ea:99:f4:6f:
fe:f6:e9:bf:33:16:c7:22:c2:24:7e:0f:3d:02:32:bd:8f:22:
20:6c:6a:19:cc:25:36:d2:6e:64:71:56:90:97:26:d7:1a:e4:
2e:d0:65:e2:2b:f6:b7:24:00:c6:a5:01:42:32:90:df:fb:25:
c0:ac:a1:58:8d:1f:89:97:3c:e5:f8:cb:1d:bd:5e:df:d9:37:
c0:49:e3:f3:d9:3e:10:97:e6:95:40:65:de:75:b7:e1:d8:94:
16:79:20:f4:6c:ff:7e:be:24:d1:c5:b5:89:80:3b:cc:b3:aa:
d0:40:50:2f:b4:39:5d:bb:56:2a:b4:9c:9c:2c:bb:bf:a9:7a:
72:23:02:8a:83:ab:5f:62:1d:b0:99:16:8e:48:e5:67:20:e3:
90:11:47:83:d1:d1:bb:ac:ba:b0:d0:04:22:32:70:09:c3:22:
f7:33:09:06:bc:72:50:0d:ae:46:a8:62:2f:9e:15:2d:87:be:
bb:e7:89:48:2d:2c:37:bd:48:60:be:3b:a4:b7:f5:0d:95:e4:
71:ea:3a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 8 22:38:06 2026 by rpki-client