
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: MJ28+1UHOpIAk4WCk9If/iGJ0XgsT5Bc+LnQ7HexyPo=
Subject key identifier: 28:57:3A:21:3C:EB:92:D2:1C:55:0B:F6:CF:7D:87:C1:15:15:C9:91
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019F484151F231CDF7F88EE4F32DF3FE06E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 19A5
Signing time: Thu 09 Jul 2026 19:01:08 +0000
Manifest this update: Thu 09 Jul 2026 19:01:08 +0000
Manifest next update: Fri 10 Jul 2026 19:01:08 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: MxwpeV5t9wkQohfJfI2Yn/IoRfREpvhVYS8k3fD5PiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 Jul 2026 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:48:41:51:f2:31:cd:f7:f8:8e:e4:f3:2d:f3:fe:06:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jul 9 19:01:08 2026 GMT
Not After : Jul 10 19:01:08 2026 GMT
Subject: CN=28573a213ceb92d21c550bf6cf7d87c11515c991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4e:05:9f:21:4e:1c:48:98:a8:a3:98:6f:3d:
e4:fc:59:da:5b:8a:1e:ba:50:c6:63:da:1f:c2:2d:
e7:48:34:13:8e:c7:a3:3c:85:ea:75:33:6b:12:92:
b5:0d:05:78:0c:c3:06:88:a7:be:0d:5d:01:dc:f6:
31:d0:15:5a:3a:ea:ff:ff:84:8e:d0:52:51:07:7f:
68:e2:99:06:da:23:b5:e7:3d:29:f1:21:93:34:09:
38:0b:67:53:cf:18:e9:ed:dc:47:1a:57:1e:f2:af:
c6:8d:07:88:46:2f:e4:99:12:a0:3d:42:18:ad:d7:
a8:3f:dc:87:60:57:e4:83:30:6b:0f:e3:ad:cf:eb:
be:d2:a0:9c:54:64:20:8b:fb:c6:6d:77:59:0d:33:
fa:c3:05:ec:af:1e:fd:87:a9:a4:db:31:e5:e7:68:
59:ea:98:04:f2:cd:cb:d7:7a:9d:16:3e:22:e2:5b:
c0:7a:8f:fe:9a:d5:1b:df:be:27:c1:b1:dd:14:f7:
0c:79:da:28:f2:d0:9b:a8:75:b8:09:15:9e:af:2c:
66:bd:ff:24:fa:ea:c7:79:29:8e:3d:21:a4:24:5e:
51:da:7b:e6:96:24:0e:e5:0a:33:76:10:04:4b:4c:
ce:54:c7:96:9d:02:91:d6:cd:6c:5f:d2:71:d9:a8:
c2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:57:3A:21:3C:EB:92:D2:1C:55:0B:F6:CF:7D:87:C1:15:15:C9:91
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:79:96:6e:5b:08:5f:8e:20:56:5d:0f:0d:e1:cf:f1:d7:cf:
6d:fd:37:be:67:ba:0b:d7:f4:89:af:50:f9:39:9f:1c:33:a7:
da:a5:28:ad:f2:43:83:dc:fa:bb:67:9a:44:ba:75:ac:c8:4e:
ce:28:93:47:c5:f9:7d:95:25:90:da:f6:93:56:e5:54:70:fb:
f8:51:5e:8d:a6:ea:1a:97:7a:5f:7d:14:7a:33:32:cd:e9:29:
c2:43:28:2f:f7:a4:e5:b4:f4:4d:6a:f3:23:88:f1:a6:d8:59:
45:fc:6a:ae:85:83:f0:ec:42:5d:2f:c8:28:e5:dd:49:e3:6a:
62:dd:0e:d7:13:15:66:87:18:e4:a8:47:ce:1c:d7:be:56:3f:
7a:b0:7e:cc:f6:4c:1a:e7:10:ad:c2:59:f2:f5:19:47:f5:da:
36:60:67:25:98:2a:b5:65:fc:6d:12:1e:1d:86:2c:90:b6:e2:
2c:e1:28:93:3d:50:aa:49:2c:44:8a:9e:e7:0c:2d:c7:d4:bf:
03:96:f5:d4:7f:6f:7a:e2:b5:9f:aa:b4:e1:c2:68:de:a6:ac:
75:ef:1d:57:73:8e:af:76:0d:b6:d4:92:04:0f:a2:8d:b0:b7:
e7:15:c4:88:ca:3c:52:9d:0f:c4:04:74:54:1e:0a:99:a8:a3:
5a:de:e0:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 10 01:24:04 2026 by rpki-client