Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: NGvUyi72acWXlmBrsP9FjMfqi7+XJjTOYcyav94dwPo=
Subject key identifier: C8:7D:ED:62:87:65:8F:46:34:97:0A:F1:D2:68:75:FE:D0:AE:AC:4D
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019D5FA9B79551451411BAEE920FD229B715
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18A8
Signing time: Sun 05 Apr 2026 22:00:51 +0000
Manifest this update: Sun 05 Apr 2026 22:00:51 +0000
Manifest next update: Mon 06 Apr 2026 22:00:51 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: VHCsYTftlZ7g067LYtcc9xOjE/hrrFNNxTfH85yoG4Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 Apr 2026 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:5f:a9:b7:95:51:45:14:11:ba:ee:92:0f:d2:29:b7:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 5 22:00:51 2026 GMT
Not After : Apr 6 22:00:51 2026 GMT
Subject: CN=c87ded6287658f4634970af1d26875fed0aeac4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:81:64:ab:cd:9a:58:14:c0:c7:81:e2:a8:1e:
3f:ef:a5:de:df:c2:d0:ed:e5:cb:89:c1:c9:51:11:
9d:76:f7:6f:78:85:bd:5c:84:1a:02:0b:b0:d5:fe:
ff:a1:e0:04:2a:56:c9:be:20:56:5f:67:4e:2c:28:
98:7f:a7:d5:2e:02:ea:8d:14:c2:49:6a:09:8f:8a:
ed:63:b0:cf:67:c8:ac:62:24:4a:cd:8c:67:e1:df:
32:45:d1:96:aa:b4:f9:e3:e2:ca:f1:dc:04:e4:16:
30:9b:dc:0f:46:b2:56:bb:e8:17:61:b5:82:d5:78:
a8:8d:02:3f:f0:85:fb:e0:1c:98:a3:4e:57:55:bd:
03:d5:ba:05:53:10:d5:72:20:04:97:59:2e:43:74:
d8:69:4e:24:5e:1d:00:2c:67:47:df:1a:91:cd:c7:
b4:bc:05:03:d5:9e:da:c7:14:33:3e:d7:ea:94:fd:
7b:e2:46:06:d9:2a:80:c6:00:9e:60:95:99:7d:e8:
d9:82:ac:23:6c:0e:4f:22:b9:75:5f:df:37:1a:a4:
42:18:aa:f5:32:5d:d4:90:23:3f:ba:b8:7f:8f:49:
30:80:82:4f:cb:9a:23:a3:0e:b6:31:00:f8:37:03:
55:25:6b:ca:4f:b5:62:8b:9b:12:84:8e:a7:1a:b8:
40:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7D:ED:62:87:65:8F:46:34:97:0A:F1:D2:68:75:FE:D0:AE:AC:4D
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:f8:f6:35:1f:0b:ac:b9:08:78:a5:98:24:91:db:b7:14:cf:
f8:35:eb:25:f6:e2:6b:ff:37:0e:ec:96:b7:cd:77:f3:46:cf:
c9:b7:93:28:43:b3:5d:31:7c:82:02:ae:3a:84:d2:33:66:86:
2c:ab:f9:fe:f1:15:4d:0c:a4:71:ba:ee:c4:5a:95:e5:f3:05:
2e:2d:e8:ca:6e:15:82:22:da:9b:60:07:fd:68:e0:2c:21:fe:
78:a1:9d:7c:85:8a:6c:6f:11:22:10:e2:54:88:ff:82:35:30:
15:0c:cb:bc:20:b4:b3:35:61:62:64:0c:16:9c:67:5e:69:a6:
46:58:24:d9:8a:2f:76:29:0a:e0:97:3e:87:3c:e3:96:55:14:
91:55:bd:ff:5d:3b:b5:c6:20:2a:e6:52:e2:44:50:cd:55:83:
58:1e:d0:8d:30:99:17:db:a5:d1:f9:7a:07:d5:a5:bc:47:56:
de:fd:6f:75:3c:59:09:7e:8a:7e:94:01:73:d1:21:df:01:f9:
b9:72:18:24:7b:c0:01:6a:4d:ec:13:73:66:5f:67:99:b5:9a:
65:eb:eb:01:12:c6:39:ff:31:3a:44:0d:1c:2f:5e:ca:37:00:
94:5d:81:cd:01:65:f0:99:a0:54:98:19:49:74:a6:1f:0d:19:
df:13:58:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 06:08:12 2026 by rpki-client