Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: QSBC1habWL69Id+xhRRZwUDSoA17tdyfo+iA5Nq+8oM=
Subject key identifier: 40:27:86:93:CF:94:2C:D7:10:F3:74:31:AD:72:8E:F2:30:05:1C:6B
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DACE9774D50B9F6840E63D2AF8571D64C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18D0
Signing time: Mon 20 Apr 2026 22:01:14 +0000
Manifest this update: Mon 20 Apr 2026 22:01:14 +0000
Manifest next update: Tue 21 Apr 2026 22:01:14 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: OtDI7SgYt1kb7hHvGcQA9IphjLARvZ9be6SYlbIc0TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Apr 2026 22:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ac:e9:77:4d:50:b9:f6:84:0e:63:d2:af:85:71:d6:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 20 22:01:14 2026 GMT
Not After : Apr 21 22:01:14 2026 GMT
Subject: CN=40278693cf942cd710f37431ad728ef230051c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d8:c6:87:9e:bf:82:30:dd:6a:40:d4:bf:9a:
9d:72:52:e0:41:d2:d8:87:dd:8a:45:72:a3:d9:6f:
83:17:ff:9a:ed:5b:9f:3c:5e:94:6d:d1:96:a3:91:
65:93:e9:59:a7:4a:0d:e8:dd:68:84:81:b4:ca:d0:
3c:1c:3c:c5:00:4b:6b:74:26:d5:6e:d2:7c:bf:9f:
f3:2d:5b:c5:64:74:60:63:64:c6:b1:b7:b9:ff:ee:
92:98:bd:c9:7d:48:af:5f:37:0b:4a:9d:cd:cd:d6:
cd:cf:40:40:e2:db:03:93:b7:21:7d:72:2a:41:98:
b9:95:0a:b5:ef:68:71:b6:af:35:73:2f:93:48:00:
7f:de:7d:78:f1:e6:77:69:7f:26:81:06:51:e9:2a:
5d:a1:c8:5a:9e:ae:05:bf:e5:4a:9f:7c:d1:87:aa:
b4:50:44:31:23:8a:d3:07:51:57:69:e5:9c:be:a0:
c4:c4:e2:a4:53:b9:66:96:aa:69:47:bd:40:db:3c:
49:c4:ab:db:20:f7:b4:b8:33:e2:a6:74:24:0a:58:
d2:90:49:5d:03:f4:c4:f7:5b:92:c1:52:1b:07:17:
b1:36:ee:6a:58:0e:30:2f:09:93:6d:7c:f9:3f:e5:
ea:f7:0d:c9:fa:df:a3:a9:a0:24:9f:05:56:6d:4a:
00:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:27:86:93:CF:94:2C:D7:10:F3:74:31:AD:72:8E:F2:30:05:1C:6B
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:87:86:af:d5:8c:40:d3:60:33:42:bc:6a:cd:8e:58:5d:cf:
1c:80:4c:13:65:ec:10:5d:40:22:39:0b:18:a8:fa:39:a6:f8:
c2:d0:44:e7:b1:8f:b2:20:62:cb:fd:d8:12:7d:4f:0e:65:6d:
12:46:0e:16:78:3d:ea:b4:64:0c:45:a6:0b:45:dd:39:63:a7:
d6:64:2c:77:09:f3:95:49:ea:cd:c8:50:ba:87:dd:08:49:84:
66:24:5b:e4:22:26:97:3b:a0:01:42:f5:15:3e:56:4e:d1:e6:
a8:22:a1:96:d8:0f:a8:e8:ac:1a:c0:c9:96:32:ce:e1:cb:fc:
d1:75:16:6d:30:6e:27:c5:06:f4:08:ca:cb:b6:8c:85:04:51:
7d:1c:47:f4:87:93:f4:09:b5:03:30:a4:1e:cc:64:5c:42:35:
a2:7b:ee:c3:d1:ed:bd:6a:17:60:d2:c7:92:05:2e:36:b7:51:
78:53:f7:64:5a:14:b2:03:06:22:b7:0e:a7:4f:39:71:72:02:
d7:8a:0d:3b:11:96:88:46:99:4f:7d:ba:c6:bd:91:7f:8e:8c:
f3:8b:80:f6:6d:a7:2d:e8:50:fb:37:8b:81:cf:25:fc:e8:0b:
ea:e3:2f:3a:86:4e:b7:fb:99:68:5d:19:20:50:78:37:9f:54:
31:84:3c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 09:11:28 2026 by rpki-client