Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: BWaJogBu4yiLvrzwGijdoT29KUxqVwsyp4pp3E0DLDk=
Subject key identifier: 05:72:10:FC:16:34:F0:A2:ED:AC:43:C7:EF:60:A1:63:13:FF:87:96
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DEAB58EFD1A84B4993380E5ECC3939798
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18F0
Signing time: Sat 02 May 2026 22:01:00 +0000
Manifest this update: Sat 02 May 2026 22:01:00 +0000
Manifest next update: Sun 03 May 2026 22:01:00 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: ySZ2aUaKz0Pninchmdgiu85W0xGeqHz22HXZ6SeswsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 03 May 2026 20:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ea:b5:8e:fd:1a:84:b4:99:33:80:e5:ec:c3:93:97:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 2 22:01:00 2026 GMT
Not After : May 3 22:01:00 2026 GMT
Subject: CN=057210fc1634f0a2edac43c7ef60a16313ff8796
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b6:9e:97:50:0e:29:33:fe:f9:e3:eb:90:a5:
c1:de:22:e8:a9:8c:35:55:70:42:66:e0:2b:99:74:
22:b3:c1:95:ac:78:c6:ca:81:02:df:51:84:e6:95:
09:5f:a4:c4:4b:11:24:81:cb:00:7c:52:aa:73:63:
59:3d:f1:6b:fa:4c:a8:52:ff:a6:cd:4a:9e:be:ba:
7e:87:0f:34:a2:3a:44:25:40:e0:73:08:84:b6:a1:
78:c2:98:45:f1:b1:a0:9f:d9:2e:76:08:f4:98:40:
cc:45:53:b2:97:a0:28:e5:dc:1c:4f:03:69:ca:4d:
cf:0c:bf:36:fa:c9:34:0b:82:73:77:5c:6c:ec:2f:
4c:53:b4:e0:65:26:57:2b:4d:4a:7c:42:67:98:b9:
e8:33:e0:ca:0f:1e:9e:a3:55:07:0c:c8:37:3f:ee:
3b:08:12:ba:80:73:cc:c9:d1:52:5b:17:4f:33:00:
04:dc:6a:af:5e:c4:0d:d4:f9:c7:18:fa:48:30:ac:
2d:2f:42:03:b5:8a:87:fc:b6:71:be:eb:18:92:9c:
57:95:f0:0a:e6:84:7d:0b:3a:88:b8:6c:e2:be:24:
1f:1a:c1:81:e2:04:9c:c6:d1:a8:63:37:12:e3:1a:
70:d3:6e:cc:8a:7f:f5:fb:7a:01:51:42:eb:b7:50:
de:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:72:10:FC:16:34:F0:A2:ED:AC:43:C7:EF:60:A1:63:13:FF:87:96
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:48:f5:3c:dd:d3:c4:45:9a:fe:1f:56:af:f2:5a:e8:03:47:
e1:ea:69:4f:d6:35:b5:56:45:23:a0:87:27:65:eb:16:e1:cb:
97:8f:9f:20:66:a7:24:87:80:cd:b9:88:0b:d4:65:72:ee:e7:
f1:79:a2:e5:8a:46:9d:0e:5b:30:e4:a8:8f:ac:0f:b0:c3:1c:
37:e2:ca:ab:3a:91:df:eb:25:45:c9:ec:9d:a3:50:bc:ca:a3:
1c:78:ce:a0:9f:13:66:a3:8d:5e:98:9c:81:b0:74:db:db:3e:
16:c2:39:b5:ee:f4:a0:7f:39:81:c0:9a:ed:34:c7:c1:f6:44:
91:da:e1:de:b4:5d:76:9a:19:5d:bc:c7:5b:49:02:7b:34:e1:
5c:b6:34:ac:64:c9:70:e7:b1:06:8f:8e:0c:ca:db:a7:23:a6:
e6:83:a3:e6:ff:e9:7a:ce:94:9e:7c:e1:b1:9b:e0:6d:96:43:
0c:a2:63:14:92:22:1f:06:46:c0:b4:af:12:41:15:a3:73:62:
37:15:d6:92:0d:5b:bd:8e:2c:87:91:16:ac:2e:43:03:0a:e6:
37:28:cc:36:b2:53:25:9c:e7:9a:63:1a:7b:3c:b8:74:d5:3e:
3b:db:ab:23:86:0a:7b:f0:d8:eb:0f:82:4d:e4:28:09:de:17:
4b:5b:7d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 05:17:21 2026 by rpki-client