Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: ZueA6EsdczJKwp0oy98W4ZPjTR+FBqLbAylHKD7hR6g=
Subject key identifier: 5A:98:72:F8:1A:61:14:BD:1F:CD:AC:A2:EC:FE:65:CE:DE:62:89:53
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DF64BCDB54E2B4A77AC51C7AE66187FB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18F6
Signing time: Tue 05 May 2026 04:00:56 +0000
Manifest this update: Tue 05 May 2026 04:00:56 +0000
Manifest next update: Wed 06 May 2026 04:00:56 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: vAPIInVoTuSq+PJu5a7SkzVEfizn87XyuJzmWN1RH7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 May 2026 21:39:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f6:4b:cd:b5:4e:2b:4a:77:ac:51:c7:ae:66:18:7f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 5 04:00:56 2026 GMT
Not After : May 6 04:00:56 2026 GMT
Subject: CN=5a9872f81a6114bd1fcdaca2ecfe65cede628953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:51:b0:ff:8a:e4:89:e4:aa:5e:86:60:3f:22:
ba:df:d3:da:7c:da:56:dc:d5:24:b2:62:d3:e1:be:
c1:ce:11:88:2f:ba:99:b3:b0:38:c1:91:d7:2d:f8:
41:33:3e:eb:c5:44:df:02:69:cb:45:62:25:0c:98:
47:ec:5b:8b:08:33:59:46:7f:97:b2:7b:9f:1a:97:
7a:b1:fa:51:85:ab:31:4b:db:12:d2:ab:d0:25:d0:
6a:fa:ed:54:1b:92:ea:bc:36:fb:ff:59:dd:d5:d5:
f5:84:dd:71:06:e3:d1:e8:53:de:cd:77:1b:9c:6f:
a4:13:6e:46:5e:6f:b9:d0:91:a1:1b:55:a6:7d:f3:
35:68:df:35:cd:11:65:b0:0b:75:4f:aa:60:c5:28:
bf:b6:51:8f:e8:3f:f2:45:8b:75:f3:14:38:5e:7b:
7b:42:ef:9b:bb:38:66:0e:97:df:ec:34:8b:0d:8a:
ea:b6:9c:fd:64:cb:34:cd:21:0f:e0:2b:89:47:b8:
ac:34:cd:96:6a:0b:a8:4d:0d:8a:43:a1:5a:1b:4f:
03:2f:3d:5d:37:bc:9d:32:03:05:e2:a7:1d:3e:79:
5f:59:77:55:3d:e4:6d:c6:76:c5:e7:72:53:33:13:
3d:f4:33:c8:14:62:e8:ef:ad:97:42:4f:4d:34:dc:
8a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:98:72:F8:1A:61:14:BD:1F:CD:AC:A2:EC:FE:65:CE:DE:62:89:53
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:15:7d:19:8b:33:2e:61:4b:8f:39:43:e8:4b:43:0c:3a:6b:
bc:c6:23:30:7c:52:ec:7b:83:1c:3b:e8:ab:8a:9d:27:5e:f2:
eb:01:f7:3f:89:bd:3e:a7:11:d8:ec:45:25:87:22:e2:41:64:
0b:7e:64:31:e8:d0:55:a3:dd:ed:93:e7:7a:86:36:f0:3d:e8:
d7:0f:ba:79:c4:2b:a3:6d:d4:2f:b7:90:19:4e:75:09:7c:28:
2c:82:69:66:35:10:92:bf:f4:86:a2:f8:6f:59:bc:3f:e8:49:
d8:61:02:88:0c:b9:33:0c:e8:29:c5:a7:25:c5:87:26:e4:a6:
79:7a:5c:11:cc:2b:c0:b8:51:3c:fa:fe:c1:9d:01:71:04:3a:
5d:2a:f5:14:6b:38:12:9a:9c:2d:aa:f1:a9:44:4b:83:7a:ff:
b4:6c:b6:82:14:78:b8:f4:87:e9:ff:09:01:9a:b2:ca:c6:f4:
ee:f9:7c:74:1d:23:88:65:a3:f1:7d:6f:7c:42:91:59:03:fe:
bc:b7:36:95:c8:f4:d7:10:cf:22:ba:25:72:bd:ea:14:3e:a1:
15:62:e3:4c:73:40:db:56:68:9f:24:6e:40:27:37:54:c5:c6:
0b:af:82:78:5d:23:18:9e:75:e8:2e:91:06:48:2e:60:06:8c:
b9:5c:6f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 07:29:46 2026 by rpki-client