Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: j/Tdiq6lKGEf8gs7hSOy03/iJS3UR4PJZ4iOMozJ+Do=
Subject key identifier: 96:8A:A8:3B:DC:AC:22:3A:68:B4:7E:97:19:86:E4:B4:FD:56:5B:B1
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019F122E4B86C6E1DC8415DFED03CC8E5A1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1989
Signing time: Mon 29 Jun 2026 07:00:51 +0000
Manifest this update: Mon 29 Jun 2026 07:00:51 +0000
Manifest next update: Tue 30 Jun 2026 07:00:51 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: YzKf2u/wMElvOYF/h+Blxf4MVE3UW4ketmWs5pOoqeM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 07:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:2e:4b:86:c6:e1:dc:84:15:df:ed:03:cc:8e:5a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jun 29 07:00:51 2026 GMT
Not After : Jun 30 07:00:51 2026 GMT
Subject: CN=968aa83bdcac223a68b47e971986e4b4fd565bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cf:ed:f6:45:3a:d0:b7:07:ce:37:bf:e8:79:
06:3b:72:10:ed:6c:b7:95:62:0f:f7:53:08:03:09:
1d:42:b5:8e:33:75:6d:6a:b0:97:1c:31:80:3d:78:
0c:ff:34:8f:14:c4:a9:ef:2e:e1:a9:22:e1:c6:40:
91:8d:76:4f:4c:d2:97:c3:d9:10:e3:2f:f8:a0:2a:
ca:ef:5b:f5:ad:6d:65:04:2e:21:cb:cb:7d:13:7c:
e7:84:5b:44:99:a1:3f:1f:98:f6:b3:9c:31:ae:cc:
fb:7a:ec:76:e0:6d:95:7f:5c:82:76:11:36:dc:8d:
d5:49:11:b9:a7:d1:29:25:8c:69:a2:6b:7a:ee:38:
8a:62:a3:84:ad:45:12:90:ce:40:52:a2:3b:0f:65:
d4:30:c3:36:72:45:0b:2e:20:6c:d1:5f:5c:63:ea:
7c:17:ee:b6:c8:e3:32:99:de:af:5e:ae:10:25:24:
2b:95:81:fc:8b:be:48:22:d9:03:2e:ee:77:58:c5:
35:ea:95:98:ca:ca:29:97:98:af:cb:6e:df:99:ef:
a7:14:ec:39:ae:61:c5:82:c8:4f:ee:6e:a7:6e:af:
3f:87:cd:af:6c:cf:7e:de:12:a6:0a:31:03:66:b3:
e6:b6:5f:df:af:ee:66:f9:69:88:4e:e5:b6:d5:67:
94:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8A:A8:3B:DC:AC:22:3A:68:B4:7E:97:19:86:E4:B4:FD:56:5B:B1
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:11:c6:1a:65:ff:8d:a3:d8:f3:f1:e3:94:0c:4d:6c:d4:1a:
c2:bf:91:ef:96:16:7f:9a:1c:32:73:da:39:08:92:39:90:9c:
42:ed:18:5e:b8:8b:fd:f5:da:83:d8:9d:74:19:ef:fe:d7:6b:
a3:16:3a:59:de:e0:da:1a:b4:34:12:d8:bb:e8:91:91:6b:1b:
11:4a:f5:85:ea:3c:cf:0b:65:e2:87:6f:d0:a2:27:2d:39:0e:
af:31:2f:bd:59:35:2d:0d:2f:61:19:23:76:15:15:19:a8:86:
08:84:46:3a:5d:13:17:07:9d:0e:48:cd:9b:93:40:48:9b:90:
78:70:cd:30:cf:6c:08:58:35:51:a3:4e:29:c9:7c:b3:81:b7:
87:55:f7:43:29:96:3f:e1:6a:c2:d5:20:5e:b3:0d:a4:04:1c:
ba:21:29:4f:78:e2:c1:14:05:2e:f1:a4:12:c1:56:7d:48:e6:
59:61:16:8a:47:45:8c:5a:06:0c:a0:26:96:b1:fd:69:c2:21:
58:89:01:97:2b:c7:da:5c:1d:f4:17:55:df:e9:6c:ec:e8:c2:
b1:7a:66:01:ef:90:5d:36:35:11:f4:7d:37:f0:13:b9:64:f2:
3a:08:af:96:a9:8e:28:47:c5:4a:3d:9e:40:3d:63:52:0c:ad:
78:a9:1c:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8SLkuGxuHchBXf7QPMjlofMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwNjI5MDcwMDUxWhcNMjYwNjMwMDcwMDUxWjAzMTEwLwYDVQQD
Eyg5NjhhYTgzYmRjYWMyMjNhNjhiNDdlOTcxOTg2ZTRiNGZkNTY1YmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAks/t9kU60LcHzje/6HkGO3IQ7Wy3
lWIP91MIAwkdQrWOM3VtarCXHDGAPXgM/zSPFMSp7y7hqSLhxkCRjXZPTNKXw9kQ
4y/4oCrK71v1rW1lBC4hy8t9E3znhFtEmaE/H5j2s5wxrsz7eux24G2Vf1yCdhE2
3I3VSRG5p9EpJYxpomt67jiKYqOErUUSkM5AUqI7D2XUMMM2ckULLiBs0V9cY+p8
F+62yOMymd6vXq4QJSQrlYH8i75IItkDLu53WMU16pWYysopl5ivy27fme+nFOw5
rmHFgshP7m6nbq8/h82vbM9+3hKmCjEDZrPmtl/fr+5m+WmITuW21WeUJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJaKqDvcrCI6aLR+lxmG5LT9VluxMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjBHGGmX/
jaPY8/HjlAxNbNQawr+R75YWf5ocMnPaOQiSOZCcQu0YXriL/fXag9iddBnv/tdr
oxY6Wd7g2hq0NBLYu+iRkWsbEUr1heo8zwtl4odv0KInLTkOrzEvvVk1LQ0vYRkj
dhUVGaiGCIRGOl0TFwedDkjNm5NASJuQeHDNMM9sCFg1UaNOKcl8s4G3h1X3QymW
P+FqwtUgXrMNpAQcuiEpT3jiwRQFLvGkEsFWfUjmWWEWikdFjFoGDKAmlrH9acIh
WIkBlyvH2lwd9BdV3+ls7OjCsXpmAe+QXTY1EfR9N/ATuWTyOgivlqmOKEfFSj2e
QD1jUgyteKkcMw==
-----END CERTIFICATE-----
Generated at Mon Jun 29 17:55:41 2026 by rpki-client