Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: iarqLbM0y/V82L+71GSeiiwU6MCJKV7IZJM4Ezvka1g=
Subject key identifier: 2B:E0:E8:1E:88:AD:4B:B5:E3:E8:A7:13:98:F6:80:EE:B3:F9:33:1B
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DA90C5BCA1E4AA510A5889A0E759C8FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18CE
Signing time: Mon 20 Apr 2026 04:00:52 +0000
Manifest this update: Mon 20 Apr 2026 04:00:52 +0000
Manifest next update: Tue 21 Apr 2026 04:00:52 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: I2ShCvfutA4KRCuCH07fqaX9dKIrNcHJQfg8EyD1pdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a9:0c:5b:ca:1e:4a:a5:10:a5:88:9a:0e:75:9c:8f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 20 04:00:52 2026 GMT
Not After : Apr 21 04:00:52 2026 GMT
Subject: CN=2be0e81e88ad4bb5e3e8a71398f680eeb3f9331b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:eb:ca:e7:06:ee:13:9d:40:46:d1:40:ca:cd:
13:0c:16:8f:9e:5b:28:ef:f7:55:2b:35:7a:71:c1:
80:0e:67:6a:19:22:f0:57:29:a8:35:5a:b4:74:0b:
84:3f:44:47:e9:e1:5f:fa:5a:12:dd:a9:23:74:fe:
9a:94:51:11:d0:89:58:e3:b2:02:06:da:2a:47:fb:
6e:ae:7a:74:a4:b9:cb:f0:5d:c0:8b:1d:2f:9f:48:
d5:11:f5:e9:78:8b:56:a8:da:a4:56:f4:8a:3b:88:
f0:1f:5e:cd:22:38:13:7a:a2:85:86:35:9b:92:24:
59:b5:6c:4a:19:55:22:75:24:d0:de:fb:7f:89:bd:
ba:f0:3a:95:8e:d2:c8:db:3c:da:3d:6e:21:de:28:
80:da:13:32:99:67:a1:52:5d:2f:12:11:a1:e8:af:
ca:3f:00:13:17:da:75:ed:d7:44:e9:69:cf:59:de:
c3:18:0c:eb:45:4b:83:63:6e:5f:40:33:cc:a3:a6:
ac:31:05:e5:f4:63:6d:f7:30:14:28:51:d9:9f:e4:
06:22:da:cc:f6:e9:74:6e:d8:a7:5b:bb:c1:71:ac:
fb:d8:22:fe:42:74:a0:1d:3f:0c:d6:08:02:ef:a1:
87:d0:99:94:51:52:eb:99:4b:62:37:00:bd:63:d0:
e9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E0:E8:1E:88:AD:4B:B5:E3:E8:A7:13:98:F6:80:EE:B3:F9:33:1B
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:62:1c:21:0e:20:a9:de:dc:8f:06:09:a4:dc:b0:42:d1:59:
89:b4:b0:8e:09:6a:61:91:04:86:94:ca:8a:35:0e:df:e7:8f:
bd:4c:f9:20:3d:ae:8f:ea:01:b2:30:c1:ad:a7:8e:5f:f0:d5:
ac:78:a4:8a:13:a2:3c:cb:cd:9c:f0:d6:95:6b:be:9a:ce:f7:
44:49:9b:b1:43:38:89:95:b6:b6:1b:a2:4f:f4:35:31:5b:50:
7f:19:56:37:20:ea:80:d9:44:cb:e7:c7:f1:7d:48:f4:af:8a:
a0:f0:8c:cd:09:81:67:1e:a1:08:ed:c0:7b:86:c3:70:81:e7:
42:e8:6f:6d:87:18:33:1f:c7:98:f8:20:32:8f:34:a5:94:84:
1b:26:59:a0:8c:29:13:15:e8:d0:d8:a8:5a:0a:f0:ea:c5:7f:
b4:17:1a:1b:dc:fe:3e:15:1a:1f:ad:d2:02:15:96:5f:a5:50:
f3:13:12:d2:e4:1c:64:ab:00:70:65:a6:43:cc:9e:de:d6:eb:
7f:37:bc:e2:37:86:b1:cc:c4:26:8d:80:af:66:ce:73:ac:28:
25:7d:52:2f:4e:b4:4e:34:40:3c:9c:d5:16:ae:d4:ed:14:e1:
41:12:78:3a:53:47:49:62:31:ab:87:12:55:29:cb:3a:dd:54:
ed:95:0b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 08:27:38 2026 by rpki-client