Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 2d7PGbPfGLuPFvH41ztYzJu9JfxxZ9Dbl34pz3nMCOA=
Subject key identifier: 7C:2A:29:60:F4:30:FC:04:E7:4F:07:98:0B:91:9D:7C:52:FE:67:13
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019CC52AC3A4AC2E34990AB6FACED71CCFD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1858
Signing time: Fri 06 Mar 2026 22:00:39 +0000
Manifest this update: Fri 06 Mar 2026 22:00:39 +0000
Manifest next update: Sat 07 Mar 2026 22:00:39 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 0YIv5D4Rctr0Bfp+YmJYouzXl5jm2i+TRmx7Kjylo9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c5:2a:c3:a4:ac:2e:34:99:0a:b6:fa:ce:d7:1c:cf:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 6 22:00:39 2026 GMT
Not After : Mar 7 22:00:39 2026 GMT
Subject: CN=7c2a2960f430fc04e74f07980b919d7c52fe6713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:72:f5:4b:2f:01:45:d7:17:b0:39:1b:99:58:
30:e5:fb:b9:6b:eb:a2:b0:12:29:e1:54:10:64:2b:
f8:06:1c:ba:ac:12:85:e5:08:8c:9c:9d:f1:a9:8a:
20:5f:08:f6:df:8d:d7:e9:96:5d:45:0e:5a:67:a0:
3f:d6:f4:a0:4f:86:93:8f:58:d6:a1:b9:1a:2e:69:
fc:da:d5:e8:23:57:e0:fa:28:65:56:a8:c7:a2:76:
af:4f:da:33:4a:0d:ea:1c:d7:99:5c:43:7f:89:1e:
19:02:fd:99:10:57:4d:b1:f2:ba:cb:fa:b5:30:23:
ff:75:8b:30:8f:41:fe:eb:7c:cf:8f:46:83:2c:58:
03:27:d1:66:48:79:9c:ab:bb:e9:a0:4f:1b:17:84:
d4:c7:93:ff:8a:cf:7b:8d:c9:0b:b5:d1:ee:3e:6d:
8d:30:19:08:45:36:e5:4a:63:31:c1:cf:ef:10:ea:
cc:17:27:71:68:27:98:45:c6:ca:b5:6c:20:65:35:
85:06:96:8a:f6:ed:0c:c1:68:31:ed:c6:30:be:07:
7b:98:ca:b6:59:39:da:92:96:b1:9d:19:46:77:72:
d0:2d:c2:0a:f5:08:4a:04:cd:4a:ee:e6:29:16:57:
7d:97:09:be:e0:27:24:86:01:a6:8c:2c:75:74:89:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:2A:29:60:F4:30:FC:04:E7:4F:07:98:0B:91:9D:7C:52:FE:67:13
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:19:45:7f:8d:91:8d:6d:51:68:4b:e6:49:fa:9f:11:f6:68:
93:99:3a:59:1f:be:11:4e:81:b1:7f:1d:49:c1:d5:8c:ad:50:
64:2c:82:5f:c6:3f:01:32:83:cb:73:5f:cf:cc:59:98:85:f0:
a3:7b:52:de:81:09:c2:9a:81:ba:eb:d4:36:f4:e7:75:86:47:
45:80:1e:fe:5f:94:0d:96:d3:f9:b8:a4:92:53:ad:66:dc:52:
98:a9:19:35:65:08:10:a5:d1:77:59:af:62:21:d9:21:60:5c:
f3:2d:34:a6:e9:0f:eb:00:d1:ae:4b:bc:a7:e9:d2:d4:03:12:
1b:28:10:0d:c6:fb:0f:41:ab:50:e5:98:6d:9e:55:38:81:31:
e8:d0:24:17:0e:e9:52:f1:8f:ed:c5:77:c3:f6:81:e9:b8:da:
eb:e8:0a:62:4a:e6:7e:57:e1:36:e7:83:d8:b0:d9:4e:2d:e9:
34:c7:11:e8:ee:c4:5f:3e:65:62:4c:06:d2:0a:95:33:bc:10:
93:09:21:05:86:c4:e9:a5:f1:af:80:37:28:51:29:18:07:4d:
93:50:ac:00:8f:eb:9d:38:8f:50:de:0b:9b:dc:66:41:9e:e4:
37:00:8c:55:9e:2d:fa:29:c3:02:7b:1c:64:55:9a:b1:e3:79:
5d:d6:b5:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzFKsOkrC40mQq2+s7XHM/RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwMzA2MjIwMDM5WhcNMjYwMzA3MjIwMDM5WjAzMTEwLwYDVQQD
Eyg3YzJhMjk2MGY0MzBmYzA0ZTc0ZjA3OTgwYjkxOWQ3YzUyZmU2NzEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHL1Sy8BRdcXsDkbmVgw5fu5a+ui
sBIp4VQQZCv4Bhy6rBKF5QiMnJ3xqYogXwj2343X6ZZdRQ5aZ6A/1vSgT4aTj1jW
obkaLmn82tXoI1fg+ihlVqjHonavT9ozSg3qHNeZXEN/iR4ZAv2ZEFdNsfK6y/q1
MCP/dYswj0H+63zPj0aDLFgDJ9FmSHmcq7vpoE8bF4TUx5P/is97jckLtdHuPm2N
MBkIRTblSmMxwc/vEOrMFydxaCeYRcbKtWwgZTWFBpaK9u0MwWgx7cYwvgd7mMq2
WTnakpaxnRlGd3LQLcIK9QhKBM1K7uYpFld9lwm+4CckhgGmjCx1dImTuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHwqKWD0MPwE508HmAuRnXxS/mcTMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfxlFf42R
jW1RaEvmSfqfEfZok5k6WR++EU6BsX8dScHVjK1QZCyCX8Y/ATKDy3Nfz8xZmIXw
o3tS3oEJwpqBuuvUNvTndYZHRYAe/l+UDZbT+bikklOtZtxSmKkZNWUIEKXRd1mv
YiHZIWBc8y00pukP6wDRrku8p+nS1AMSGygQDcb7D0GrUOWYbZ5VOIEx6NAkFw7p
UvGP7cV3w/aB6bja6+gKYkrmflfhNueD2LDZTi3pNMcR6O7EXz5lYkwG0gqVM7wQ
kwkhBYbE6aXxr4A3KFEpGAdNk1CsAI/rnTiPUN4Lm9xmQZ7kNwCMVZ4t+inDAnsc
ZFWaseN5Xda1gg==
-----END CERTIFICATE-----
Generated at Sat Mar 7 01:41:24 2026 by rpki-client