Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: LXDwqvTbfcNyWzvg1FUbrrVTcJuf7a2NQGuXHg90uHU=
Subject key identifier: 32:06:04:49:E5:05:66:69:17:59:6A:FC:BC:5A:EB:37:89:4E:CD:18
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DBE4AB7D4654C1B2CD12E15F10695472A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18D9
Signing time: Fri 24 Apr 2026 07:01:00 +0000
Manifest this update: Fri 24 Apr 2026 07:01:00 +0000
Manifest next update: Sat 25 Apr 2026 07:01:00 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: P6UduI0hq15xSkyg8qwO+QF8YCvzPBcydbj7pPYLJrU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Apr 2026 07:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:be:4a:b7:d4:65:4c:1b:2c:d1:2e:15:f1:06:95:47:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 24 07:01:00 2026 GMT
Not After : Apr 25 07:01:00 2026 GMT
Subject: CN=32060449e505666917596afcbc5aeb37894ecd18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e2:19:b3:70:53:94:d1:80:83:56:c7:bb:18:
78:4e:24:c1:e0:a7:33:2f:d6:23:c9:98:05:1a:71:
d3:7f:7f:8d:77:8c:6d:87:16:76:66:82:52:65:34:
2e:a7:f1:63:d4:87:40:ff:7b:1a:1d:68:6b:b0:f4:
1b:f9:59:c2:0d:7c:db:3b:ef:2a:30:1e:12:bb:75:
dd:78:ff:5e:ec:de:e2:42:da:dc:2b:dc:a8:ef:56:
8c:29:7c:04:80:84:30:a2:e9:bd:c6:ca:17:de:f7:
d3:11:26:86:3f:c2:8b:82:0b:49:37:a5:6f:87:08:
19:fc:db:2e:a6:82:10:48:cd:f9:92:ba:30:f1:e1:
31:4e:5f:4f:8d:42:9f:11:3c:67:0e:f8:95:8f:a5:
6b:81:73:e1:6f:b5:68:fd:be:12:c4:18:34:91:2e:
96:d7:d4:12:31:d7:51:5b:27:c1:df:80:ee:6a:97:
38:2a:23:f1:11:f7:3c:cb:89:3b:86:78:27:e3:0f:
c1:bd:f1:ec:b2:0f:08:78:40:ed:a2:b6:e2:b5:3f:
c3:38:5f:18:c9:b4:09:ea:1f:40:4d:0c:4b:9b:af:
96:79:58:fc:8c:17:a5:2b:f6:46:47:cc:02:4c:25:
85:12:ca:e6:1f:cb:2b:b2:ac:8c:12:b2:66:54:fb:
43:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:06:04:49:E5:05:66:69:17:59:6A:FC:BC:5A:EB:37:89:4E:CD:18
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:dc:56:6a:4c:22:0b:ac:ef:99:92:4a:83:4f:55:6c:77:bb:
06:8a:1c:1a:58:b1:73:49:b8:99:2b:de:3b:89:7a:ac:b1:93:
f5:a7:fe:30:8f:48:04:ee:97:97:89:40:63:25:28:27:0b:20:
7a:46:e8:22:56:91:f2:e8:5c:fc:2a:66:f1:40:74:db:dc:4e:
ff:23:fc:c6:45:7f:57:ce:74:b3:60:ad:46:dc:ca:b2:fb:88:
88:8d:92:a6:4e:90:13:ea:68:22:57:f7:1e:35:7e:26:af:5c:
a5:42:f3:8f:26:aa:2f:53:9c:70:d0:00:22:7c:26:33:22:62:
69:12:4a:d9:47:88:5b:14:e3:09:c8:f6:a8:96:e3:55:ee:d8:
c7:fd:96:d8:e6:c8:08:ea:dd:ca:d7:56:80:0a:42:5a:21:54:
d6:a7:af:91:63:62:86:16:cc:cd:e4:31:15:4f:40:e7:75:3c:
2a:f3:12:0f:e3:c4:83:29:af:c5:2a:ae:86:f1:fd:3f:16:c0:
81:9c:da:95:e8:ab:16:4b:da:47:2b:06:3f:db:f8:33:5a:59:
7b:71:22:fa:78:0d:80:01:53:88:b4:23:b1:f5:94:14:cf:dd:
f1:cc:4e:86:2f:b5:81:72:cd:69:2a:99:5b:9c:70:78:f9:5b:
2b:7b:74:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 24 12:35:14 2026 by rpki-client