Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: fsscO8Ni8ywjiRviY9pOgvK+fwLA+Ckzmz8oDmIIKBA=
Subject key identifier: E9:E8:E8:01:56:48:F4:5B:FD:C1:F0:D1:4D:DC:41:86:07:13:DD:64
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019D010916B463AF89DFCB174F90B65924AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1877
Signing time: Wed 18 Mar 2026 13:01:05 +0000
Manifest this update: Wed 18 Mar 2026 13:01:05 +0000
Manifest next update: Thu 19 Mar 2026 13:01:05 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: jaeTckRuNDDPzWRx6+jIbvkCvyZebnj1MMkutkN8+m4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Mar 2026 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:01:09:16:b4:63:af:89:df:cb:17:4f:90:b6:59:24:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 18 13:01:05 2026 GMT
Not After : Mar 19 13:01:05 2026 GMT
Subject: CN=e9e8e8015648f45bfdc1f0d14ddc41860713dd64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5e:8a:f2:f3:9e:36:40:35:14:33:12:fa:24:
8f:f1:b4:08:56:d9:af:aa:c2:e2:b8:2a:98:e6:bc:
cc:42:72:d4:b4:24:7b:ab:71:ae:cc:d6:d4:78:43:
01:7b:a6:c3:59:79:cd:f4:30:1e:2a:a0:f1:d7:60:
aa:a0:da:1f:b4:74:69:75:04:b3:4b:4a:1f:29:c4:
4b:a5:70:5f:8c:7f:29:41:7b:88:49:2f:e3:d6:b6:
c6:05:e4:eb:a1:f5:5e:8b:ea:67:1d:51:42:18:2c:
44:03:a5:82:4f:51:04:26:5c:08:ce:27:d9:02:69:
a0:62:e3:0f:31:75:a5:6c:83:f2:f9:09:22:65:ae:
a6:02:ce:ba:ef:d1:ec:70:27:7a:0b:89:25:8d:c1:
34:89:86:ff:ee:77:05:8c:13:c5:09:76:71:8f:da:
55:05:41:d6:0b:9c:23:41:9f:7a:32:d4:22:ae:23:
b5:42:57:a7:2d:77:ba:7f:85:4b:0f:a8:72:f3:d5:
a6:24:92:f9:b0:01:50:a6:4a:33:8c:9e:8f:76:65:
1a:aa:05:3e:b3:c6:9b:86:a9:77:0e:85:8b:32:c8:
f9:24:30:fc:70:11:bc:91:64:ea:b2:cc:48:07:b6:
59:a6:66:e9:1f:d0:23:27:e9:cb:8f:bd:1f:02:4e:
46:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:E8:E8:01:56:48:F4:5B:FD:C1:F0:D1:4D:DC:41:86:07:13:DD:64
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:9a:31:d3:95:16:e3:41:da:30:76:9d:4f:d5:7d:97:ef:2c:
1a:77:e8:3a:08:41:d4:5b:93:fd:41:98:50:c2:22:77:1e:88:
d3:6c:be:f7:a2:f3:a4:e3:ab:85:b6:79:27:22:e1:97:33:f9:
bc:bb:08:2f:f3:c6:c0:6f:de:c2:83:94:fa:e1:38:33:30:62:
31:d3:ec:ad:13:ec:d1:1a:ed:1c:5e:32:4e:2f:d9:76:f5:8b:
24:34:0a:43:7f:5b:69:e1:75:41:14:b9:17:6e:8c:6e:25:eb:
70:ba:eb:40:fd:50:8c:76:de:8a:6b:71:8f:72:b6:3c:15:cf:
92:4c:68:31:ff:01:70:5f:fc:51:cb:18:3f:61:81:8a:60:df:
4d:ab:d8:86:66:51:89:de:24:52:45:b2:21:a5:8f:43:5b:8e:
a2:19:3c:e3:72:61:81:68:f3:7c:e7:3d:6e:2b:f8:b4:c6:1a:
85:26:ca:ef:ad:dc:65:83:a6:02:c1:22:17:16:7f:fb:ec:fe:
27:55:45:1b:55:7d:c2:72:c5:ff:83:20:18:72:bd:4a:7f:47:
cd:80:63:ec:af:50:2c:1a:40:9f:7f:d5:94:22:de:1b:c5:0e:
fc:b0:ba:d3:1b:c1:17:d2:63:33:bd:e9:a2:a5:6a:39:65:30:
b8:c2:2c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 18 20:41:07 2026 by rpki-client