Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: g5akKDL68YiglDYRn1AKkq8hdUIAXC6ldvYkhpaOJns=
Subject key identifier: 19:37:C3:4F:BC:5E:05:3E:4A:7F:CC:A2:F5:D5:A9:D8:E5:2A:62:2A
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019CE9DC6DA01B8AC28985452E8A2E09A9C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 186B
Signing time: Sat 14 Mar 2026 01:01:03 +0000
Manifest this update: Sat 14 Mar 2026 01:01:03 +0000
Manifest next update: Sun 15 Mar 2026 01:01:03 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: ZqzBlQq/2sl9B9KJtfiDfN0mQgxBSObIV52i2UMrMn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 01:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e9:dc:6d:a0:1b:8a:c2:89:85:45:2e:8a:2e:09:a9:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Mar 14 01:01:03 2026 GMT
Not After : Mar 15 01:01:03 2026 GMT
Subject: CN=1937c34fbc5e053e4a7fcca2f5d5a9d8e52a622a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5f:87:69:2d:d1:a0:fc:ab:d3:b8:38:06:0b:
2a:38:53:64:21:67:3c:9d:01:36:c7:96:62:19:05:
3b:54:24:3d:79:10:f9:28:1c:4a:bb:99:37:d2:97:
99:f6:7f:2e:6e:79:86:7a:6f:db:8e:bd:ca:b8:bb:
b6:89:5a:f4:3d:4f:c4:5a:c6:fa:7a:52:7d:2c:a3:
59:05:be:d7:03:a7:7c:68:b6:c9:77:3b:7f:9e:20:
9b:11:5f:ac:a1:72:9e:e9:61:59:a5:0e:b3:32:26:
0c:92:11:cd:c9:0b:1b:16:f0:9e:04:6b:33:24:91:
4e:e3:1f:fe:de:3e:e3:ae:96:e4:4f:51:88:d9:16:
c9:28:12:25:7a:bf:df:ba:87:d7:55:f0:80:65:1d:
43:41:b3:59:60:13:4c:29:69:b8:0b:86:ca:b3:25:
e8:b1:f9:13:7f:25:d7:93:84:9f:81:3b:c4:40:64:
09:96:11:f2:76:45:5d:a8:0b:fb:02:fa:cf:60:6a:
fb:bf:6e:b4:34:7c:51:c5:ab:75:81:88:87:f1:04:
47:f5:58:f4:12:e7:15:5b:84:6b:bd:6d:e5:63:48:
f9:22:56:62:76:a2:9e:c2:57:dd:6d:bb:16:76:49:
d2:88:ef:41:c9:90:27:51:f2:6d:49:4c:28:6e:04:
36:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:37:C3:4F:BC:5E:05:3E:4A:7F:CC:A2:F5:D5:A9:D8:E5:2A:62:2A
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:9e:8a:9e:a3:b7:86:7a:f9:0b:55:6b:da:a7:38:5f:de:b8:
62:59:fc:a8:0c:da:63:a8:0d:70:9c:67:fa:74:e1:c6:8b:f5:
03:8f:2a:13:36:33:26:f3:88:7b:99:11:2b:04:f5:6a:0b:0d:
7a:74:f5:39:99:47:f1:bf:b4:5b:ff:28:68:91:8a:a3:3b:04:
08:64:15:39:27:a1:25:5b:34:d8:dc:f5:a6:16:3a:3e:66:de:
e1:a0:a3:8f:97:35:25:b7:4e:8a:0b:36:0a:3f:2d:83:77:b6:
b0:87:b4:77:88:38:e3:ee:2b:cf:a0:e1:9b:f3:18:ff:a5:a7:
20:89:d4:45:d2:c7:af:44:7c:78:58:ed:50:b9:4d:5f:03:7f:
f3:69:61:b1:89:80:bb:36:d4:72:81:23:04:3c:95:1d:51:9c:
e8:d3:eb:0f:5b:b8:8c:37:6d:09:be:c5:c1:a4:fc:cd:46:5e:
09:34:89:db:bf:23:ab:bb:5e:49:4e:ed:43:5d:f9:6d:40:69:
d9:7d:49:10:23:a9:57:34:be:a2:7b:6f:fa:a4:c3:bd:59:3a:
ac:9f:c6:8b:29:20:0f:42:fb:77:7a:45:3b:f5:5d:fc:bc:ec:
48:d4:e7:cc:82:1a:e4:e2:04:20:1f:e5:ee:3b:19:58:5d:3a:
4f:32:3b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 04:40:13 2026 by rpki-client