Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: jjFWzOf1HvVjVq/4QYVtAuoH+C295ValrXUY53aRPoo=
Subject key identifier: 85:EC:5F:47:62:BE:1E:2E:40:00:D8:7D:80:84:51:FB:91:16:26:CF
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DE4EA7206009CF2EFA84F4EE7D7F69C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18ED
Signing time: Fri 01 May 2026 19:01:02 +0000
Manifest this update: Fri 01 May 2026 19:01:02 +0000
Manifest next update: Sat 02 May 2026 19:01:02 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: VBX0MINxZ98z9Q1VGMe8JQTgqSUpNSFMT+blE6KaEb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 02 May 2026 17:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:e4:ea:72:06:00:9c:f2:ef:a8:4f:4e:e7:d7:f6:9c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: May 1 19:01:02 2026 GMT
Not After : May 2 19:01:02 2026 GMT
Subject: CN=85ec5f4762be1e2e4000d87d808451fb911626cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e9:04:3d:d4:0e:2b:29:0d:76:76:85:5c:3a:
56:cc:62:bf:f2:d5:5c:7b:3c:f7:e1:b7:33:70:14:
2e:a3:dc:cc:07:22:b7:7e:59:28:3c:1e:e6:29:c0:
8e:b5:09:2f:87:c2:e7:80:9e:00:b3:2d:23:55:86:
63:e3:56:2d:27:55:e8:e3:0e:40:88:05:9f:ac:30:
3d:62:6e:da:20:69:8c:95:15:49:c8:92:1e:85:ca:
80:04:d2:f5:93:4b:83:e4:70:96:98:60:de:b3:8d:
73:e3:f7:fa:fc:a8:e9:3a:0e:ff:fd:c5:d2:1e:b9:
c7:a5:fb:e3:c1:54:14:63:bc:eb:ca:3e:fd:0a:44:
0c:62:b0:de:80:65:22:85:2d:05:f1:5a:79:c9:33:
b4:65:4c:19:80:b7:c1:09:1a:b3:57:2a:a5:ef:63:
88:bc:d3:7d:7d:63:69:d8:c9:ac:29:5c:0a:0c:0a:
c2:ce:96:b0:f0:76:14:ad:cc:02:41:e1:23:23:65:
3f:01:97:7c:e8:d8:ef:05:67:5f:c8:f2:89:2d:72:
8c:d0:2a:19:72:b0:c2:d5:1d:b6:56:cc:f9:63:b3:
2f:d3:0b:ab:9f:3b:1f:bd:8f:5c:ad:77:10:b6:f1:
2a:92:78:a9:0e:64:2c:69:1b:70:f0:2f:df:e7:2e:
d8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:EC:5F:47:62:BE:1E:2E:40:00:D8:7D:80:84:51:FB:91:16:26:CF
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b8:e2:ed:75:97:e2:44:fd:d5:8e:a0:1d:9c:bf:0d:60:3c:
8b:dd:69:82:d0:f4:ed:f9:6c:38:19:99:97:7f:b9:ee:1d:6f:
eb:04:72:c4:57:12:8c:4a:65:2b:1a:56:f0:2a:86:22:16:b4:
40:96:c9:82:b8:f5:0d:80:82:a4:07:0b:95:2b:90:b2:2e:7e:
e4:7e:72:e8:03:5d:cc:2c:f7:37:3a:dd:13:64:a5:60:1c:0a:
7b:fa:82:7c:b2:51:ba:03:e1:8a:ad:c0:a3:0d:cb:f1:7e:d8:
03:ac:6c:f5:5f:27:aa:77:e7:cb:2d:fb:45:c1:38:af:98:ef:
9f:cc:32:26:3b:e2:6f:25:64:9e:96:55:2c:49:e8:f3:55:61:
09:d5:a2:16:bd:8d:5c:c4:1a:9b:a2:d1:82:8c:7d:5b:ea:99:
7b:e7:27:3c:c2:44:1b:d4:b6:82:7c:d3:63:99:19:c9:4a:1c:
08:f4:9b:8d:ad:2c:cb:d7:43:d0:1f:cd:9e:22:03:4b:fb:6b:
7c:09:20:e9:44:9c:67:3d:f4:95:c3:b3:ff:8b:70:47:ff:2a:
73:ec:39:43:c5:0d:39:96:d3:b4:52:94:88:c3:fb:51:49:bd:
ac:b1:b6:05:ba:03:06:24:18:5f:29:44:82:eb:f2:59:b7:04:
74:ac:cd:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3k6nIGAJzy76hPTufX9pwCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4
ZjdkMjEwHhcNMjYwNTAxMTkwMTAyWhcNMjYwNTAyMTkwMTAyWjAzMTEwLwYDVQQD
Eyg4NWVjNWY0NzYyYmUxZTJlNDAwMGQ4N2Q4MDg0NTFmYjkxMTYyNmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOkEPdQOKykNdnaFXDpWzGK/8tVc
ezz34bczcBQuo9zMByK3flkoPB7mKcCOtQkvh8LngJ4Asy0jVYZj41YtJ1Xo4w5A
iAWfrDA9Ym7aIGmMlRVJyJIehcqABNL1k0uD5HCWmGDes41z4/f6/KjpOg7//cXS
HrnHpfvjwVQUY7zryj79CkQMYrDegGUihS0F8Vp5yTO0ZUwZgLfBCRqzVyql72OI
vNN9fWNp2MmsKVwKDArCzpaw8HYUrcwCQeEjI2U/AZd86NjvBWdfyPKJLXKM0CoZ
crDC1R22Vsz5Y7Mv0wurnzsfvY9crXcQtvEqknipDmQsaRtw8C/f5y7YKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIXsX0divh4uQADYfYCEUfuRFibPMB8GA1UdIwQY
MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt
ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5
LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiLji7XWX
4kT91Y6gHZy/DWA8i91pgtD07flsOBmZl3+57h1v6wRyxFcSjEplKxpW8CqGIha0
QJbJgrj1DYCCpAcLlSuQsi5+5H5y6ANdzCz3NzrdE2SlYBwKe/qCfLJRugPhiq3A
ow3L8X7YA6xs9V8nqnfnyy37RcE4r5jvn8wyJjvibyVknpZVLEno81VhCdWiFr2N
XMQam6LRgox9W+qZe+cnPMJEG9S2gnzTY5kZyUocCPSbja0sy9dD0B/NniIDS/tr
fAkg6UScZz30lcOz/4twR/8qc+w5Q8UNOZbTtFKUiMP7UUm9rLG2BboDBiQYXylE
guvyWbcEdKzNBw==
-----END CERTIFICATE-----
Generated at Sat May 2 03:32:35 2026 by rpki-client