Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 9KNMDhUhdd8QgLLv8jj1u/NnO5a2kKzOBqvKSdCEr4k=
Subject key identifier: 1D:B0:51:C6:D6:65:6C:0D:C4:CC:B0:BB:88:C7:CC:02:BD:7E:F4:27
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019DB2B4605056E66AE80229E68CB0A34494
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 18D3
Signing time: Wed 22 Apr 2026 01:00:58 +0000
Manifest this update: Wed 22 Apr 2026 01:00:58 +0000
Manifest next update: Thu 23 Apr 2026 01:00:58 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: RbHfiRaTWpjFHWLiQlrrJ3F7uoBtjUjYh3/23Eu1xQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 01:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:b4:60:50:56:e6:6a:e8:02:29:e6:8c:b0:a3:44:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 22 01:00:58 2026 GMT
Not After : Apr 23 01:00:58 2026 GMT
Subject: CN=1db051c6d6656c0dc4ccb0bb88c7cc02bd7ef427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:10:e1:65:16:53:a9:6f:e1:b3:e2:ff:3e:34:
28:ec:31:12:83:74:ce:f9:87:98:db:f9:fc:44:34:
7e:4e:ed:33:1f:2f:8a:70:a0:d7:0d:70:68:81:fc:
3e:25:48:17:98:09:95:fa:98:b8:dd:b8:fe:1f:12:
fd:5e:a5:6f:b3:a3:d8:72:c3:e2:b3:f8:3e:1f:cd:
ce:51:29:21:9b:b3:54:65:55:ed:f8:77:ec:5b:4a:
f7:22:60:01:df:96:bd:90:0b:1c:88:80:4f:fd:c3:
ae:a7:3d:d7:a3:7f:bf:a6:53:06:f8:77:de:7a:85:
d9:a2:d7:1a:90:06:40:55:84:8b:15:aa:1d:ca:46:
ec:0f:e1:a3:27:35:bc:40:20:af:a1:1e:2d:0a:e4:
25:63:a8:8e:de:6e:35:18:b9:fd:65:87:21:22:62:
af:0f:2a:58:12:5c:8b:1d:bc:11:a3:3a:1e:fd:b7:
e2:90:0e:30:a3:ae:47:3b:79:64:25:33:5f:f9:2d:
f1:87:86:63:eb:45:23:20:a2:56:8a:33:87:e0:10:
f6:ef:c3:34:d3:76:ae:d6:59:75:1c:ca:79:5a:20:
5b:c2:8f:ec:03:06:64:c0:71:54:35:ed:c5:f3:a5:
18:1d:c0:a2:85:57:a8:bd:87:42:d0:ea:a9:16:f0:
82:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B0:51:C6:D6:65:6C:0D:C4:CC:B0:BB:88:C7:CC:02:BD:7E:F4:27
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:67:b5:1b:dd:35:1e:3f:47:5c:99:a0:98:c1:76:9e:7a:22:
ed:7a:6c:6a:21:fc:bd:f6:8c:0c:6b:00:70:dc:ea:22:22:75:
c1:70:a8:9b:fb:4b:bb:f4:4f:b3:11:20:69:7d:14:45:5f:07:
77:6f:73:dd:bf:b1:08:89:ce:ea:cd:fc:40:33:18:a3:60:34:
9a:6c:52:41:73:69:e1:21:a7:77:1b:df:fa:17:53:25:b4:0e:
d7:5e:cb:85:4d:1f:42:a6:1f:87:bc:b8:0a:a3:b1:7a:3d:ee:
ce:19:eb:35:20:06:08:84:13:d9:b7:bc:a9:3c:47:4b:f1:3d:
1f:e8:6c:6c:f3:e3:8d:4c:d9:78:aa:33:4d:c3:cf:66:92:7b:
1f:ee:bf:89:97:c7:08:c6:8a:c0:d4:cf:2e:f2:18:38:a2:8b:
fb:d9:20:bb:d9:a3:ad:d4:9c:e5:18:8e:0a:4d:62:ef:d7:ce:
39:1f:85:55:60:a9:85:db:12:87:c9:25:87:a8:8b:36:f9:8e:
6a:c1:10:6f:b8:68:b0:29:7a:41:c6:e0:e0:1f:d4:23:8e:6d:
7d:97:b8:d0:30:64:a6:66:0c:ae:78:8b:6f:3d:a0:3c:b4:d3:
31:e3:ea:5f:7f:e1:38:10:ef:2e:21:cf:bd:05:5d:18:9d:d3:
05:4f:ea:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 11:28:58 2026 by rpki-client