Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json)
Hash identifier: Xm0Llc3FX13w4YAPxWXxAl2bmS5SOQEuQHvwc8pMgYU=
Subject key identifier: ED:3B:49:35:94:38:55:FD:00:05:1F:B5:D9:52:C3:21:7B:30:75:9C
Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Certificate serial: 019D3865DA7F34A26D01FF2CF39C2D197978
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
Manifest number: 17F5
Signing time: Sun 29 Mar 2026 07:01:32 +0000
Manifest this update: Sun 29 Mar 2026 07:01:32 +0000
Manifest next update: Mon 30 Mar 2026 07:01:32 +0000
Files and hashes: 1: ECi1vnqUM-fxIfMgxs6Z6zPn5G8.roa (hash: vGQVzQW6eOz/ocuImvFOzh/r1Lw9xkrPt/351GBE1Vg=)
2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: sS4FqTBP7BsuVC0tN5sHK+b2q3WGbfr2NpGH4uhGr/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:da:7f:34:a2:6d:01:ff:2c:f3:9c:2d:19:79:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Validity
Not Before: Mar 29 07:01:32 2026 GMT
Not After : Mar 30 07:01:32 2026 GMT
Subject: CN=ed3b4935943855fd00051fb5d952c3217b30759c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3b:a7:ee:62:71:b0:d9:1a:a0:75:1e:7a:76:
5a:40:16:b2:59:aa:56:68:e4:35:7c:7b:6a:a1:00:
36:f4:b5:27:b2:5b:28:dd:f2:76:80:90:c7:22:bd:
55:cd:96:90:2f:6f:9a:e9:cc:33:dd:68:84:f4:68:
14:40:a7:08:89:e2:fe:a8:d4:0c:0d:ea:53:8e:7c:
21:28:8e:f7:0d:b0:1f:14:53:c1:ed:2c:54:ae:fe:
fc:e5:1a:77:ad:7b:4f:85:ce:c1:79:cd:20:6a:7e:
24:66:79:cd:ac:99:57:47:fb:0e:17:0c:13:7f:b3:
c9:f7:be:73:3b:c6:0a:77:22:f9:2a:a3:99:7f:2e:
8e:a7:8a:95:a1:05:f3:1a:37:c7:4b:07:0f:3e:23:
66:e1:ff:ed:25:08:88:f9:22:6f:35:81:7b:85:03:
08:d4:b4:a6:59:03:4e:ab:04:94:52:76:02:e3:3a:
f6:6f:48:07:60:98:3e:79:57:f4:0a:3f:92:a5:f2:
dd:8b:dc:b2:f9:84:62:b6:fd:15:14:20:ac:02:10:
0e:9b:45:6a:68:f7:16:7f:8e:53:ff:c4:ae:3c:6e:
45:67:fa:d9:16:e4:ee:05:53:ac:02:e4:63:7a:f0:
dd:c0:50:ac:bb:d1:22:d3:e6:77:4d:70:2a:12:71:
66:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3B:49:35:94:38:55:FD:00:05:1F:B5:D9:52:C3:21:7B:30:75:9C
X509v3 Authority Key Identifier:
keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:86:67:07:15:f0:35:af:97:bf:70:56:c2:6d:03:f6:59:34:
68:d4:c4:a8:23:e1:ec:30:76:9c:ba:57:c6:d7:15:b2:a8:67:
f3:c3:3a:d4:30:c6:29:fc:c8:bd:4b:87:87:78:03:d1:37:8a:
f4:cb:39:0d:78:63:ca:c8:5e:f9:a1:ce:d5:85:36:7f:04:d4:
7a:19:d7:10:71:9d:f3:b9:19:e0:77:b7:a9:1f:e5:a7:25:91:
50:42:26:98:74:41:5c:9e:cb:e8:8a:e7:24:40:4d:0a:a1:da:
d8:af:2a:07:61:ef:53:c9:d4:f3:87:f7:8f:f2:f1:ac:fa:f4:
e9:89:4d:5b:02:a8:1e:c1:d3:44:da:aa:5c:90:5b:0a:24:17:
02:49:e0:39:e4:00:0a:ba:83:c0:f9:a2:12:81:55:27:ad:99:
e7:b2:fa:08:b2:7f:81:59:06:ed:ae:61:12:6d:57:5c:05:6d:
44:25:2a:1c:11:45:2f:9e:ed:63:57:8e:91:15:16:33:38:b0:
ae:a5:42:c8:69:34:75:49:8a:de:43:38:37:b7:0f:af:8d:6d:
89:86:25:fe:b9:df:b8:f8:16:4f:b0:28:09:ef:76:90:7b:09:
28:42:04:0d:f7:85:6a:ca:e0:7c:3e:79:b5:df:40:8c:ba:eb:
59:d4:74:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:03 2026 by rpki-client