Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
File: ryfUX8GLqRerHomhfvC2NgmEgiQ.mft (raw, json)
Hash identifier: yNPomiBkDrP94PXOqfoOzpoJJSWz/7KkA2YqFx/joZ8=
Subject key identifier: 6A:6C:4D:DA:E1:6F:BE:5C:94:7E:02:C5:A2:3D:85:AC:CB:9C:63:5F
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 019E91019A04BF9723FCA91944424AE1AAB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
Manifest number: 15EB
Signing time: Thu 04 Jun 2026 05:01:01 +0000
Manifest this update: Thu 04 Jun 2026 05:01:01 +0000
Manifest next update: Fri 05 Jun 2026 05:01:01 +0000
Files and hashes: 1: UPdd3G2KcdZS3e0YMWJ1mdET7ug.roa (hash: fLa6myDFK6r7xHzOqHrp8ZBgZdrk6WJWWDhaOtDKTYI=)
2: ryfUX8GLqRerHomhfvC2NgmEgiQ.crl (hash: i7KhnYHYlWFRGqb4nVBKbDMVBNRPAfoA64q0PmZRyxk=)
3: tIyhjPYpgahql1s3g33PvZ8ic6Q.roa (hash: 2D85U464zzyXnN6q09EGipP8N8nVNvilmezlcS8OLVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:91:01:9a:04:bf:97:23:fc:a9:19:44:42:4a:e1:aa:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: Jun 4 05:01:01 2026 GMT
Not After : Jun 5 05:01:01 2026 GMT
Subject: CN=6a6c4ddae16fbe5c947e02c5a23d85accb9c635f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:57:ec:b1:a7:54:82:b5:c1:33:0c:f6:81:0d:
a5:a2:35:c8:b8:c4:0c:81:29:f2:c5:ab:4f:33:52:
e6:0c:e1:0f:16:1e:37:6e:d3:88:91:32:e0:62:ce:
b6:43:e4:51:93:53:bb:c0:6a:11:00:5f:15:fc:14:
cd:5a:52:cf:35:16:ee:2d:d5:e1:c5:6c:70:8d:ea:
e3:30:0a:cf:18:eb:b7:e2:e9:c5:a0:09:ba:9a:d2:
8f:69:01:8c:79:e2:92:a7:90:81:35:7b:82:58:40:
8d:f3:f3:07:0a:e6:1b:6f:fa:d4:97:2d:77:4c:8a:
61:00:a5:09:7a:00:d8:49:d3:e4:5b:81:d0:9e:f3:
37:14:9e:8c:a1:d6:54:fc:aa:9b:8f:cd:5e:f2:77:
1d:f9:d0:45:d5:25:77:8f:1d:6f:26:3a:8f:22:11:
e4:56:7e:fa:d5:68:4f:6c:6d:32:90:c2:66:04:ee:
f5:22:5f:f3:ee:7d:89:d4:18:5d:fa:1c:4e:55:e9:
38:0f:7e:e7:ef:b2:13:d4:50:ac:47:df:1b:56:a2:
75:2b:9a:71:43:ef:c5:10:68:0b:7c:66:20:e1:8b:
53:21:26:63:42:f4:52:13:bc:ba:6a:8b:d3:c5:69:
16:74:dc:86:06:87:49:c1:31:ec:b0:25:ab:b3:da:
0f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:6C:4D:DA:E1:6F:BE:5C:94:7E:02:C5:A2:3D:85:AC:CB:9C:63:5F
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:8d:b5:92:41:04:e4:0e:13:cf:c1:bc:77:50:ff:0f:d6:c8:
56:75:c8:37:a6:6e:be:b5:a5:01:85:86:e8:37:ba:e5:92:05:
7e:85:20:af:d0:f6:94:73:b7:fb:a3:ab:eb:7c:33:ce:59:95:
71:55:7d:03:07:5a:04:39:3f:a2:cc:bf:d6:57:74:49:1c:b5:
3f:f1:4e:70:a3:f3:00:07:2b:60:36:39:a4:8d:67:5f:be:06:
e1:13:21:86:52:48:bb:ca:1b:d7:eb:78:4c:26:01:30:fc:a6:
6d:37:a7:a4:61:48:af:a8:51:a7:2a:5d:db:51:76:f2:c0:c8:
99:b4:53:43:56:45:b7:ff:8b:2f:de:4d:18:ad:1c:d1:a2:7d:
e7:45:0e:9b:c4:5d:6a:14:f6:95:7f:1f:08:fc:e4:df:cf:1c:
ee:ce:78:02:7f:45:32:c4:14:72:18:7d:8e:55:94:40:6c:27:
57:bb:12:b7:bb:c6:11:87:4d:4f:c4:23:59:26:a3:53:2a:24:
27:d6:fb:4a:db:be:89:34:bd:d0:a7:e1:c7:9c:8e:3f:19:3f:
6f:23:93:43:a1:f5:61:ea:7e:74:9f:6b:ac:e6:d5:3b:c8:f7:
3d:92:8b:26:77:b8:28:d1:4e:e2:fb:6b:22:ee:1b:8e:f7:8c:
8e:bc:23:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:58:31 2026 by rpki-client