Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
File: ryfUX8GLqRerHomhfvC2NgmEgiQ.mft (raw, json)
Hash identifier: 1ml27YD+rpv5oFpC11X/u0rgjfzLU9EDj539eQ0zCGs=
Subject key identifier: 29:7C:CA:1A:2E:75:53:69:0D:6F:3E:5E:78:69:BB:9F:AC:66:6C:7D
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 019D37C006CBD9C516C95C0035D574C26AFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
Manifest number: 1538
Signing time: Sun 29 Mar 2026 04:00:24 +0000
Manifest this update: Sun 29 Mar 2026 04:00:24 +0000
Manifest next update: Mon 30 Mar 2026 04:00:24 +0000
Files and hashes: 1: UPdd3G2KcdZS3e0YMWJ1mdET7ug.roa (hash: fLa6myDFK6r7xHzOqHrp8ZBgZdrk6WJWWDhaOtDKTYI=)
2: ryfUX8GLqRerHomhfvC2NgmEgiQ.crl (hash: cDanyAq+VIG1ZHVO26l+L2YqVN6rBodrBdnRzOec4Yo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:06:cb:d9:c5:16:c9:5c:00:35:d5:74:c2:6a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: Mar 29 04:00:24 2026 GMT
Not After : Mar 30 04:00:24 2026 GMT
Subject: CN=297cca1a2e7553690d6f3e5e7869bb9fac666c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:b5:40:47:43:20:69:6f:b7:e9:d2:99:c4:df:
02:95:93:1d:51:ad:96:b0:8a:f2:1d:1d:bf:61:96:
62:e6:6e:90:87:65:75:92:5f:eb:1d:35:29:41:9a:
7e:8e:3d:63:2f:89:f6:ca:56:a0:6d:d2:a4:a4:34:
2f:cc:86:e0:3c:21:a4:d4:98:7c:06:af:5f:bb:8a:
52:0d:30:1a:54:29:33:22:c5:5f:15:70:1f:a3:ff:
74:90:f2:22:3b:bb:11:98:16:97:f6:fb:d7:e7:66:
bb:10:ef:12:0b:8d:d6:f5:8d:7f:f8:a4:d7:91:d8:
94:c7:37:28:59:3e:0d:46:7f:91:25:b8:23:f8:d7:
0e:16:27:a5:b9:4f:37:2f:0a:a8:b4:38:c6:aa:3c:
ba:58:02:4a:97:bd:06:b7:47:f1:ea:6d:d1:a4:1f:
8b:4b:7d:af:07:8d:59:f8:3f:b9:91:6d:d3:10:27:
6c:3d:92:7b:0d:03:37:37:56:bb:41:8d:37:3c:24:
78:3f:c6:ad:27:36:6a:14:53:12:9c:df:88:c3:44:
4f:c6:23:f1:af:7f:f7:95:e4:17:ce:28:32:48:59:
ce:4e:86:f4:77:93:96:02:a8:6a:df:da:af:3b:15:
9f:f3:4d:66:38:86:c4:d6:29:c6:5f:31:c8:84:e7:
d9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:7C:CA:1A:2E:75:53:69:0D:6F:3E:5E:78:69:BB:9F:AC:66:6C:7D
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:03:8a:82:54:57:30:1a:1f:94:d1:3d:b0:7b:a2:9c:23:52:
c5:6d:6e:7c:ee:c4:dc:c2:2e:05:18:d5:e6:40:9a:e4:bf:7e:
a9:eb:47:f3:29:42:93:56:0d:64:e0:10:33:9e:38:9e:eb:0b:
28:f6:c2:32:b0:b3:f8:74:76:40:70:13:40:14:9a:0f:81:19:
f4:a8:c7:d0:d6:64:7e:4f:f0:3d:7f:cc:e5:3e:11:7e:36:26:
f1:d2:fa:d3:d8:00:a9:6c:d7:af:19:05:10:73:7b:e4:77:4b:
b7:6b:ea:60:d2:36:3e:83:97:bd:1b:03:7f:6a:b7:75:c4:1c:
73:1c:29:c0:78:31:69:41:f0:8a:eb:af:4c:4c:7e:43:1f:ce:
9a:59:1d:d2:87:6c:94:66:5a:64:13:4a:1e:69:f5:7b:c9:17:
5f:52:5b:e7:34:64:72:44:12:f9:9b:84:6b:c7:e0:5e:25:4b:
bb:64:96:87:93:bc:44:ba:e3:73:86:dc:15:db:34:36:96:e3:
e3:6c:1c:06:36:64:e8:85:65:0d:68:82:b3:8b:8b:ff:2c:03:
55:fa:8d:d2:09:c0:77:50:6f:16:9b:c9:68:7b:97:bf:80:55:
e0:f5:6b:29:8b:20:19:6d:76:8e:ec:23:e7:58:2d:2c:6a:38:
52:7e:d9:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:26 2026 by rpki-client