Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: FBNqUdSeeVWeIKgE3BOrw4V0MpjgMHTzao8FvGRZnA0=
Subject key identifier: 35:C0:D6:0E:8D:B3:EF:3F:BE:0F:63:1C:84:24:21:03:72:33:CF:CD
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 019F11C041B3BFACD1957F2068DF8D8611E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0E2D
Signing time: Mon 29 Jun 2026 05:00:40 +0000
Manifest this update: Mon 29 Jun 2026 05:00:40 +0000
Manifest next update: Tue 30 Jun 2026 05:00:40 +0000
Files and hashes: 1: QBW11jyT74R8oUHhAinuj7gPXSk.asa (hash: yZJV0811rYsc05YANwSpX99f0QsW0swdHpcFUdFqr0Y=)
2: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: 4nLWoXVZe++5gjL+1SHXnRAAvQi0JB4/jCPpFUJPiL4=)
3: zakSxSI_wYoHQeaPnt8X9AknTHE.roa (hash: DFDQf/fadQ5V13foLZM1hVw4SY7MFQSi7KXroTzcGGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:41:b3:bf:ac:d1:95:7f:20:68:df:8d:86:11:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Jun 29 05:00:40 2026 GMT
Not After : Jun 30 05:00:40 2026 GMT
Subject: CN=35c0d60e8db3ef3fbe0f631c842421037233cfcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:be:64:b8:bd:81:c5:5a:56:2e:de:55:f8:e1:
8f:3a:eb:79:8a:cc:db:72:45:e3:cc:c0:85:47:f1:
e2:b7:6d:2c:3b:56:61:08:42:ec:8c:a0:87:d2:5f:
c6:f3:83:54:fd:70:a6:fc:7b:2c:8c:8e:94:2b:3a:
15:60:79:aa:6a:76:a5:af:7f:77:d3:9f:d3:95:d1:
bf:81:c5:84:eb:99:03:a0:2b:74:14:05:f6:46:0a:
cc:87:e2:95:11:c9:08:c5:f5:61:a7:11:a8:5f:bd:
86:39:cd:06:67:c2:95:ae:93:cc:c4:d7:08:f5:b4:
d4:06:0f:c5:35:b8:fd:8b:ad:bc:91:a6:13:98:c5:
b3:85:db:8d:e0:fc:17:5b:55:2d:b3:c5:60:31:37:
2e:3b:b1:92:03:49:84:6e:7a:a9:b7:b4:4e:f1:99:
67:51:25:7f:41:29:92:38:a0:49:b2:e6:4c:1e:5f:
e3:fc:71:2b:88:d0:19:97:93:21:d6:eb:ec:19:ea:
86:63:a2:21:9e:98:58:4d:37:64:fb:4b:c9:fb:b7:
a5:6e:2e:c4:64:96:27:08:cb:80:d9:37:ac:39:bb:
f1:36:1e:7b:c3:43:f4:b0:4e:be:cb:b6:0d:09:cd:
05:29:0d:16:62:65:04:e2:6f:f8:ae:b3:dd:06:97:
c2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C0:D6:0E:8D:B3:EF:3F:BE:0F:63:1C:84:24:21:03:72:33:CF:CD
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:8a:c4:8f:d0:7d:11:67:d1:ac:10:b3:06:53:e6:81:99:d5:
d6:78:60:f1:a3:59:dd:9f:d0:99:88:82:4b:bc:00:4d:05:ab:
2f:df:eb:8f:e7:6e:e0:ec:d9:39:27:ae:db:96:22:fe:83:3b:
07:53:45:62:29:57:c4:1c:e8:52:90:1f:e4:01:76:6d:dc:6c:
33:c8:0d:29:73:5f:18:06:26:18:24:96:26:af:f6:db:3d:fc:
f1:57:53:63:d0:9e:44:18:4c:2e:64:91:7d:f5:4e:b6:3e:40:
b2:79:56:08:db:55:3b:d7:70:66:e1:6d:62:c2:a8:3c:d8:b4:
18:7a:07:7e:fa:af:11:13:03:1d:00:fa:7d:11:65:2f:b0:4c:
35:f5:8b:2a:12:0a:51:63:cf:98:85:13:c2:49:ee:7f:b3:09:
56:c4:dc:71:46:e8:87:91:94:b4:0e:81:56:d5:72:49:07:a5:
af:0e:6f:66:c4:af:62:f7:a9:fb:b8:5a:e7:a4:1e:35:b2:aa:
ad:ac:3b:e0:aa:4b:e4:99:cd:60:12:09:b3:c6:06:1a:60:44:
d8:cc:a8:46:e7:27:56:f0:bb:98:e8:ec:a3:52:76:06:3d:99:
1c:ba:45:f6:fd:59:90:90:bc:d3:65:99:43:4b:0e:48:f9:8e:
5c:50:72:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:40:55 2026 by rpki-client