Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: CN5s7NybD/HBUh6VYFb+nFJRYRFQ8wrUaNJ1plfpejA=
Subject key identifier: D4:96:5A:00:FD:F4:8A:43:72:2F:75:93:D0:9F:8E:39:B2:AF:AA:B1
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 019E281471BE4EE55F12284E147278083FF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0DB4
Signing time: Thu 14 May 2026 20:01:28 +0000
Manifest this update: Thu 14 May 2026 20:01:28 +0000
Manifest next update: Fri 15 May 2026 20:01:28 +0000
Files and hashes: 1: QBW11jyT74R8oUHhAinuj7gPXSk.asa (hash: yZJV0811rYsc05YANwSpX99f0QsW0swdHpcFUdFqr0Y=)
2: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: 0PD2VkoPWFNvUuo+ViA0wVKnuq0XWqHMPPiQ6HaX+Xk=)
3: zakSxSI_wYoHQeaPnt8X9AknTHE.roa (hash: DFDQf/fadQ5V13foLZM1hVw4SY7MFQSi7KXroTzcGGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 20:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:14:71:be:4e:e5:5f:12:28:4e:14:72:78:08:3f:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: May 14 20:01:28 2026 GMT
Not After : May 15 20:01:28 2026 GMT
Subject: CN=d4965a00fdf48a43722f7593d09f8e39b2afaab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f5:1f:02:15:be:f6:6e:58:12:67:3c:50:31:
b2:e6:c8:c4:26:a8:6d:fd:30:61:29:ec:68:27:79:
cb:26:b3:1a:b9:4f:1c:c5:38:45:7d:c7:f5:99:44:
a2:e9:49:c4:f7:58:d9:7a:4e:28:d3:94:59:87:23:
ab:d9:73:ff:d3:5f:fa:9e:c8:90:7d:33:ec:ea:0f:
61:96:5e:44:e6:3a:f3:2d:2e:00:fb:d9:00:86:c6:
de:c0:3b:ab:ed:49:40:a3:01:b2:b8:34:89:1d:7a:
ae:a5:a3:36:8b:b4:d7:69:c8:16:78:a1:c8:06:b6:
f6:c3:93:95:c5:38:3f:05:3f:06:7d:26:cb:ad:c6:
aa:88:8d:a0:a7:9c:d1:81:11:b7:64:c3:a2:2c:7c:
f1:37:c2:94:98:ae:0c:69:c8:26:cd:ff:bf:3c:42:
ec:dd:73:c7:7d:91:a9:0b:8f:68:e5:47:c1:40:b8:
c8:e0:86:53:79:4d:6a:81:ce:21:56:d8:c6:12:a5:
ea:5d:83:b9:37:e7:b4:be:68:ee:43:97:cc:8c:88:
7c:56:02:5b:1d:5b:8b:c6:29:f6:44:0c:02:a6:eb:
d4:fe:15:bf:e2:59:62:00:ae:25:7b:9f:5a:99:24:
63:a7:e5:45:84:8b:3f:71:51:8a:4f:9d:19:f9:b2:
c4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:96:5A:00:FD:F4:8A:43:72:2F:75:93:D0:9F:8E:39:B2:AF:AA:B1
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:d3:43:35:b5:2b:9d:91:a6:95:cf:08:21:e0:4e:89:3b:38:
01:8f:41:22:d7:a1:e0:8f:8a:d2:60:26:31:c1:72:2c:5a:1b:
4f:dd:b8:5f:1b:2b:36:5b:a7:a5:15:27:3a:a6:63:c2:f0:77:
ae:c1:d4:58:35:0e:cd:66:e0:27:45:79:28:8a:93:e9:43:96:
c4:36:dd:95:c9:87:cb:22:5b:2e:4c:fb:90:a2:0f:46:40:8f:
df:be:9b:61:a8:bd:7c:4a:6b:94:1e:6b:00:a3:31:6f:52:f6:
16:51:ea:b7:d6:d4:e3:8c:62:be:61:a6:c3:31:45:2a:95:e4:
8c:6e:78:cd:af:01:7d:43:fb:a5:4c:e9:88:7d:19:15:b3:55:
8b:b4:e9:6d:03:e6:9e:e3:71:bc:00:d9:08:1d:86:17:2d:85:
11:e7:7a:f8:db:8c:12:57:3e:9c:58:f2:4c:ee:cf:cd:5c:2d:
eb:60:59:94:05:8d:10:15:86:6c:83:69:f4:6f:d5:7e:5c:99:
52:ef:69:4c:a6:d9:f7:19:81:76:57:87:65:43:1f:79:e4:26:
74:47:ed:5c:db:c9:8d:14:bb:3a:2d:17:0d:57:55:61:76:26:
3b:1e:ea:d9:96:8f:97:51:9e:ca:ed:6d:fb:2f:85:9d:a1:6e:
ac:bc:18:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:22:16 2026 by rpki-client