Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: 4Mf+f4+cvNspWVW9kfgDmrZnIGNU/40+jG3sw74CHCc=
Subject key identifier: BB:7A:84:4B:23:4A:BE:18:60:90:17:56:87:63:24:5B:EF:0D:A7:2B
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 019E5748F33D0B34379AEDB2342B4BA49490
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 1496
Signing time: Sun 24 May 2026 00:00:59 +0000
Manifest this update: Sun 24 May 2026 00:00:59 +0000
Manifest next update: Mon 25 May 2026 00:00:59 +0000
Files and hashes: 1: h-PWIeDfQLuLQns6H59eVXIlTEw.roa (hash: a2RfFAyHbTGC+LHQhF0hKAuxj7Am0hNvyjuE9TNtMKs=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: 7w8X9CPRKoL/EO3ItyAn3Hi+c3C3VhPlhdPfu6vfQiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 May 2026 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:57:48:f3:3d:0b:34:37:9a:ed:b2:34:2b:4b:a4:94:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: May 24 00:00:59 2026 GMT
Not After : May 25 00:00:59 2026 GMT
Subject: CN=bb7a844b234abe18609017568763245bef0da72b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:15:3a:19:a6:a2:27:7a:a7:6e:ee:a3:3f:d9:
8a:d0:7a:75:73:e2:84:a3:80:05:81:d5:63:42:e6:
5e:a7:8c:2d:2e:31:02:a4:a7:b8:c9:9e:cc:1c:6e:
f6:a3:d9:43:d8:e2:0b:d0:26:5c:8d:79:cb:cc:c7:
49:b7:d6:76:66:13:7b:54:56:ef:c8:74:e7:0e:2e:
dc:ae:9e:1c:f7:61:78:c5:c2:6e:4d:fc:ca:1a:e9:
7c:c6:36:a4:24:c9:4d:a3:ba:23:33:d9:27:9b:fe:
12:93:fb:10:2b:12:ba:eb:0f:c8:ce:0b:d8:57:ee:
59:b9:d6:27:e7:54:f1:ab:b4:3e:ec:f0:e9:d0:b3:
ec:51:25:18:7a:6a:12:30:6c:ad:80:bd:0b:d3:8f:
76:13:73:33:fa:ff:11:41:95:ad:a2:0a:ad:01:5a:
b3:d7:32:c9:c7:dc:4e:ae:86:03:04:fc:69:59:5d:
af:dc:c7:81:1f:54:0a:24:20:bd:20:70:87:34:78:
e7:63:60:de:92:e1:1a:a8:bf:7f:81:aa:c9:2a:db:
73:0a:66:62:86:65:ac:63:24:f1:62:94:d1:4e:a1:
e3:c4:16:51:68:20:5d:7a:6b:09:b6:71:b5:89:cd:
c8:20:fe:31:08:4d:64:52:4a:87:93:50:10:a1:1b:
27:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7A:84:4B:23:4A:BE:18:60:90:17:56:87:63:24:5B:EF:0D:A7:2B
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:58:35:ff:53:6f:a4:1b:b4:b2:5a:e4:77:a6:69:fd:78:d5:
86:3f:cd:07:7b:2d:7d:99:86:c4:bd:0a:4b:ea:4d:1d:4e:37:
2f:ec:9e:63:46:85:f2:2d:97:48:d4:b0:af:f8:82:8f:3f:5f:
ff:4c:c1:19:79:3d:30:4f:34:50:0f:66:b5:5d:80:9b:9d:a2:
a4:a2:bd:89:ea:71:f8:a5:8b:a3:33:71:3c:a6:ff:10:03:93:
4d:00:5a:54:dd:0c:f3:52:cf:33:c3:80:94:ab:df:45:fc:ec:
97:9f:12:7a:72:24:f1:48:ed:ac:25:43:19:65:b7:fa:c8:40:
d8:c3:b2:79:45:7a:8e:e2:c7:20:47:ac:f4:9e:27:9f:bf:c2:
4f:67:f1:43:2e:5b:20:b1:5b:99:4d:26:85:cc:5d:be:de:23:
a2:74:fc:fd:3c:8c:95:29:7e:b3:41:66:2e:67:19:84:09:79:
6d:5e:40:4c:7c:30:da:d1:76:4e:64:1d:80:06:d1:2d:5c:5b:
f2:67:89:c5:7b:98:24:0f:f6:3a:df:64:63:49:ca:75:fb:59:
de:4d:d7:46:8a:9e:59:2c:37:aa:e1:01:6d:df:10:ad:25:f9:
91:72:e7:31:75:e9:88:80:94:e2:5c:08:d3:6d:c7:2e:3a:72:
c5:f1:35:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 04:38:02 2026 by rpki-client