Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: 5QH1JsD4TdmwSGtHb2maRzS80F1rA+ote+bHL0R+4r8=
Subject key identifier: 22:D4:87:99:B3:C0:A7:B3:9D:6A:D5:85:DF:3C:5C:D4:81:F0:10:7D
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 019D37894CF4D15131984C2B67F56537DD9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 1401
Signing time: Sun 29 Mar 2026 03:00:37 +0000
Manifest this update: Sun 29 Mar 2026 03:00:37 +0000
Manifest next update: Mon 30 Mar 2026 03:00:37 +0000
Files and hashes: 1: h-PWIeDfQLuLQns6H59eVXIlTEw.roa (hash: a2RfFAyHbTGC+LHQhF0hKAuxj7Am0hNvyjuE9TNtMKs=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: 4uhbWIJIFc2PI+36dw6Ms9y2rkIrs3V4w5lvXcb2gh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:4c:f4:d1:51:31:98:4c:2b:67:f5:65:37:dd:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Mar 29 03:00:37 2026 GMT
Not After : Mar 30 03:00:37 2026 GMT
Subject: CN=22d48799b3c0a7b39d6ad585df3c5cd481f0107d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:92:61:47:6c:72:69:31:90:0c:84:c6:b8:29:
e8:90:27:04:b3:92:6b:44:7f:ff:ca:8a:0c:34:79:
54:52:3d:80:f5:f8:c2:aa:e9:26:b6:54:39:ed:68:
7c:59:52:e3:ac:8a:87:22:56:ec:a8:35:64:b2:fc:
67:bb:2f:04:4a:eb:94:c7:c9:b3:7d:a9:1d:7e:50:
bf:70:8e:75:1c:d7:4a:89:3f:11:36:94:54:10:6c:
d1:25:d6:1c:68:97:f6:dd:a6:3c:46:07:93:5f:e8:
46:1c:66:ff:f7:d0:1f:5e:2b:b5:57:92:06:1a:0d:
9d:68:aa:67:c2:d7:9a:5c:c3:2e:09:f6:3c:44:5f:
6d:bd:18:39:1c:9c:80:22:0c:fb:08:5c:e7:85:23:
d7:7c:49:1a:a2:0f:06:b4:27:9c:fa:da:76:00:35:
f4:69:0e:ee:56:17:65:a3:ef:b2:f6:10:a6:22:22:
24:b8:b8:2a:96:45:33:91:ee:2a:73:fe:b1:dd:cb:
5a:37:57:78:c2:89:42:67:f0:9e:df:18:ce:b7:d2:
1b:d8:4e:93:97:3b:be:33:cb:91:cd:80:3b:c0:98:
fd:5e:73:b1:a3:0a:76:da:74:29:ee:76:14:02:26:
a8:e6:02:e8:ca:e3:ac:8c:2d:74:a0:02:67:44:90:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D4:87:99:B3:C0:A7:B3:9D:6A:D5:85:DF:3C:5C:D4:81:F0:10:7D
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:13:1f:a9:fe:b8:ad:07:5f:25:72:1e:4a:ea:db:54:be:aa:
8b:74:39:9a:92:5d:2e:42:1a:8c:a4:ac:cc:21:ac:95:71:f8:
58:81:da:8a:4b:ae:8e:a9:5e:2e:82:bf:d2:a3:10:c3:6b:4f:
41:89:19:9f:a7:1d:56:ca:af:76:08:e9:74:cf:98:cd:9d:9f:
0b:a2:51:c5:aa:5f:41:9c:66:1c:07:41:bf:ec:f5:d5:f0:59:
31:bb:ff:9f:a5:62:ac:c0:b9:bf:b6:3f:88:5f:14:b7:bc:f7:
8b:73:58:4a:0b:83:6c:70:ed:82:fc:22:06:8e:3e:44:c3:0c:
81:32:9c:41:a1:95:a3:4b:da:89:51:2c:df:ef:57:ae:44:14:
7e:bb:19:17:bb:d6:0a:9a:a5:e7:d1:0e:30:a1:d1:16:76:c1:
9f:ef:e4:d1:a1:e0:f6:e2:c5:13:5c:71:28:b2:b2:fa:0c:a0:
41:a6:4b:bb:6d:c1:dc:ab:46:d6:7e:72:01:db:70:ae:fa:4d:
ba:eb:8d:94:c0:df:63:eb:c5:91:a2:f8:20:f2:31:1f:aa:30:
6d:4a:78:62:db:3b:27:1d:0b:5e:ab:9d:57:0c:51:e9:94:cf:
0a:e3:b0:52:00:38:be:fa:41:0d:e8:4c:2a:85:dc:6b:e0:f2:
4e:81:ed:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03iUz00VExmEwrZ/VlN92bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmI2OGYwYzgzYWRkOWEzYTNiODZhYjI0ZmI5MTBhOTYw
MjYyYzYwHhcNMjYwMzI5MDMwMDM3WhcNMjYwMzMwMDMwMDM3WjAzMTEwLwYDVQQD
EygyMmQ0ODc5OWIzYzBhN2IzOWQ2YWQ1ODVkZjNjNWNkNDgxZjAxMDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJJhR2xyaTGQDITGuCnokCcEs5Jr
RH//yooMNHlUUj2A9fjCqukmtlQ57Wh8WVLjrIqHIlbsqDVksvxnuy8ESuuUx8mz
fakdflC/cI51HNdKiT8RNpRUEGzRJdYcaJf23aY8RgeTX+hGHGb/99AfXiu1V5IG
Gg2daKpnwteaXMMuCfY8RF9tvRg5HJyAIgz7CFznhSPXfEkaog8GtCec+tp2ADX0
aQ7uVhdlo++y9hCmIiIkuLgqlkUzke4qc/6x3ctaN1d4wolCZ/Ce3xjOt9Ib2E6T
lzu+M8uRzYA7wJj9XnOxowp22nQp7nYUAiao5gLoyuOsjC10oAJnRJDPPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCLUh5mzwKeznWrVhd88XNSB8BB9MB8GA1UdIwQY
MBaAFK8raPDIOt2aOjuGqyT7kQqWAmLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWIt
ZWRhMzE2YTJhZmI4LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWItZWRhMzE2YTJhZmI4
LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAORMfqf64
rQdfJXIeSurbVL6qi3Q5mpJdLkIajKSszCGslXH4WIHaikuujqleLoK/0qMQw2tP
QYkZn6cdVsqvdgjpdM+YzZ2fC6JRxapfQZxmHAdBv+z11fBZMbv/n6VirMC5v7Y/
iF8Ut7z3i3NYSguDbHDtgvwiBo4+RMMMgTKcQaGVo0vaiVEs3+9XrkQUfrsZF7vW
Cpql59EOMKHRFnbBn+/k0aHg9uLFE1xxKLKy+gygQaZLu23B3KtG1n5yAdtwrvpN
uuuNlMDfY+vFkaL4IPIxH6owbUp4Yts7Jx0LXqudVwxR6ZTPCuOwUgA4vvpBDehM
KoXca+DyToHtGg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:33 2026 by rpki-client