Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json)
Hash identifier: rvvLHZoH0sXMmQxaNxQI8BxhUIIEXOSYZzxe1Wzd0tA=
Subject key identifier: B0:18:6D:E2:5C:A2:1E:79:F7:51:BA:20:B8:B9:4B:CA:1F:47:9B:E0
Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Certificate serial: 019CAB6B2FA6974F8B76D9137CF411DD2DC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
Manifest number: 17AC
Signing time: Sun 01 Mar 2026 22:00:54 +0000
Manifest this update: Sun 01 Mar 2026 22:00:54 +0000
Manifest next update: Mon 02 Mar 2026 22:00:54 +0000
Files and hashes: 1: ECi1vnqUM-fxIfMgxs6Z6zPn5G8.roa (hash: vGQVzQW6eOz/ocuImvFOzh/r1Lw9xkrPt/351GBE1Vg=)
2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: 3e5V1Spb6UURgmXbx0R3QE0jH/+S3J66IK+R68qdjiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:2f:a6:97:4f:8b:76:d9:13:7c:f4:11:dd:2d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Validity
Not Before: Mar 1 22:00:54 2026 GMT
Not After : Mar 2 22:00:54 2026 GMT
Subject: CN=b0186de25ca21e79f751ba20b8b94bca1f479be0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ca:bf:aa:bf:d7:90:cc:c0:5d:f4:22:34:65:
18:2b:0d:b7:7a:7b:ea:05:8a:da:09:b1:39:84:b4:
5d:28:ab:51:8d:29:f0:f6:ec:3d:a6:ec:0a:72:e8:
8e:4d:84:0f:85:ad:74:b4:94:83:22:b8:76:53:b5:
36:44:75:db:b6:6a:09:3b:59:d3:fd:85:3f:0a:cc:
a6:56:52:1f:80:38:56:96:7b:5e:f6:09:3a:c6:f0:
87:0e:b5:c1:dd:9e:2e:24:58:cb:25:84:88:2c:b7:
57:63:63:1c:a6:6e:16:a5:05:15:b6:e3:25:6a:86:
ff:96:45:22:88:cc:d4:ed:c9:ff:d7:bb:9e:49:91:
bd:ee:7f:c9:5d:e5:d0:9a:7b:9d:20:07:d7:6c:d8:
7e:70:0c:30:eb:6d:fc:34:d4:98:1d:83:8d:e4:83:
41:66:df:23:63:2d:36:c1:a5:48:3d:83:53:0b:4c:
59:0a:7d:26:32:d2:7f:7c:26:a0:5e:64:6c:f2:6c:
c5:a9:14:55:3b:d7:c4:f9:91:e8:9e:d1:a7:6b:ac:
4f:30:74:6c:dd:68:55:7b:e6:f4:65:0c:6d:d5:9a:
89:aa:b7:53:63:8d:67:fe:22:6e:72:d8:be:a7:be:
9a:c6:3c:b2:46:1f:17:68:64:06:2f:7b:3b:d5:be:
f0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:18:6D:E2:5C:A2:1E:79:F7:51:BA:20:B8:B9:4B:CA:1F:47:9B:E0
X509v3 Authority Key Identifier:
keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:74:67:76:13:91:a4:fb:6d:8c:45:9d:43:d7:e2:99:16:f3:
8b:6c:0e:7c:2d:ba:aa:ff:57:f0:9e:d8:e9:b4:7b:76:2c:41:
da:50:cf:4f:3a:c0:33:0a:40:44:78:52:02:59:19:9f:be:18:
ed:c3:9a:ac:21:dc:de:35:c8:67:b0:68:3a:05:58:66:de:3d:
47:28:01:25:df:ff:c3:6e:ec:38:fb:00:12:bc:ab:82:25:98:
a0:28:52:46:06:4c:6f:ce:21:ad:30:26:6c:1a:14:d0:98:7e:
fb:5c:4e:de:e3:27:6b:0e:1b:cf:37:eb:41:a5:60:ec:8f:ac:
f1:dd:9f:86:4e:6e:f5:c4:17:a9:48:0c:f7:0b:e8:29:c0:6b:
85:b8:2a:9b:ab:d9:b7:59:c7:9c:2f:b2:23:ba:b3:32:3b:1b:
08:42:15:c8:8e:b3:aa:d4:e3:e7:a1:48:d8:3c:ba:41:20:78:
5a:35:85:33:a6:27:31:30:1b:6d:0f:bd:00:3a:ac:c7:8a:b0:
22:8e:ca:5e:4e:98:79:69:c0:62:b2:c7:b4:c3:fc:19:55:95:
84:e7:aa:02:02:51:05:e4:62:b4:84:14:4d:32:c6:f3:29:1e:
9c:44:fb:21:e3:55:c1:97:2d:45:c1:c9:3c:6e:15:b3:4d:64:
5b:1e:04:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:28:25 2026 by rpki-client