Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json)
Hash identifier: J793mibuJLemx1sBmLHdm2hmr4oNLNvv6aWA975q9zM=
Subject key identifier: C7:69:32:49:D0:7A:0D:F1:80:02:43:DE:0E:22:DD:46:FB:BC:DB:62
Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Certificate serial: 019ED3BD511DC0603A5B317C23B3A0CF96FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
Manifest number: 18CA
Signing time: Wed 17 Jun 2026 04:01:00 +0000
Manifest this update: Wed 17 Jun 2026 04:01:00 +0000
Manifest next update: Thu 18 Jun 2026 04:01:00 +0000
Files and hashes: 1: ECi1vnqUM-fxIfMgxs6Z6zPn5G8.roa (hash: vGQVzQW6eOz/ocuImvFOzh/r1Lw9xkrPt/351GBE1Vg=)
2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: qA3tkIOCzJBoCazmsrRYvV1NOEF7i75YiLYfnfDhLi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:bd:51:1d:c0:60:3a:5b:31:7c:23:b3:a0:cf:96:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6
Validity
Not Before: Jun 17 04:01:00 2026 GMT
Not After : Jun 18 04:01:00 2026 GMT
Subject: CN=c7693249d07a0df1800243de0e22dd46fbbcdb62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:2a:52:f3:ad:b6:66:a6:d1:5d:37:ee:7a:27:
df:9e:6e:50:cc:10:07:6c:10:8d:90:3d:79:27:2d:
34:3b:69:e6:9c:0f:da:cb:ce:59:64:b0:92:0d:45:
0c:1e:98:1e:e5:3f:73:a8:9f:38:37:68:3c:79:89:
46:92:a0:1b:3d:f2:21:25:a1:30:0d:7b:3e:f6:c2:
31:1f:a1:66:68:28:80:6e:20:d5:80:c6:24:cc:a2:
57:30:09:06:de:ca:22:6b:f3:37:74:e3:34:ae:64:
01:cc:ca:30:68:d7:36:20:d7:57:76:4a:4e:69:93:
0e:d1:ca:d2:63:52:b8:a4:2f:e4:7d:93:58:01:d6:
ea:ba:d7:6e:89:53:56:7f:dd:a2:24:70:06:c9:78:
12:35:10:12:63:ec:c4:b6:d1:56:ae:a7:24:b3:f2:
d5:69:30:90:1e:d2:f1:68:47:4a:b8:9a:f6:fc:99:
d0:3b:0d:72:52:a9:7d:90:3f:d6:bf:45:0e:e0:7f:
90:aa:b7:67:ce:23:cd:2e:ee:21:7c:e7:a7:ad:3c:
98:8a:df:e3:e1:bf:dc:20:ef:7a:4b:d8:d8:15:13:
a8:79:a2:5b:62:52:9c:e2:62:71:d5:fd:2c:d5:27:
2e:88:df:49:b5:39:ce:fd:82:4d:54:8d:7c:84:8c:
79:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:69:32:49:D0:7A:0D:F1:80:02:43:DE:0E:22:DD:46:FB:BC:DB:62
X509v3 Authority Key Identifier:
keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:81:28:4e:81:01:8a:4f:c2:64:32:6f:2d:f4:e4:b4:d8:a7:
16:07:1b:17:fa:fb:73:2e:4a:87:f0:a3:37:67:d5:e5:68:e5:
d3:97:bc:cd:9c:db:e9:81:77:71:be:c4:d3:a2:ec:81:7b:59:
db:ae:ff:d0:ab:60:42:ec:44:77:f6:7d:fd:b6:8f:2c:17:6b:
cc:13:ee:4e:ea:ea:67:51:2b:ce:17:d9:5b:f1:ca:e8:88:f0:
41:f2:b3:75:38:37:37:c2:12:dc:84:ca:57:9d:f9:cb:8c:d0:
c4:42:c3:d2:8e:d9:83:64:7f:2b:e5:6e:82:f3:62:a2:e7:02:
2d:3e:07:9e:1a:5b:db:d4:09:e5:c8:aa:68:2e:72:cc:73:f6:
38:38:21:6c:af:96:0c:cc:73:01:71:93:e8:39:f3:b7:67:34:
5d:55:37:35:b9:22:5c:53:87:35:a8:b8:a4:3d:3a:15:af:1a:
35:40:fa:7f:52:2c:49:24:f7:64:20:2b:28:15:4b:bd:3a:1b:
15:c9:1b:09:b2:48:30:15:7e:62:fe:ab:0f:3f:29:b5:22:c2:
a3:8b:a9:a7:6f:47:ba:26:fd:aa:ad:da:d2:a9:ae:31:57:b5:
4a:1d:fb:c3:4a:36:11:3d:17:bf:d8:c7:9c:42:16:d6:1f:85:
16:ef:5f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 14:08:01 2026 by rpki-client