Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: 4hEQXSKeYuM9dD+BRNCGd51JbJALPD76Rtrcfh/NvrA=
Subject key identifier: 74:45:37:01:94:7C:04:4F:1A:70:8A:59:97:E7:8F:96:A4:1B:74:64
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 019EBEB65D8997EC5528B97DF09D7658C4F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 0E02
Signing time: Sat 13 Jun 2026 02:01:22 +0000
Manifest this update: Sat 13 Jun 2026 02:01:22 +0000
Manifest next update: Sun 14 Jun 2026 02:01:22 +0000
Files and hashes: 1: QBW11jyT74R8oUHhAinuj7gPXSk.asa (hash: yZJV0811rYsc05YANwSpX99f0QsW0swdHpcFUdFqr0Y=)
2: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: Ft+530rdd1hCE4Mpq/y/QAXNZAWiBUhR6yugV94c4Q0=)
3: zakSxSI_wYoHQeaPnt8X9AknTHE.roa (hash: DFDQf/fadQ5V13foLZM1hVw4SY7MFQSi7KXroTzcGGo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b6:5d:89:97:ec:55:28:b9:7d:f0:9d:76:58:c4:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Jun 13 02:01:22 2026 GMT
Not After : Jun 14 02:01:22 2026 GMT
Subject: CN=74453701947c044f1a708a5997e78f96a41b7464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ec:c0:65:10:b5:c0:ec:1d:64:35:31:93:40:
e9:b4:5d:10:68:69:91:b4:89:78:86:a0:16:eb:65:
1f:fb:d9:7c:94:81:8d:60:fd:9d:d5:1a:a6:fa:64:
56:0b:ab:a9:d2:7f:31:8c:87:68:2a:32:cd:25:88:
9d:91:d9:06:59:ef:7e:1e:f1:65:fb:27:9a:db:85:
b6:f8:46:c8:97:5a:c3:fe:b9:dd:4f:36:38:46:4e:
59:8c:5a:72:9d:50:76:53:05:af:fc:25:da:8a:84:
13:87:5a:c4:c5:17:7c:5f:8e:6e:79:ec:1e:45:26:
ab:8b:9c:52:3f:e7:d3:ae:87:35:1a:c7:83:b6:79:
01:4b:30:2e:21:2d:c8:80:4a:c9:6d:8b:db:be:db:
42:1a:f7:aa:42:e5:0c:7c:c9:74:13:18:fa:81:1d:
07:b0:35:88:16:36:6f:17:bd:b2:99:4f:de:6f:7c:
95:b5:4a:aa:dc:8c:c4:8c:65:a2:dc:76:00:bf:fc:
b1:0c:b7:9a:8b:63:c7:ec:52:b9:34:59:c8:ef:71:
60:a6:c6:dd:b4:b7:a6:9e:04:fc:f2:cf:d6:37:64:
90:20:7e:2b:da:ca:45:f7:71:42:60:a3:e0:dd:5e:
32:5d:00:f8:c4:c5:8c:5f:1f:52:d7:30:8b:96:52:
e9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:45:37:01:94:7C:04:4F:1A:70:8A:59:97:E7:8F:96:A4:1B:74:64
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:d9:c3:ab:81:44:84:08:c9:71:0b:41:8a:86:e5:7f:ba:5c:
ff:5b:d2:2e:bf:8c:c7:24:df:d6:ba:90:b9:b1:9e:72:e2:1c:
f5:3b:ab:c5:e6:88:22:c4:af:16:2c:51:e4:96:a1:87:bb:ac:
25:fb:16:e7:45:b9:ba:00:a8:43:7c:32:82:42:03:fc:e9:87:
b8:f9:ae:4e:d6:58:c1:2f:5b:bc:4d:99:73:41:d1:34:82:66:
3e:16:85:d8:53:5d:35:82:c3:74:9d:76:26:61:0d:bb:34:e7:
6b:d9:35:d7:48:26:7c:f7:c8:d9:67:d9:42:1b:6c:ef:04:ea:
95:cd:9e:5f:9c:1d:b2:65:f4:e6:20:2e:24:ff:a2:23:25:13:
fa:76:a2:db:de:25:a9:ed:15:5d:76:38:d2:e7:13:02:f8:94:
02:86:70:61:95:55:6b:60:19:7a:43:e2:bf:fb:4d:c7:bd:8c:
49:22:5b:36:6a:2e:78:fd:24:b4:11:11:fd:9b:95:ac:c2:17:
6c:a4:a9:a1:e5:c8:3c:48:52:bc:f4:90:67:fb:05:5a:a5:70:
a8:56:19:18:0b:6f:3d:8a:90:84:88:12:19:bb:25:04:9e:f5:
f3:ed:76:9f:91:a9:09:77:3d:0d:40:02:64:d3:87:19:4b:89:
d3:a0:ac:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:23:01 2026 by rpki-client