Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: 90PWFEBgTbNkRnrUM91nq4J6R+suvMbssuWM7l3XeNI=
Subject key identifier: DB:83:B4:A2:6F:C8:70:BB:14:DF:2F:58:40:8A:1A:E9:84:B9:25:62
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 019CAC7E126AD7897E77C0E7B03B6FF6252A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 13B9
Signing time: Mon 02 Mar 2026 03:01:09 +0000
Manifest this update: Mon 02 Mar 2026 03:01:09 +0000
Manifest next update: Tue 03 Mar 2026 03:01:09 +0000
Files and hashes: 1: h-PWIeDfQLuLQns6H59eVXIlTEw.roa (hash: a2RfFAyHbTGC+LHQhF0hKAuxj7Am0hNvyjuE9TNtMKs=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: 07vPzFaLm6hEuVRr3nP/3mF/Aw+IN4QI0LSqr2vM37E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:12:6a:d7:89:7e:77:c0:e7:b0:3b:6f:f6:25:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Mar 2 03:01:09 2026 GMT
Not After : Mar 3 03:01:09 2026 GMT
Subject: CN=db83b4a26fc870bb14df2f58408a1ae984b92562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f7:d1:ed:67:3a:6c:55:02:9e:17:ea:c4:bb:
af:b1:a9:ff:6e:94:d5:bd:6a:b1:2b:41:b0:5e:5c:
69:03:d4:d8:d3:96:ef:68:67:4a:f7:75:1c:fc:f9:
6e:ca:a8:af:8c:d9:d0:f1:fa:b1:e7:df:58:4c:ef:
c0:17:8e:01:f6:48:f3:ca:db:bc:dd:73:1d:b3:3d:
a1:7a:fd:59:e1:94:70:ff:7b:7d:ce:58:98:ab:c6:
88:53:49:74:81:f5:af:80:b3:f0:01:52:dc:98:3e:
5e:52:75:10:6a:ac:df:9c:7f:c8:37:42:6e:c8:ef:
49:f1:07:b7:aa:e1:c8:ac:e2:a0:1e:01:8c:2e:a4:
01:44:8a:e3:6e:16:ca:47:07:c8:06:86:e8:bd:dd:
0c:c3:08:f0:44:fa:7e:7f:ce:5b:d2:eb:ad:20:5a:
a3:bd:46:b0:0a:9c:8d:45:ce:7e:2a:18:f3:89:f0:
5d:26:71:f3:2b:37:4c:09:98:77:00:bf:d7:0f:f6:
99:47:91:ca:cc:b8:9e:28:a5:45:33:d8:1e:81:e3:
70:2d:ab:07:a4:ec:4e:f9:a9:7a:db:b6:44:8a:ab:
60:d8:a3:49:80:3b:c3:4f:12:56:11:e0:9e:62:48:
e2:1d:18:f8:9f:60:2c:72:00:e1:57:db:b7:02:08:
76:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:83:B4:A2:6F:C8:70:BB:14:DF:2F:58:40:8A:1A:E9:84:B9:25:62
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:9f:f0:ae:10:84:38:5f:dc:43:25:5d:07:66:a7:19:cd:cd:
ad:15:d7:ae:bf:b1:cd:d0:3d:de:bf:f2:5e:ac:7e:69:34:1e:
52:46:ce:70:05:af:6a:e7:1b:4c:e0:f1:e1:c4:cf:30:8c:aa:
20:c8:ce:7a:58:cf:05:63:62:ff:ad:25:13:a8:cf:46:a7:f1:
9c:85:84:d0:ac:3b:05:c2:9c:fa:56:ee:04:50:c8:ed:05:38:
c2:b5:42:0d:d9:a6:75:9c:7c:1d:35:ff:36:78:6d:8d:13:6b:
2e:2c:c4:3f:0f:4e:6b:eb:73:a3:a0:68:49:94:47:47:bf:c3:
7b:62:87:17:3e:07:77:e4:17:d4:41:c0:5d:88:f4:fb:73:30:
49:cf:bc:e7:27:91:47:c3:ce:69:c7:d7:9d:09:f7:ed:13:ae:
22:5f:0e:ba:23:2b:cf:9c:50:7e:21:89:43:ae:77:b2:da:23:
b1:05:6a:11:02:db:6b:34:fd:7b:4a:7f:6b:cd:61:fd:b4:c4:
17:23:4e:5f:54:dc:ce:46:6c:3d:ed:5f:13:17:6e:2a:b8:a5:
8d:84:c9:d8:a1:84:ea:a2:e5:a4:81:26:d7:9e:6e:1a:85:b3:
37:2a:b3:e1:1b:c8:d7:e2:46:d7:54:2c:d2:76:1b:04:8f:fe:
ec:d8:92:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:58:57 2026 by rpki-client