Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: htfsvpNnUI/6UpNTRjzN31xdt7aqCHuBP1qIY99V7o4=
Subject key identifier: 06:2F:7D:E0:D1:DC:D1:D6:22:64:06:28:4C:D4:38:70:B3:86:D8:E4
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 019EC36E3C67AFA3938AAAA54E8FDBD7F1AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 14CE
Signing time: Sun 14 Jun 2026 00:00:41 +0000
Manifest this update: Sun 14 Jun 2026 00:00:41 +0000
Manifest next update: Mon 15 Jun 2026 00:00:41 +0000
Files and hashes: 1: h-PWIeDfQLuLQns6H59eVXIlTEw.roa (hash: a2RfFAyHbTGC+LHQhF0hKAuxj7Am0hNvyjuE9TNtMKs=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: gv++CFYET53aArMVsjeOuX4apWCSPCchYXDbvsKtJoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 00:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6e:3c:67:af:a3:93:8a:aa:a5:4e:8f:db:d7:f1:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Jun 14 00:00:41 2026 GMT
Not After : Jun 15 00:00:41 2026 GMT
Subject: CN=062f7de0d1dcd1d6226406284cd43870b386d8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d6:0c:36:8d:98:2c:cb:b1:0b:1b:8b:e6:e2:
10:48:a5:01:bb:76:12:77:98:28:8b:15:8f:ce:0d:
7f:3e:e5:37:c8:2b:ac:f8:5e:66:98:dd:8b:88:25:
0f:5b:49:94:06:59:83:98:ab:5f:15:43:9d:47:b6:
f6:8f:b0:e4:5a:c3:9e:9c:01:53:2f:09:cf:e1:66:
7d:8b:d8:c7:73:03:21:8c:39:35:dd:6b:90:ca:7c:
3d:7a:24:cc:e4:7c:1a:8b:88:5b:7f:f3:38:af:90:
17:3f:52:ba:13:4c:e6:f5:6f:f2:5a:60:d3:14:b9:
c9:6c:76:63:88:98:8c:92:0c:97:9c:a0:b8:9c:3d:
8a:ec:6f:2c:4e:c3:7f:6b:11:25:e5:5b:ff:9c:c2:
a4:23:9e:2b:cb:d2:90:93:8e:ff:d6:08:46:da:28:
e4:26:5b:a3:da:98:da:74:45:c0:90:a1:7f:55:3b:
45:25:dd:f3:41:a8:9e:0a:ee:bc:cd:17:65:c5:86:
83:90:e6:e2:28:67:ff:bb:1c:74:5b:38:0e:6e:11:
f1:35:50:0a:51:50:6a:6b:0c:b4:ee:d6:ed:5b:52:
77:b5:ad:f8:ec:96:14:f4:0b:3a:0a:22:a9:f8:4e:
f7:cb:95:c6:8d:04:9c:19:d2:15:24:35:90:34:d0:
a8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2F:7D:E0:D1:DC:D1:D6:22:64:06:28:4C:D4:38:70:B3:86:D8:E4
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:6d:6b:41:fb:c8:9d:3b:f6:72:27:93:22:85:aa:79:bb:52:
70:13:e4:da:05:ae:9e:bd:0c:1a:ce:41:0d:ad:59:d7:f0:20:
cf:14:98:fb:08:af:ba:94:81:61:0a:18:ca:26:e3:c4:d4:fa:
20:f7:09:43:8a:ee:9d:96:52:1b:b6:2d:36:2e:ca:44:44:5c:
1c:55:77:04:ae:05:f8:5c:11:7b:dd:16:34:b2:fd:bc:30:79:
d0:4d:bf:52:c2:1f:ac:9c:49:55:51:e2:67:7d:bd:71:5e:99:
e0:04:4a:51:5d:d7:63:05:69:0e:96:55:e6:43:21:3d:03:d2:
ce:a1:34:76:e3:b7:44:18:b0:95:d2:b4:2f:b0:b2:4a:e0:03:
0e:19:6f:6c:60:33:04:85:98:5d:5b:8a:5b:c4:7d:0c:32:e7:
09:e1:6d:95:b0:82:91:da:0d:4a:ee:12:54:7b:84:5e:38:ee:
6c:92:2e:35:d6:75:20:fe:cb:b8:fd:e9:1b:9d:ac:82:f4:a2:
4c:0d:24:db:6e:1d:2a:4d:3b:50:16:9e:7f:67:a0:b7:d5:36:
35:c1:b7:3b:bb:ab:e1:1e:73:27:d3:c7:b3:d9:aa:df:63:53:
c1:01:c8:da:3d:5e:b6:45:9e:81:ab:be:50:12:a7:dd:68:d6:
d5:cb:1b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 08:21:22 2026 by rpki-client