Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: BWCX7u9yMFqvtSqJ7H68Ka3WIIayLSX927uRvWF6SKY=
Subject key identifier: 1A:91:ED:00:F1:4D:71:75:08:3C:DF:F8:24:39:2A:72:09:C2:D4:E1
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 019D9A074F70E9183BE9D6D520A209244C75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 1434
Signing time: Fri 17 Apr 2026 06:01:03 +0000
Manifest this update: Fri 17 Apr 2026 06:01:03 +0000
Manifest next update: Sat 18 Apr 2026 06:01:03 +0000
Files and hashes: 1: h-PWIeDfQLuLQns6H59eVXIlTEw.roa (hash: a2RfFAyHbTGC+LHQhF0hKAuxj7Am0hNvyjuE9TNtMKs=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: 7dqFOO5Vayw5+mRv7TirAK5o9MpWoBKtmnYVrX4gsDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:4f:70:e9:18:3b:e9:d6:d5:20:a2:09:24:4c:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Apr 17 06:01:03 2026 GMT
Not After : Apr 18 06:01:03 2026 GMT
Subject: CN=1a91ed00f14d7175083cdff824392a7209c2d4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:43:c4:12:2e:82:39:00:1a:78:70:4a:b1:42:
fb:0a:f3:35:56:a8:fc:10:72:5c:fa:40:1e:e1:2b:
c7:9a:bf:a3:d6:8b:ed:0a:13:6a:bd:b2:8a:63:c8:
81:d6:17:aa:8e:eb:d7:5e:f9:f3:4e:65:12:85:9a:
05:70:06:82:72:7a:3c:3d:ae:d6:3d:e3:de:c5:da:
09:9f:24:ec:bc:d7:63:81:f1:c9:3b:6a:1a:b2:85:
b4:8f:e9:9e:96:a6:c9:b2:8b:67:ae:93:38:cc:44:
92:38:b2:dc:ff:b6:91:85:05:fb:05:12:5a:87:2a:
01:86:38:60:dd:fd:47:b0:24:fb:b9:39:5c:f0:1d:
34:8c:3d:c4:2c:79:55:b6:89:11:21:2a:88:b6:f9:
cf:75:9b:61:c4:0f:2c:34:80:0f:ba:60:6c:e4:5b:
44:e9:5d:f0:fd:21:35:c3:35:15:ee:61:2e:b4:66:
07:7f:ed:ab:83:10:ac:2c:df:f7:62:a2:18:7a:37:
8b:c1:73:9c:0c:81:57:a8:af:98:c1:1c:03:54:76:
9b:66:71:5b:10:8a:27:d0:28:ce:8e:96:76:ef:70:
de:5c:82:a0:52:e0:88:d7:80:23:9c:30:b4:74:e5:
6a:2d:dd:b7:d1:00:cb:84:7b:4a:14:98:6d:7d:65:
36:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:91:ED:00:F1:4D:71:75:08:3C:DF:F8:24:39:2A:72:09:C2:D4:E1
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:7c:54:04:0e:49:81:95:cd:50:4d:9d:d0:74:a2:44:e6:64:
93:51:a5:7d:22:8a:69:4d:01:be:59:89:b9:f6:44:6a:da:38:
b5:47:f4:05:52:c1:52:60:40:ef:40:fb:83:61:cb:f4:fa:95:
e2:0b:de:76:9e:6b:07:82:fc:a9:0a:2d:48:e2:f4:26:6b:b0:
11:01:21:e0:0c:fd:56:50:52:dd:f7:7a:59:45:5d:f6:47:22:
0b:c9:22:5e:da:a0:67:85:77:94:f9:b7:f8:d3:5f:94:b8:1b:
0c:54:ad:d2:d5:15:ce:62:1a:93:e1:e6:40:44:3c:b8:05:64:
1b:66:74:c4:cf:ca:0c:26:f4:1c:cf:0b:84:35:48:47:d2:80:
a3:80:32:26:75:c2:49:01:18:46:7d:95:17:8a:6f:43:51:0d:
b4:6c:1d:1c:de:0f:44:32:a6:3c:bb:86:b6:2d:d9:c0:97:43:
c3:7d:ba:18:0a:c0:33:92:cc:60:10:7a:f3:22:87:f0:1f:6c:
0e:f3:2d:6a:0b:d4:c3:ac:7f:06:c7:02:07:f8:6a:5d:e6:50:
d4:ad:24:24:86:e7:af:20:3e:73:be:5e:e4:32:5c:e8:b8:bd:
9a:ad:69:bc:57:55:26:ca:48:70:e7:65:44:f2:a2:57:d6:d6:
9c:cc:47:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:35:43 2026 by rpki-client