Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
File: ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft (raw, json)
Hash identifier: yOKJuNi6xw6eTbyh8OtXTGnT9DWk9th+0GVG2WLtTvk=
Subject key identifier: 06:5D:89:80:DE:29:96:F3:4F:95:AD:48:75:1F:59:3D:DD:65:67:25
Authority key identifier: AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1
Certificate issuer: /CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1
Certificate serial: 019D28BB628000643B07A25859C51D420018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
Manifest number: 0C95
Signing time: Thu 26 Mar 2026 06:01:02 +0000
Manifest this update: Thu 26 Mar 2026 06:01:02 +0000
Manifest next update: Fri 27 Mar 2026 06:01:02 +0000
Files and hashes: 1: aM4m7Oc6NIzyqSxndNoY0r_8S2M.roa (hash: 775mbRNMV7kdlBzbryoJnSCHY7z/GhaIJplZrGCXfAY=)
2: ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl (hash: GVT+QYAVdbxTHjA1Ij/SzJZo76X0HuWNGF1JZt2lBGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:62:80:00:64:3b:07:a2:58:59:c5:1d:42:00:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1
Validity
Not Before: Mar 26 06:01:02 2026 GMT
Not After : Mar 27 06:01:02 2026 GMT
Subject: CN=065d8980de2996f34f95ad48751f593ddd656725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2d:07:44:7c:84:95:9e:a6:64:e8:c7:42:1f:
09:33:f4:6a:b9:9d:93:45:27:6d:ed:28:82:7b:d1:
5e:41:d3:6d:c5:91:1d:b3:1b:9e:ae:74:87:72:c5:
b2:dd:9e:30:1f:10:34:dc:11:b9:a6:30:79:4c:54:
26:74:e7:d0:48:9c:55:3f:af:fb:2c:4d:d1:df:6b:
d0:53:da:59:9c:a4:4e:aa:10:ef:a7:88:df:63:6f:
7f:c4:f6:3c:ea:22:48:7f:c5:f4:bc:18:aa:86:c0:
fd:02:d0:ce:fe:41:76:3b:4f:42:d6:c4:ee:a5:48:
db:24:97:81:b2:d2:7f:e6:8e:e8:fc:31:7e:32:30:
10:e2:65:d2:bb:ac:0e:98:01:d4:aa:40:a0:37:5a:
5f:02:7a:5a:07:12:4e:fd:6a:88:d5:85:f8:2b:02:
75:e5:30:0c:7e:15:60:d6:d3:b5:ac:e7:a9:3a:6a:
98:16:7d:cc:e4:01:2e:fb:d1:81:4b:a9:92:95:a3:
03:d8:5a:91:46:a8:66:75:c3:5d:a9:25:ef:a0:ef:
c2:6b:46:30:75:da:22:c1:56:fa:6f:80:d8:59:f8:
28:12:35:a8:93:10:9c:39:e9:6b:c0:cb:cd:70:d9:
12:9e:95:f7:0f:6e:ea:52:a1:6e:c6:f5:d3:c9:4f:
1b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:5D:89:80:DE:29:96:F3:4F:95:AD:48:75:1F:59:3D:DD:65:67:25
X509v3 Authority Key Identifier:
keyid:AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:71:21:5d:62:68:89:0f:29:df:cf:e6:a9:a4:37:6e:18:ef:
40:11:94:1d:8d:7d:a9:34:c6:5b:73:b9:f9:29:cb:ef:db:bc:
af:08:9c:ab:df:64:17:8c:a5:90:20:56:9a:e1:96:2e:6f:65:
6b:63:44:e1:89:5d:60:ec:e5:ba:75:75:bb:be:62:c2:31:49:
00:93:bf:5d:79:97:7a:20:4a:75:52:8a:90:c9:31:1c:36:5d:
8e:db:da:9b:b5:ee:c8:30:b5:f9:98:c0:48:64:8f:36:f5:8b:
85:26:2b:a6:b7:ff:ca:be:81:ac:99:09:5c:ee:c0:c7:64:5c:
3f:1b:64:a1:a6:9b:7b:fd:bf:b1:81:ef:f7:6f:bc:e0:d1:0d:
ab:ed:4e:b9:c2:e3:dc:06:07:e3:5f:c0:11:cc:d3:ec:dd:f5:
31:48:79:92:09:2c:79:3d:64:fe:a2:e5:5d:b7:05:6c:37:6e:
63:aa:f6:3c:ec:81:9c:98:33:1a:87:d5:8c:b4:83:2a:bf:87:
68:49:42:39:87:89:8b:a9:49:9c:72:e2:ae:ad:f0:34:2e:63:
38:d0:39:3b:31:b9:23:08:4f:7c:5b:ff:ae:a0:27:a7:4d:dd:
a6:0e:15:6c:71:8b:4a:c4:0d:92:49:25:e3:2d:b3:27:47:eb:
bf:5b:32:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou2KAAGQ7B6JYWcUdQgAYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMjFkZDJmNzcyYTViYjQ3OTI1YzI4YmI1ZDE2Y2Q5MzBm
MjA2YjEwHhcNMjYwMzI2MDYwMTAyWhcNMjYwMzI3MDYwMTAyWjAzMTEwLwYDVQQD
EygwNjVkODk4MGRlMjk5NmYzNGY5NWFkNDg3NTFmNTkzZGRkNjU2NzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmy0HRHyElZ6mZOjHQh8JM/RquZ2T
RSdt7SiCe9FeQdNtxZEdsxuernSHcsWy3Z4wHxA03BG5pjB5TFQmdOfQSJxVP6/7
LE3R32vQU9pZnKROqhDvp4jfY29/xPY86iJIf8X0vBiqhsD9AtDO/kF2O09C1sTu
pUjbJJeBstJ/5o7o/DF+MjAQ4mXSu6wOmAHUqkCgN1pfAnpaBxJO/WqI1YX4KwJ1
5TAMfhVg1tO1rOepOmqYFn3M5AEu+9GBS6mSlaMD2FqRRqhmdcNdqSXvoO/Ca0Yw
ddoiwVb6b4DYWfgoEjWokxCcOelrwMvNcNkSnpX3D27qUqFuxvXTyU8bwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZdiYDeKZbzT5WtSHUfWT3dZWclMB8GA1UdIwQY
MBaAFK8h3S93Klu0eSXCi7XRbNkw8gaxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnlIZEwzY3FXN1I1SmNLTHRkRnMyVER5QnJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8wN2JhZGQtZmYzZi00ODg2LWFiZjEt
NTUyZTUxNTQyZDRkLzEvcnlIZEwzY3FXN1I1SmNLTHRkRnMyVER5QnJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8wN2JhZGQtZmYzZi00ODg2LWFiZjEtNTUyZTUxNTQyZDRk
LzEvcnlIZEwzY3FXN1I1SmNLTHRkRnMyVER5QnJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjXEhXWJo
iQ8p38/mqaQ3bhjvQBGUHY19qTTGW3O5+SnL79u8rwicq99kF4ylkCBWmuGWLm9l
a2NE4YldYOzlunV1u75iwjFJAJO/XXmXeiBKdVKKkMkxHDZdjtvam7XuyDC1+ZjA
SGSPNvWLhSYrprf/yr6BrJkJXO7Ax2RcPxtkoaabe/2/sYHv92+84NENq+1OucLj
3AYH41/AEczT7N31MUh5kgkseT1k/qLlXbcFbDduY6r2POyBnJgzGofVjLSDKr+H
aElCOYeJi6lJnHLirq3wNC5jONA5OzG5IwhPfFv/rqAnp03dpg4VbHGLSsQNkkkl
4y2zJ0frv1symg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:14:20 2026 by rpki-client