Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
File: ryfUX8GLqRerHomhfvC2NgmEgiQ.mft (raw, json)
Hash identifier: BU+9O+dxcDLxP1RCXuQNpMuN47phNKkOseI1lvWJScE=
Subject key identifier: 7F:47:72:E8:04:8F:B0:1E:E0:9C:37:38:88:98:D3:89:40:0E:B6:18
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 019E20FF143DC22EA57B2B1846F803E29D6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
Manifest number: 15B1
Signing time: Wed 13 May 2026 11:00:48 +0000
Manifest this update: Wed 13 May 2026 11:00:48 +0000
Manifest next update: Thu 14 May 2026 11:00:48 +0000
Files and hashes: 1: UPdd3G2KcdZS3e0YMWJ1mdET7ug.roa (hash: fLa6myDFK6r7xHzOqHrp8ZBgZdrk6WJWWDhaOtDKTYI=)
2: ryfUX8GLqRerHomhfvC2NgmEgiQ.crl (hash: LhLX3ZecvQ8qB1Yqku6dgp6oWCEy8CVl9mNFWo0xUt4=)
3: tIyhjPYpgahql1s3g33PvZ8ic6Q.roa (hash: 2D85U464zzyXnN6q09EGipP8N8nVNvilmezlcS8OLVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:14:3d:c2:2e:a5:7b:2b:18:46:f8:03:e2:9d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: May 13 11:00:48 2026 GMT
Not After : May 14 11:00:48 2026 GMT
Subject: CN=7f4772e8048fb01ee09c37388898d389400eb618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:57:a2:ac:3f:85:0c:e6:ed:08:4c:7a:f5:
08:b8:0f:7b:a3:9a:a8:4d:c2:c2:0a:29:a3:a2:70:
ba:e0:17:e1:79:be:66:1f:96:36:59:2c:67:69:55:
70:5f:81:e1:1e:81:00:c8:0e:2b:16:93:9c:2a:57:
ce:eb:fc:2b:3d:54:73:9d:83:fd:bb:b6:ed:aa:84:
50:86:50:49:d5:ad:62:ce:15:f6:20:4b:94:fc:b7:
17:9c:7a:a9:48:d9:b0:37:55:55:33:be:a0:a9:89:
64:e9:12:a1:a1:22:c2:3f:29:65:06:16:81:0c:18:
30:76:68:df:25:24:f0:9c:ee:de:e8:a9:b4:eb:40:
0e:cb:c2:8c:49:3b:dd:8e:04:1c:36:0a:b2:34:ca:
a1:28:a2:4b:6f:29:df:82:9c:7d:47:34:93:07:dd:
64:59:3a:6c:32:3a:4e:f7:8c:92:55:ea:aa:8a:e4:
65:d7:91:44:47:79:13:23:17:81:90:67:7e:19:93:
97:bd:f9:0c:43:8b:31:bd:bf:59:2d:61:c3:40:fa:
0c:b4:20:a8:01:96:0e:2e:7a:ac:23:a9:06:61:23:
88:e2:e5:12:0b:14:c8:e9:b1:8c:fb:6f:0b:26:6c:
c8:f7:b5:29:50:de:2b:a3:cf:4b:3b:86:f8:7b:91:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:47:72:E8:04:8F:B0:1E:E0:9C:37:38:88:98:D3:89:40:0E:B6:18
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:67:fd:aa:f3:01:44:b2:65:87:3a:5c:4f:48:c3:4e:79:38:
0f:84:ec:42:cb:62:69:ca:75:e8:fa:df:ac:b9:89:cb:80:d0:
09:a1:4e:45:63:33:7a:75:10:3b:11:2c:d4:46:9d:22:63:6f:
51:c4:ec:c9:af:f6:cd:40:42:3d:e6:b4:32:16:bc:54:58:af:
71:9f:90:bc:77:07:6a:b8:77:8a:16:fc:2d:0a:79:16:5e:65:
48:54:49:11:a3:f3:90:fe:af:b2:ac:74:47:d0:5b:c5:3e:9a:
d0:9f:10:11:3e:7d:7f:57:17:74:cf:24:f8:5b:07:4b:69:ed:
27:81:d2:64:14:73:e1:8e:be:bc:fd:8d:f2:cc:08:20:a0:45:
e7:b6:07:95:2d:09:ab:83:12:31:22:4d:f2:32:33:78:c1:d6:
e1:95:eb:ef:22:7b:e7:59:87:7c:46:38:f5:88:5d:db:c4:ec:
2a:0c:f6:47:c6:a6:e1:12:14:1e:89:ad:f0:5a:a1:51:90:27:
ef:a8:1f:64:01:4f:97:cd:a9:21:ed:29:e4:b0:bc:6f:65:85:
39:ca:e1:ae:8e:e4:ec:a3:99:d5:19:c1:9e:c5:88:eb:11:93:
6f:ad:c0:8d:c9:8c:60:4a:f2:71:05:9a:ec:f5:5b:f6:37:4c:
d3:d1:14:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:40:32 2026 by rpki-client