Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: YC7TJp+GNr+7hhJf2rkAPESWokB3i2wlPDRBOY+QgA4=
Subject key identifier: BC:39:8F:7B:F0:A6:DA:BA:06:3E:1D:BE:7C:60:87:88:AD:C0:72:C4
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019D9C99FB4CE6A2BFD79BE55DD227DFA429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0CE4
Signing time: Fri 17 Apr 2026 18:00:30 +0000
Manifest this update: Fri 17 Apr 2026 18:00:30 +0000
Manifest next update: Sat 18 Apr 2026 18:00:30 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: OeEBrsolLXmXs5e2KEtv16sS8lRphW5J9Ix4Xj7wMEE=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
4: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:99:fb:4c:e6:a2:bf:d7:9b:e5:5d:d2:27:df:a4:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Apr 17 18:00:30 2026 GMT
Not After : Apr 18 18:00:30 2026 GMT
Subject: CN=bc398f7bf0a6daba063e1dbe7c608788adc072c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b4:11:14:2d:a5:5c:6f:62:76:e6:06:cb:ec:
94:b1:80:79:32:b6:72:bb:d0:7c:f6:58:11:35:9d:
b0:a8:f0:38:c2:14:d3:8f:e2:48:65:20:fc:e6:cc:
94:a6:1b:16:23:a2:f7:ad:39:ce:72:57:87:02:a5:
2c:6d:0d:b4:50:2c:e7:64:7e:89:5f:5e:a0:54:15:
01:eb:6a:90:d6:c3:d6:1e:8c:75:c0:0c:a8:91:15:
b6:ca:68:53:b3:33:d5:4e:23:9d:9a:c6:79:32:f8:
c6:7a:bc:bc:a9:da:05:0a:cd:9a:5c:d1:8c:0c:ff:
06:e9:26:c0:7a:b0:d2:e4:73:19:6d:79:3b:ab:d9:
91:4d:25:1b:cc:89:d8:a0:86:b0:51:39:b1:f2:12:
34:85:de:60:3f:67:a1:50:9e:ff:eb:89:35:ee:03:
19:07:5b:2a:1b:a8:82:55:63:25:d3:fa:4f:af:d9:
4b:01:e4:35:ef:85:41:00:7d:00:cd:da:92:bf:ec:
62:41:41:1b:19:7e:b2:b4:57:1b:0b:81:b5:93:a9:
a0:7c:1f:c0:be:d8:c2:d3:42:89:6a:f8:7b:19:78:
40:30:30:f9:3c:45:f8:61:17:48:d5:3f:46:42:f1:
50:a2:33:2d:9d:c3:99:52:05:1d:43:7f:0a:ad:b8:
b0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:39:8F:7B:F0:A6:DA:BA:06:3E:1D:BE:7C:60:87:88:AD:C0:72:C4
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:67:0b:97:df:7e:a2:1e:e7:27:d3:31:77:9a:fa:86:ca:5c:
88:05:68:d8:23:2a:de:f4:bb:37:bd:8a:7d:61:08:d7:dc:7e:
17:44:fc:62:89:48:d9:04:d8:b6:77:86:b3:0f:91:76:1f:d7:
69:6f:b9:ae:51:c9:d1:a3:d0:d3:96:57:2e:c2:2c:4c:fa:d4:
b0:88:30:d6:b9:3d:15:c9:58:57:cf:d7:be:f2:4a:56:73:4c:
2b:ae:aa:8b:df:60:08:ac:b7:76:c0:ea:9a:d5:d1:51:73:d0:
1a:35:6a:a8:7f:76:7b:36:89:ff:e2:38:1a:05:d3:a4:90:d4:
58:ad:3c:3e:c5:5a:9e:d8:6b:1f:b5:04:8d:9f:f4:f8:02:50:
3a:3c:56:98:ca:3b:bc:2e:96:73:c9:86:3c:dc:8a:10:6a:79:
52:be:5f:3e:b4:24:4f:5e:d7:17:78:6f:2c:46:93:af:33:94:
35:0f:93:9a:4a:97:5f:4e:b1:9d:28:02:20:e8:c0:19:d2:c6:
83:a2:9c:b6:82:2c:00:48:65:5b:af:f0:8b:a8:c4:e7:28:a6:
d9:29:9d:8e:fc:25:bb:e9:60:6a:65:5e:02:ba:26:69:27:a3:
c4:0d:e6:14:b4:05:b6:33:1e:87:03:4d:ad:de:99:6b:46:4d:
24:fd:d7:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:49:49 2026 by rpki-client