Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: +ocXDgi85JxJ2El6i0uDv1S/dbp4F/qMbZxPIfywA6k=
Subject key identifier: 21:B2:EB:2D:28:9A:16:31:01:44:03:F4:71:4D:49:A2:A6:7A:B5:22
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019C7AB5DF786946C9FCDD3464C5B67B31D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0C4D
Signing time: Fri 20 Feb 2026 11:01:05 +0000
Manifest this update: Fri 20 Feb 2026 11:01:05 +0000
Manifest next update: Sat 21 Feb 2026 11:01:05 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: GCCrcj+ePv4IXatFP+5aUeT07fattOb81p3KYagOTas=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=)
4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Feb 2026 09:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:7a:b5:df:78:69:46:c9:fc:dd:34:64:c5:b6:7b:31:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Feb 20 11:01:05 2026 GMT
Not After : Feb 21 11:01:05 2026 GMT
Subject: CN=21b2eb2d289a1631014403f4714d49a2a67ab522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:87:0e:b1:de:37:c0:4c:8f:99:9a:b8:7f:b1:
e3:40:52:42:9a:3b:26:78:00:09:33:e6:e6:ee:b7:
3f:73:ac:7d:31:95:03:cd:8d:0d:0d:cd:aa:9a:e7:
3d:70:d2:fc:72:a6:45:9d:29:c4:37:4b:75:37:6f:
66:5a:37:93:96:d4:30:0a:de:eb:f3:36:e2:f3:0f:
1e:81:a1:45:83:e8:95:7a:8e:57:80:3d:de:5f:b5:
cd:1e:29:1b:c9:d5:3f:2c:f1:43:95:1d:45:88:20:
c8:c5:51:c1:95:b8:30:4e:3c:43:26:51:88:3c:7f:
7d:cf:d7:9b:e5:be:74:13:ba:71:29:62:59:45:37:
e2:25:15:87:e1:26:e8:10:d1:85:41:1b:fd:f9:90:
51:f5:f0:75:c3:b3:c0:23:13:20:08:fa:15:32:7c:
dc:26:51:59:73:52:82:ff:8d:95:8c:2a:ab:d0:3d:
16:e1:41:f5:9e:fb:bb:97:7b:47:92:e5:32:14:85:
8d:bb:05:a2:77:8e:c1:ba:96:47:0f:8e:69:23:f9:
b4:ae:15:89:05:bf:57:ff:5e:03:21:83:16:2d:66:
ca:df:1a:7d:9a:d0:ff:96:76:41:9b:80:66:71:51:
e4:77:9a:5b:68:a3:3c:90:95:43:f3:4f:b4:1a:0f:
e1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B2:EB:2D:28:9A:16:31:01:44:03:F4:71:4D:49:A2:A6:7A:B5:22
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c3:fa:fd:d7:54:05:21:f9:c1:26:ce:20:3c:0d:85:54:c6:
29:76:7d:21:ce:98:65:f8:a1:ea:29:de:b0:75:90:c4:54:78:
de:21:69:d2:92:36:7f:37:a4:1c:da:67:aa:9c:c4:9b:1a:aa:
3d:7a:34:1e:ad:94:e7:5a:a7:a7:f1:55:d2:e6:2e:1f:22:c3:
80:a7:24:b9:36:1e:b0:b8:aa:79:20:3b:bb:40:09:3f:9f:21:
f7:0e:30:68:e4:96:6d:25:72:2f:fa:f1:e2:c1:b1:f2:4b:89:
b7:79:5d:83:c6:bb:93:a3:26:70:ca:1c:a5:5b:52:a6:b2:ef:
35:c1:2d:48:7b:fe:39:fb:29:c5:de:33:6c:16:0c:3f:2b:dc:
44:a5:5e:31:c4:25:87:58:10:17:5e:b7:43:a4:a1:8b:33:15:
c4:32:23:93:bd:fd:4d:07:61:e2:b4:50:40:8e:ce:b7:a3:d0:
f8:b1:fb:54:22:bd:08:ff:0f:ea:37:ef:cf:68:ec:33:b1:e2:
2d:d4:b1:98:35:66:63:aa:c1:c2:f7:3a:07:eb:88:0b:82:36:
d4:ff:a1:35:0a:bb:9a:c7:da:c8:c5:9f:41:7b:50:5f:06:71:
51:e3:ce:00:44:b6:bf:58:80:bd:f9:03:b3:e7:c7:1a:d4:fa:
d2:c4:71:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 20 18:32:48 2026 by rpki-client