Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: srM8i42qBprw79pywCOieTK0OhwFLJS5Q1eSILMZ5Gc=
Subject key identifier: B4:3A:5D:23:BC:BE:AA:7D:B4:DC:DB:38:D6:05:45:6E:04:3C:36:2B
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019CC4183CDF3B4A4CFA616FA2AB1C311481
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0C73
Signing time: Fri 06 Mar 2026 17:00:48 +0000
Manifest this update: Fri 06 Mar 2026 17:00:48 +0000
Manifest next update: Sat 07 Mar 2026 17:00:48 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: c0DsJmzevu4doNUFmc5gX3JXPzRhlBBLDE2Cmx07bJc=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=)
4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c4:18:3c:df:3b:4a:4c:fa:61:6f:a2:ab:1c:31:14:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Mar 6 17:00:48 2026 GMT
Not After : Mar 7 17:00:48 2026 GMT
Subject: CN=b43a5d23bcbeaa7db4dcdb38d605456e043c362b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c5:4d:92:0c:db:3c:13:e4:48:21:dd:7e:3d:
13:13:23:7e:27:ae:1c:fa:e5:f1:cb:87:49:aa:e4:
ba:f4:43:1c:6f:f0:41:21:47:cb:c6:39:8c:d4:5c:
67:71:c0:a0:f4:47:dc:20:52:9b:88:47:5c:ec:ad:
cb:d9:7a:52:7a:c7:92:98:07:a6:f9:47:4b:c6:4d:
2b:c6:5a:0f:07:0f:1a:1f:00:f5:c3:ca:ed:44:84:
5b:c2:77:95:45:47:79:97:22:09:0e:75:cc:a2:fd:
46:ab:ad:3e:b9:e3:29:fb:2f:90:3f:05:c7:16:1f:
25:26:fd:63:9e:13:49:ad:32:0b:16:85:bd:68:2c:
44:fb:76:99:d7:aa:31:c0:11:89:f7:35:85:0e:44:
41:05:42:53:86:ee:1b:cf:a8:1f:c8:5d:8a:3e:fc:
b9:11:ab:0f:4d:79:cb:25:f1:2f:7f:04:83:65:cd:
30:3c:25:b1:82:ad:d2:4d:9f:9c:2f:7e:68:68:5e:
92:f1:5f:cd:41:8b:36:e7:37:2c:53:f6:e3:f3:48:
95:31:ff:59:52:c5:fd:59:e6:c4:26:a8:c7:66:35:
4c:46:c5:fe:65:89:11:e4:c8:97:c3:b8:53:53:44:
37:95:6c:3d:b4:82:11:87:6e:18:5d:bd:f2:9e:0b:
85:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3A:5D:23:BC:BE:AA:7D:B4:DC:DB:38:D6:05:45:6E:04:3C:36:2B
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:cd:d6:c8:47:eb:45:c9:3f:64:bd:57:10:c6:52:85:d8:f1:
ea:f9:64:26:81:08:01:7c:cd:68:bc:57:71:c5:46:a9:68:4c:
7b:c8:dc:00:ef:e8:d5:6a:db:80:cb:a7:7b:af:da:e2:e2:0d:
be:87:4a:b3:05:b2:e7:d7:94:9f:85:25:e5:f1:0f:7a:ef:21:
49:4b:5b:9b:aa:09:1b:87:a9:5d:62:3e:fb:43:bf:90:44:b8:
b7:fb:10:e7:dc:f5:e4:c8:18:63:e7:64:8d:2e:ec:c4:f8:09:
2c:a9:ac:3b:b8:96:5e:9d:b3:f8:f3:ff:1f:c5:f5:73:32:a9:
5a:f5:e2:1b:f9:83:74:61:96:50:a3:27:30:3f:20:60:7c:43:
5d:23:c6:0d:fc:73:37:2b:93:a5:f7:59:0a:84:d0:dc:d0:7d:
44:95:b8:1f:03:40:26:bf:4e:55:09:77:55:ec:26:7d:81:d5:
70:2e:f9:8a:52:8e:d0:c5:24:15:00:9a:20:78:7e:d6:f0:8a:
d4:db:78:9a:6d:31:23:43:5a:44:c6:30:1f:b6:3f:04:e5:1c:
c0:f9:5a:e2:7b:9c:7f:8a:d7:52:64:e9:60:56:24:22:b6:4c:
55:72:d5:af:a9:fc:a5:ed:c9:88:67:5a:8a:1d:31:9e:ed:61:
26:48:8e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 23:12:45 2026 by rpki-client