Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: QcPYnzDhRyTZiqVFWXOSaNOxyhmfz3jXs8iWocfmeBA=
Subject key identifier: A5:F8:99:40:6F:F4:4F:B3:59:00:C1:DA:40:D3:C9:67:5A:47:E4:62
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E3C76D66AD50648797740710C4819CA6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D3C
Signing time: Mon 18 May 2026 19:01:21 +0000
Manifest this update: Mon 18 May 2026 19:01:21 +0000
Manifest next update: Tue 19 May 2026 19:01:21 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: IuYbIElbNPQf28ZU3bZELZ1d/ydiMNEZn7iHA7XTNqg=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 19 May 2026 14:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3c:76:d6:6a:d5:06:48:79:77:40:71:0c:48:19:ca:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 18 19:01:21 2026 GMT
Not After : May 19 19:01:21 2026 GMT
Subject: CN=a5f899406ff44fb35900c1da40d3c9675a47e462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8b:24:ed:a1:85:74:9a:ee:14:b5:61:47:fc:
47:0c:34:08:3f:03:32:df:2f:1b:b2:8c:89:f6:43:
b8:50:2f:26:a9:9e:7f:64:2a:6c:af:cb:19:73:e6:
f0:74:84:48:3c:9f:51:d9:75:59:f7:df:0a:db:1e:
91:10:aa:ae:94:14:52:a3:80:5e:3d:e3:6f:fa:30:
04:3d:1b:37:60:72:dd:15:d7:71:87:90:17:b0:0e:
72:78:92:47:bc:71:bd:76:c2:5d:2f:87:88:90:30:
27:d0:4f:b3:b2:ac:db:89:0f:b3:21:91:fd:ba:33:
b7:fe:a3:42:a0:90:73:2a:7f:33:85:a8:d3:a0:53:
e0:d4:7b:09:da:86:f8:44:4e:d5:f3:fa:b7:8e:90:
99:3d:de:96:af:74:df:bf:e4:4f:be:b6:c7:c4:37:
55:55:09:10:64:4c:60:2d:98:8b:3b:84:b7:36:49:
56:5d:6a:41:4f:51:d4:f4:95:67:24:67:88:54:0d:
fc:9a:77:f5:e6:7d:b1:b0:4f:70:a4:aa:3f:0d:f6:
b5:d9:8e:f5:5d:62:71:cc:1f:70:71:16:a5:27:ff:
40:30:d2:b0:a1:9a:f6:0f:b6:ac:be:13:8c:90:46:
b6:bf:45:84:7c:01:70:fa:63:bf:bc:e6:e1:8e:5f:
6b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F8:99:40:6F:F4:4F:B3:59:00:C1:DA:40:D3:C9:67:5A:47:E4:62
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:bd:10:05:45:4c:64:b5:c6:f4:aa:36:bd:c0:32:48:00:3b:
c9:b0:48:6a:4c:70:56:6c:ce:34:15:67:47:2f:94:68:f9:f1:
b4:be:c4:a4:c0:19:cf:1e:b1:97:5c:e9:ba:87:5c:dd:85:d8:
3d:39:c6:37:74:3a:31:12:8f:ee:1b:cc:35:ca:c7:cc:f3:11:
7a:90:3a:d4:3c:86:04:40:f2:8c:6d:c8:3d:3a:17:a6:b8:11:
aa:54:28:68:4f:26:f8:eb:d4:e8:0d:60:58:34:37:59:a2:29:
bf:79:72:81:d6:48:b9:aa:67:10:2a:97:ce:66:46:25:00:86:
d2:b1:b6:cd:e7:46:08:a0:36:28:c0:b5:6b:28:91:ba:1a:46:
7f:f7:ae:c7:ac:76:b5:fa:11:58:70:30:90:c7:60:a0:24:3f:
06:72:57:d6:be:44:6e:14:dc:42:88:ce:3d:c4:ee:69:26:45:
ed:2e:02:9d:83:9f:81:8d:80:18:ac:54:2d:36:03:3b:7b:02:
25:e7:a5:42:31:09:a5:b6:fc:c8:cf:2c:2f:7a:85:e3:e8:dc:
5d:1e:b8:cb:e5:c1:57:f4:7c:31:fc:89:9f:fb:7a:b4:e7:93:
dd:bc:a8:91:98:d5:81:27:1e:b9:7b:fc:52:6e:56:aa:83:0b:
8f:2a:e2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 18 23:20:32 2026 by rpki-client