
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: Q0jLYdW6XVIrsi4y4aIWef26vqqwcPMfGWhS3UbrpwA=
Subject key identifier: 42:1D:06:9D:A3:FC:89:E8:3B:92:27:2E:5B:69:D8:FE:3C:E1:2A:32
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019F473A3240574E200A98E9C0A886D5CFFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0DCE
Signing time: Thu 09 Jul 2026 14:13:43 +0000
Manifest this update: Thu 09 Jul 2026 14:13:43 +0000
Manifest next update: Fri 10 Jul 2026 14:13:43 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: GWUW8apOQTUGDJLu8e3StiFcbml7FHT0A2lQW13uH+o=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: Z9-G8jBlIUV8JXo4mpweyF3YJ1U.roa (hash: dj5hMhYWdWHJcm+043OLfnQ2pOg2DSF2L7CpAN4Js2w=)
4: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
5: fnggY0IhO9mDzoeT1t0WuzkAzWI.roa (hash: 9e6IMcnEkPPF9sv33WqexenQbytaWL15Ul9zWEcxcQo=)
6: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
7: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 10 Jul 2026 14:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:47:3a:32:40:57:4e:20:0a:98:e9:c0:a8:86:d5:cf:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Jul 9 14:13:43 2026 GMT
Not After : Jul 10 14:13:43 2026 GMT
Subject: CN=421d069da3fc89e83b92272e5b69d8fe3ce12a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:84:92:18:05:d7:a7:1d:14:07:f2:7f:7e:8a:
ba:14:ca:52:b2:92:93:47:a9:8b:a6:19:55:b9:8a:
8d:6f:3b:01:0f:ca:f4:f9:86:3f:b6:f4:9c:fe:af:
ed:78:db:ab:64:f9:fe:f1:d2:04:0f:a4:63:1b:ad:
7e:d1:e3:3b:4b:3c:10:68:0b:48:92:bb:fa:3e:28:
69:ae:33:72:da:20:fd:60:16:71:51:05:b7:e5:5c:
0a:56:08:c9:a7:b7:63:64:3d:6a:37:df:e4:c4:f8:
98:ed:dc:b6:df:c4:68:71:dc:24:67:6d:e4:5b:68:
37:1e:47:68:dd:cc:62:ff:66:86:ef:0f:b4:89:e9:
ef:0d:13:54:03:b6:f5:a7:43:3b:48:82:2c:45:63:
f0:45:2b:31:8c:e4:3c:09:e7:59:50:51:4c:31:f9:
ad:0f:bf:0e:84:df:7b:ed:93:dc:89:2c:62:28:e4:
8f:4f:3a:c8:dc:e6:02:89:93:bf:b9:34:d7:86:e0:
76:f7:62:d3:72:a8:e1:42:be:d9:fd:b9:e8:49:88:
cf:89:37:b7:cb:89:62:45:72:b6:9f:fb:28:8d:cf:
07:99:db:47:84:95:cd:e1:f2:43:29:c5:f6:60:4f:
96:fe:a7:08:9d:e6:3c:16:9f:6a:22:d5:28:7a:3c:
73:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1D:06:9D:A3:FC:89:E8:3B:92:27:2E:5B:69:D8:FE:3C:E1:2A:32
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:dc:43:be:79:3c:8f:ff:62:a6:3a:16:64:ff:cf:4b:f6:ab:
4f:a5:63:f0:b1:df:54:3a:22:e2:0c:60:f7:ec:1a:96:d4:39:
d2:cb:7c:d5:4f:a1:ed:13:26:93:e4:39:2a:0d:cb:6c:68:51:
7c:66:5e:85:e5:4c:c6:c1:7c:8d:47:7b:95:4a:e8:77:28:2d:
de:96:50:f6:d4:b2:7d:7e:d2:35:b9:78:70:3b:f4:2a:e4:6a:
a2:7b:30:94:70:72:3d:40:e0:ec:9e:4b:3b:e2:c4:e0:fa:e1:
17:85:58:01:7d:5c:b9:de:d1:87:1c:59:31:27:e4:78:21:cb:
1d:88:52:cd:40:a1:d0:43:ac:cf:1f:9e:35:d2:0a:7a:a6:51:
e6:52:0c:95:2b:02:a0:17:c0:8c:21:14:79:25:da:45:a5:01:
24:e6:e5:2e:ec:60:c0:d1:41:69:e7:c4:96:93:41:08:90:e0:
fe:81:f0:c8:33:c1:ec:55:c0:eb:c9:3d:05:6f:aa:d9:84:1d:
ac:5d:9d:9c:be:1a:ce:b4:4e:21:08:d9:9c:4a:70:5c:04:f2:
11:de:cb:59:60:1c:a6:17:74:f2:53:aa:02:96:7d:19:2a:43:
c8:d4:a9:75:d8:74:7c:97:29:e7:36:a5:44:b2:9d:49:9c:8c:
84:8c:f8:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 9 17:38:36 2026 by rpki-client