Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: VJAWB/HPhL08h2CcYkj0vNuVAqp+6iUxpPAXXy6v3cM=
Subject key identifier: 9F:55:63:0D:5F:E9:06:A9:61:76:06:2A:01:26:E9:0B:A3:F3:45:48
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019CE8C9EF359F91A10ADBE6FBBE45ADBAC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0C86
Signing time: Fri 13 Mar 2026 20:01:13 +0000
Manifest this update: Fri 13 Mar 2026 20:01:13 +0000
Manifest next update: Sat 14 Mar 2026 20:01:13 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: eqT+vsQX+DFrapdlUrQz33g8A9HZ1EzscUuU9C0Yj1Q=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=)
4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:c9:ef:35:9f:91:a1:0a:db:e6:fb:be:45:ad:ba:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Mar 13 20:01:13 2026 GMT
Not After : Mar 14 20:01:13 2026 GMT
Subject: CN=9f55630d5fe906a96176062a0126e90ba3f34548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:2a:6d:fd:f0:8b:64:bf:f1:88:e5:ca:de:c6:
19:70:be:59:e6:ea:7e:8e:7e:1e:58:09:ef:8b:c3:
23:cc:51:3c:8c:a4:ed:f4:a2:ac:68:0f:03:18:5e:
32:70:e2:56:7e:80:bf:2c:cf:d4:56:28:4b:c7:fa:
04:14:7d:5d:0e:f2:5d:67:7a:72:de:ec:fe:38:0f:
76:89:b5:3e:de:0b:18:8d:66:03:02:6b:f3:b2:14:
1f:6d:49:54:88:a1:4c:2e:1c:33:66:1a:9a:2c:4c:
7f:b5:c8:99:0d:5b:2a:89:03:af:8f:c5:17:c9:ca:
04:2a:2e:8e:07:97:01:7f:1c:83:a1:bf:da:27:1d:
bb:55:f5:7b:70:43:ae:f5:fc:85:01:5a:36:0f:8b:
35:64:a0:a3:58:18:14:cd:fe:2e:54:6c:6b:4f:33:
61:2a:33:5a:d4:cc:68:95:4b:1d:15:84:b2:95:1c:
94:41:67:2e:16:ff:9d:88:42:66:ea:49:93:6d:b8:
b1:82:6c:65:16:44:2a:93:9d:42:dd:bf:36:8f:12:
6f:c6:7e:50:ac:4b:11:d6:d0:d7:b1:6e:2b:5f:31:
cf:40:a4:7a:bb:f0:11:d4:55:da:93:77:c9:a4:06:
de:d6:04:6f:a7:5f:a4:4b:7a:f1:6e:58:75:b0:14:
d1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:55:63:0D:5F:E9:06:A9:61:76:06:2A:01:26:E9:0B:A3:F3:45:48
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:2e:71:9b:16:62:86:6c:63:5b:4b:b2:eb:4f:f0:d6:e0:27:
ff:30:d5:f4:3a:ab:de:8d:89:9d:80:e7:d1:37:5f:5d:17:0c:
68:32:3c:4b:98:21:43:40:74:fc:3e:54:b9:24:31:60:d1:4a:
c1:66:3c:25:8a:3e:d4:db:36:aa:cc:cf:36:d5:e3:52:35:1a:
2b:0c:c2:f6:5c:43:1f:6e:c9:58:df:f1:95:82:bd:ca:5f:30:
af:04:4c:70:df:03:fd:a1:05:42:e4:87:c2:fb:7c:6e:c5:f3:
64:f8:f9:47:f4:8b:eb:b1:8c:d2:8c:98:0d:d6:6d:fd:65:51:
80:39:dc:16:bd:ae:ae:6f:37:88:da:cf:af:ca:4f:1f:de:74:
84:5c:84:4c:82:0c:6f:0a:63:1e:4a:33:36:12:54:2a:d7:11:
5c:ce:f7:df:19:17:16:16:79:44:9a:68:27:43:a6:41:d6:d5:
b6:ac:88:94:d6:1f:3f:05:cd:6d:83:28:43:42:b5:74:a4:4d:
1e:2c:93:a6:78:a3:59:ef:f9:9b:59:2e:10:0d:0e:67:b7:37:
e4:38:2f:ad:96:e9:77:3c:f2:77:f6:ae:6d:04:35:f4:e3:f9:
e9:10:47:27:3c:44:ce:60:bc:3c:67:00:e9:8b:4a:e6:a5:eb:
04:d4:6a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 00:34:43 2026 by rpki-client