Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: xJ25YYo+nH5yq/0Dm7fLfPwDouLDrOJcKvvHPqcwSZE=
Subject key identifier: 57:D1:39:D4:4B:F9:E9:01:56:CD:FA:1A:33:33:8E:C7:60:16:E3:83
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E4053E92A0A530D3E389D9BD3968CFD27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D3E
Signing time: Tue 19 May 2026 13:01:41 +0000
Manifest this update: Tue 19 May 2026 13:01:41 +0000
Manifest next update: Wed 20 May 2026 13:01:41 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: dOpyso1P3vsIv1GX5t8Ha5fsAmnJilQULmIUlSaUEwA=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 May 2026 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:40:53:e9:2a:0a:53:0d:3e:38:9d:9b:d3:96:8c:fd:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 19 13:01:41 2026 GMT
Not After : May 20 13:01:41 2026 GMT
Subject: CN=57d139d44bf9e90156cdfa1a33338ec76016e383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0a:b1:fe:94:a8:25:d6:42:00:20:81:03:7f:
30:53:4e:49:32:2a:08:2c:a6:ac:cf:95:ab:72:73:
18:23:e6:77:80:0a:c2:cd:0a:6d:63:9e:22:42:09:
30:24:d4:e4:e0:67:e2:04:4f:3d:c5:25:75:60:de:
71:92:d5:ea:76:d3:62:42:35:ba:5c:9b:31:bc:61:
e7:3a:6c:05:ac:14:81:c6:3e:6c:08:89:5e:7e:eb:
cc:d2:8a:ae:4f:6b:f1:b9:7b:0f:52:aa:eb:2f:b8:
1a:91:84:a4:fe:3a:16:44:ea:32:21:a4:81:0a:3b:
ae:a1:8b:13:7a:0a:ad:7e:e6:56:71:14:b2:ad:55:
58:ca:47:fb:9d:d4:d9:4a:87:9e:17:cb:46:61:e6:
04:ac:c1:d1:76:5e:de:ab:3e:cf:51:ec:59:4a:29:
1b:48:57:b9:c3:81:dd:36:7b:3a:23:98:fd:e3:12:
d8:37:a9:85:44:4b:9f:da:f3:bd:09:97:30:4a:be:
40:ac:6c:c9:3d:05:3b:f7:d0:b3:ad:fd:09:1e:d8:
a5:16:94:05:ce:11:b1:f2:6a:67:19:78:21:4b:6c:
b1:a6:fc:63:83:00:a0:bb:ad:21:0c:58:82:90:5b:
dc:3d:5f:a2:fe:46:de:d8:b0:27:e1:4b:54:68:5a:
03:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D1:39:D4:4B:F9:E9:01:56:CD:FA:1A:33:33:8E:C7:60:16:E3:83
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:1e:8e:9f:78:54:07:a7:dd:94:b9:a7:a7:a7:dd:4c:b2:df:
bf:86:a7:b1:2b:0e:cb:6a:f0:2d:ad:f2:3c:cf:76:46:66:79:
af:51:fd:a1:19:94:8d:bc:d3:fe:ab:d9:d8:ef:57:0b:c7:6f:
ce:55:a7:86:08:ef:2f:82:58:13:81:e2:b5:5d:d1:4e:02:f6:
86:ec:f2:16:83:6c:e1:23:e2:83:d5:ce:4c:a3:9a:ee:d9:0a:
fe:fd:bf:3d:e5:79:3b:52:c6:4a:9f:2c:ef:46:81:b2:57:c1:
f3:d4:06:f1:d1:a8:d2:f7:b8:f1:b5:04:dd:da:b5:3f:36:ca:
be:78:fe:21:32:70:fd:49:e0:ce:4b:9b:fb:ab:1a:77:ab:80:
17:d2:47:41:ff:4b:37:67:30:b2:60:40:fc:56:f4:b7:a0:ca:
9c:32:de:c0:47:7d:db:4d:39:ae:81:0c:16:a8:58:e9:97:67:
65:e7:82:4b:f4:35:a9:10:96:f5:f2:37:de:74:1d:a2:d1:4c:
c7:18:05:d5:dc:7b:d9:c6:04:39:95:b9:6f:13:0c:99:51:99:
b5:5e:6b:c4:aa:b1:57:4b:93:6e:33:53:35:dc:57:8a:bb:df:
2e:6b:38:31:6a:88:26:58:28:0e:74:bf:05:57:3c:37:d2:d3:
f6:42:09:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ5AU+kqClMNPjidm9OWjP0nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1
NmRiZmQwHhcNMjYwNTE5MTMwMTQxWhcNMjYwNTIwMTMwMTQxWjAzMTEwLwYDVQQD
Eyg1N2QxMzlkNDRiZjllOTAxNTZjZGZhMWEzMzMzOGVjNzYwMTZlMzgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgqx/pSoJdZCACCBA38wU05JMioI
LKasz5WrcnMYI+Z3gArCzQptY54iQgkwJNTk4GfiBE89xSV1YN5xktXqdtNiQjW6
XJsxvGHnOmwFrBSBxj5sCIlefuvM0oquT2vxuXsPUqrrL7gakYSk/joWROoyIaSB
CjuuoYsTegqtfuZWcRSyrVVYykf7ndTZSoeeF8tGYeYErMHRdl7eqz7PUexZSikb
SFe5w4HdNns6I5j94xLYN6mFREuf2vO9CZcwSr5ArGzJPQU799Czrf0JHtilFpQF
zhGx8mpnGXghS2yxpvxjgwCgu60hDFiCkFvcPV+i/kbe2LAn4UtUaFoDEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfROdRL+ekBVs36GjMzjsdgFuODMB8GA1UdIwQY
MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt
ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm
LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIR6On3hU
B6fdlLmnp6fdTLLfv4ansSsOy2rwLa3yPM92RmZ5r1H9oRmUjbzT/qvZ2O9XC8dv
zlWnhgjvL4JYE4HitV3RTgL2huzyFoNs4SPig9XOTKOa7tkK/v2/PeV5O1LGSp8s
70aBslfB89QG8dGo0ve48bUE3dq1PzbKvnj+ITJw/Ungzkub+6sad6uAF9JHQf9L
N2cwsmBA/Fb0t6DKnDLewEd92005roEMFqhY6ZdnZeeCS/Q1qRCW9fI33nQdotFM
xxgF1dx72cYEOZW5bxMMmVGZtV5rxKqxV0uTbjNTNdxXirvfLms4MWqIJlgoDnS/
BVc8N9LT9kIJRw==
-----END CERTIFICATE-----
Generated at Tue May 19 23:20:59 2026 by rpki-client