Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: wfph+fWG0dpFRDRZBvmDRDMQ4VxPcZEfCMvtf5MiwV4=
Subject key identifier: 61:74:6E:05:F9:8F:4F:21:4C:F5:63:09:A5:FC:18:AA:FD:AB:75:22
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019D341A55339E7BD957A01527ED0390D249
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0CAD
Signing time: Sat 28 Mar 2026 11:00:34 +0000
Manifest this update: Sat 28 Mar 2026 11:00:34 +0000
Manifest next update: Sun 29 Mar 2026 11:00:34 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: L2rFHAiDU9pHVKbjLBIkwNmBEz6iUA0a2ZULj2ILYn4=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=)
4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:1a:55:33:9e:7b:d9:57:a0:15:27:ed:03:90:d2:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Mar 28 11:00:34 2026 GMT
Not After : Mar 29 11:00:34 2026 GMT
Subject: CN=61746e05f98f4f214cf56309a5fc18aafdab7522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e6:f2:97:43:aa:c9:a4:06:5e:32:5b:5a:91:
11:12:90:0b:62:55:63:c3:97:44:72:dc:97:53:50:
33:6c:7d:3c:e2:9e:68:a5:46:0d:a2:b8:ff:86:02:
d6:60:10:a5:f6:60:a6:86:84:6f:ff:49:f3:b9:15:
a7:86:8f:7e:21:ac:20:13:0a:7c:f6:2b:9e:3f:e7:
5e:9d:98:c7:a1:52:72:b2:31:9b:2c:49:02:a7:7f:
4c:45:be:58:6a:97:d1:b1:27:7c:11:a2:17:ee:02:
d2:64:2d:20:98:23:81:31:72:f1:3c:29:8a:01:34:
46:ba:7e:c2:e6:4c:e6:ae:db:cc:4f:7b:22:4c:16:
20:5d:a0:be:db:aa:e3:71:ee:d9:9a:2d:2f:c2:da:
25:ea:80:ee:7c:58:e8:08:85:07:e8:67:0b:78:0e:
81:4c:1d:cb:26:12:1f:06:0e:93:72:b3:0a:3c:c4:
cc:c5:0d:22:64:4f:65:4c:97:7e:5e:9b:21:9a:20:
70:dd:50:9d:9f:9b:f7:56:b0:c7:e4:03:43:10:b6:
0d:d4:ab:9b:bf:17:6c:48:e2:6f:01:d3:da:a7:fe:
d7:e3:ce:fc:73:44:b1:b0:75:30:df:c2:4d:68:7d:
1a:08:0d:71:d5:df:d9:0c:e0:35:29:c4:3e:06:ab:
84:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:74:6E:05:F9:8F:4F:21:4C:F5:63:09:A5:FC:18:AA:FD:AB:75:22
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:6f:0d:b1:3a:86:43:a7:cb:d1:9c:47:8c:23:5c:5c:9f:dd:
37:97:fc:a9:2f:89:45:e6:1d:f0:a7:33:5f:44:66:23:0c:73:
92:1b:42:d6:aa:75:9c:07:37:24:dd:11:17:58:d9:07:f3:bc:
77:29:ed:49:59:9a:29:cf:1c:18:41:c5:77:c9:d6:d8:0d:ad:
b3:2c:98:ee:73:81:c7:25:99:d2:0a:1a:a1:69:d9:01:ca:05:
28:9b:06:61:88:f7:05:d8:40:73:17:46:55:77:6e:9f:67:86:
7f:1c:40:0e:e5:2e:84:53:06:02:d2:79:64:5b:3d:ba:7f:51:
94:58:eb:5d:c4:29:ef:89:f1:f0:ef:da:d2:a8:a7:0f:5e:0a:
22:a7:4a:05:f8:70:b2:0c:01:a8:ff:40:0b:fc:b8:b3:9b:89:
98:4b:d2:4a:b2:93:89:27:06:0f:79:a7:92:ad:9d:64:80:34:
55:23:bb:4a:46:e8:55:00:01:b9:35:7c:69:14:52:73:e7:f6:
e0:2d:0b:b0:6e:6e:33:0c:ca:d4:84:08:0b:81:de:55:ee:41:
e9:56:22:e4:de:20:44:e1:e2:8b:dd:04:77:db:9a:2e:cf:27:
d1:40:fb:de:80:72:80:37:4b:5e:0f:da:a6:f4:6f:1b:71:19:
2c:50:a6:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 21:45:22 2026 by rpki-client