Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: e7h2vvfyBT9Nzl6sj+GPULfNDiFrCUYrWVR0KqU/+f4=
Subject key identifier: B8:FF:50:3D:84:41:AF:55:71:ED:11:5B:51:A2:E8:59:91:33:96:DD
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019DFF4F8E01464AB21D976ED940D19897B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D1B
Signing time: Wed 06 May 2026 22:01:36 +0000
Manifest this update: Wed 06 May 2026 22:01:36 +0000
Manifest next update: Thu 07 May 2026 22:01:36 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 9b82ijvAAK3GDJJnb69DySJAiC7Pu4vqd+kkad2y1ZQ=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
4: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
5: qDQzgVf0qiHtVbsbveHOy9Eb5vo.roa (hash: HMMK2VMNxGsQmUo1rS9nnzlbW5PzxDsLKFISaPqtC9w=)
6: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
7: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 21:44:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ff:4f:8e:01:46:4a:b2:1d:97:6e:d9:40:d1:98:97:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 6 22:01:36 2026 GMT
Not After : May 7 22:01:36 2026 GMT
Subject: CN=b8ff503d8441af5571ed115b51a2e859913396dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8f:4c:46:45:16:f1:44:14:b7:18:90:77:a3:
e3:ea:78:97:91:b0:11:5f:7a:89:39:e9:99:bd:63:
f2:5e:38:58:32:24:60:fd:2e:c3:c2:6c:d2:6b:59:
27:a9:47:b2:2f:ca:72:86:f4:8b:4b:75:b5:d9:db:
ed:36:9c:cd:84:49:ea:85:fb:b6:ad:aa:76:a6:3a:
46:70:eb:52:a3:47:a9:0d:1c:24:4a:48:ad:21:b6:
ea:3c:67:d8:15:f3:22:7c:0b:bb:a8:7f:3a:76:ef:
26:f8:18:f3:f9:54:c0:f2:ae:d3:42:07:9d:f9:e7:
83:20:f3:49:73:cb:3f:6c:f4:e7:35:f2:37:0e:6a:
63:f9:58:ae:51:09:78:d1:8e:cd:dd:06:19:f9:47:
51:27:c6:19:96:67:47:65:79:3d:a2:c6:42:75:97:
05:1d:7e:c5:6a:57:00:18:e3:04:12:c8:0a:25:39:
de:05:b8:b3:f8:0c:5f:f6:94:71:b2:44:c2:e3:87:
56:30:1b:c0:ce:05:93:42:62:b0:fb:35:e4:41:7d:
a1:69:41:b6:7c:70:47:4a:c1:7c:c2:0f:92:18:a0:
01:72:4d:fc:43:d9:aa:bb:e4:d2:30:79:a1:fc:7d:
8b:09:4e:f1:a1:84:b9:3c:6c:60:e5:4b:bb:13:6b:
44:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:FF:50:3D:84:41:AF:55:71:ED:11:5B:51:A2:E8:59:91:33:96:DD
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:31:d6:e2:cc:9d:0a:b5:c5:7f:64:9a:fa:f4:77:6a:47:4d:
56:7c:1d:d2:fd:a1:a6:19:a5:74:26:47:c2:32:e0:e9:82:87:
94:36:61:4b:b5:37:95:03:25:b8:9a:f4:69:96:76:78:e9:b1:
a6:17:02:40:c5:d1:83:f1:80:08:e2:55:82:45:84:27:ea:d3:
a4:6c:0d:d8:4d:67:df:11:2d:ec:5b:e2:a1:d8:ea:ef:1e:31:
0c:cb:93:2c:1e:e7:06:8d:86:08:cb:68:0a:19:b7:0e:50:a7:
e1:d2:36:e8:aa:f9:d1:c8:de:a6:5e:e3:1e:8a:04:3d:f6:bb:
a1:f7:86:be:3d:53:08:4f:f6:43:7e:4a:99:02:28:b4:e8:4f:
69:65:c4:9d:ca:c9:d4:c7:2e:a1:1f:c1:88:05:6d:46:ef:5d:
f7:5e:fa:19:af:c2:ff:f0:0a:b3:51:7d:ac:20:9f:09:df:43:
a8:51:6b:1e:a3:ee:cc:6b:f5:78:0d:46:85:d6:11:65:7d:f7:
4a:a7:3b:84:de:55:d9:22:f0:d6:fe:42:a4:0c:a6:cc:cf:16:
ef:e2:62:1e:d2:2a:8f:dc:13:ee:6b:2f:d1:ce:fb:24:46:4d:
2a:4d:ea:01:0f:09:ae:7c:62:f3:0d:80:0d:aa:ba:3f:e8:f7:
8e:7f:f5:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 7 04:54:49 2026 by rpki-client