Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: PZheBDt1T3GKgHi6NOGsLs9rTrcBrn6fuG+ok3FG6vc=
Subject key identifier: 49:F3:08:12:5E:36:5C:78:CD:1C:4C:8D:0F:BE:78:64:70:61:58:F5
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019F17F9CF28A162AE50ECD4DBAA0D4B2338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0DB5
Signing time: Tue 30 Jun 2026 10:01:15 +0000
Manifest this update: Tue 30 Jun 2026 10:01:15 +0000
Manifest next update: Wed 01 Jul 2026 10:01:15 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: RLj5hAa98vRKC3RhfrMV6Qfc+7jsD/nARglqJfE/jXs=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: StKopN7mKY_G686fwWfLGQIs1ZE.roa (hash: Lt0qVcoh5gF6hn1K+QcayMd775gMjWFzF0XYTOVMzcE=)
4: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
5: fnggY0IhO9mDzoeT1t0WuzkAzWI.roa (hash: 9e6IMcnEkPPF9sv33WqexenQbytaWL15Ul9zWEcxcQo=)
6: kT1MhOs2pjWPveWnnzpZvLwHE8I.roa (hash: PObzTeTNqjikv/tj+DTeCD2L5aW2W4bJwFPcLIU6GHY=)
7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:cf:28:a1:62:ae:50:ec:d4:db:aa:0d:4b:23:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Jun 30 10:01:15 2026 GMT
Not After : Jul 1 10:01:15 2026 GMT
Subject: CN=49f308125e365c78cd1c4c8d0fbe7864706158f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3a:b0:ea:60:74:54:2d:ca:9a:53:ba:ad:1f:
f1:50:56:ff:b4:99:e2:12:5a:d5:5c:c3:0a:6c:41:
94:b8:25:2f:3f:bf:2f:57:a5:31:14:4a:50:61:0a:
01:47:97:80:e0:9e:f6:03:e5:e7:4a:c3:82:e1:26:
f1:e0:ed:10:b3:8c:40:2b:e6:49:db:3b:7d:49:6b:
8c:5f:b0:83:6a:a1:05:68:e3:64:01:f4:95:98:68:
25:b4:31:9e:b0:c9:70:a2:c7:84:ed:fb:e7:78:dd:
a1:97:18:eb:0c:f1:db:a0:ab:be:89:7f:69:14:e0:
5f:1b:0a:7a:8f:9a:0a:56:f7:39:cd:3b:cd:7e:bc:
7c:0a:fd:94:29:87:37:9c:43:c2:70:36:f7:4d:7c:
8b:dc:04:27:f5:d6:e0:6f:a8:49:dd:cc:80:69:3b:
53:d7:59:6f:94:ad:ee:3e:06:56:3e:81:d4:3f:7b:
81:9f:13:db:98:dd:a9:41:cc:f0:f0:c6:35:77:62:
7a:3d:b4:bb:91:f3:d5:3f:a1:ad:5a:d0:94:c7:bf:
d0:3b:bd:d9:04:e1:cc:92:dc:84:d3:d8:88:65:fd:
13:28:3f:89:c5:11:1d:fb:e6:c4:b5:69:01:10:49:
bb:ac:e0:2e:53:59:40:f7:32:02:da:2c:db:c6:1a:
5c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F3:08:12:5E:36:5C:78:CD:1C:4C:8D:0F:BE:78:64:70:61:58:F5
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:75:24:ea:29:ba:c8:be:b0:03:34:04:cc:f7:20:9b:b6:72:
34:08:44:ae:68:0d:c8:f9:f8:08:5f:d5:e8:c0:91:3f:e1:64:
67:57:ea:06:0b:b4:bc:5d:f9:be:ed:28:c0:1b:82:ad:5f:ce:
33:44:d9:19:b3:cb:b7:73:90:1f:01:66:2c:5e:29:50:2b:ca:
7f:db:19:5a:cb:ac:d2:fd:76:cf:9e:a7:26:28:af:9a:bd:79:
8f:3e:34:82:6e:39:77:4b:fc:95:c7:30:85:68:a7:ba:73:2d:
6e:e5:49:41:0a:aa:02:92:64:22:ff:04:a7:e4:bc:b9:e0:38:
4b:7c:05:1a:b1:af:ff:53:9c:41:b5:69:63:10:42:75:06:70:
28:34:99:4e:20:d9:07:3d:36:36:47:88:0f:b7:9f:24:5b:b1:
ce:a6:1e:d0:3c:2f:dd:e1:2a:55:3a:c0:d2:c3:9b:51:04:5f:
72:05:83:0b:99:c6:e0:64:a9:e1:d5:68:73:4a:84:17:8e:6a:
11:0e:0a:45:f8:32:2d:17:3c:d2:c7:b3:3f:92:ef:d0:75:3b:
23:d4:f6:5c:82:27:74:53:46:2d:ba:7b:fd:f3:ff:21:c9:93:
ab:9c:c5:2a:59:03:ef:e3:0d:a2:27:7a:23:9a:21:16:35:17:
b7:3b:b3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 15:51:22 2026 by rpki-client