Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: B7tTseYF/CvhqudbKXDOyUGBrxwxNAsr4prAZxpIiV8=
Subject key identifier: 6F:83:BF:4E:EC:5E:D3:43:DB:51:56:A6:47:34:B9:EC:49:A9:8C:77
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E30E017932C2EB904CE1A05170817E360
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D36
Signing time: Sat 16 May 2026 13:00:52 +0000
Manifest this update: Sat 16 May 2026 13:00:52 +0000
Manifest next update: Sun 17 May 2026 13:00:52 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Jblk5dDMiEFqK59s9ER6Xtl7NAkLP18BcI1vrBspKp8=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:17:93:2c:2e:b9:04:ce:1a:05:17:08:17:e3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 16 13:00:52 2026 GMT
Not After : May 17 13:00:52 2026 GMT
Subject: CN=6f83bf4eec5ed343db5156a64734b9ec49a98c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ec:03:6f:81:e7:bf:7f:16:ba:71:e5:a6:1c:
b8:1d:30:2c:a5:42:cc:73:0f:02:8c:8d:2c:26:09:
f4:8f:c0:48:15:79:28:f1:5d:05:e5:48:ea:fb:19:
06:3b:30:f7:86:dd:3e:a0:7d:f5:0a:0c:ba:c6:30:
fe:0a:62:86:63:cc:b0:f9:3a:cf:ac:30:55:5e:23:
28:07:09:0b:a2:23:94:55:bb:96:f5:1b:3a:b0:82:
c7:aa:96:2b:0a:bb:18:1a:06:5d:c2:2d:da:7a:a3:
07:b2:c1:52:3b:bd:c7:f5:ac:e3:a8:cf:04:4f:18:
d2:05:fa:7b:e3:69:b6:38:96:ce:8a:3e:ab:c7:b4:
ca:f9:bb:36:98:eb:cb:34:f1:7e:41:22:9f:55:87:
6d:f8:d5:51:3f:e5:98:1e:ee:ea:6a:39:b5:5a:45:
e4:4a:f7:68:b2:ec:28:be:45:6e:f4:ea:a9:0a:98:
e7:7f:f9:3f:3d:28:47:c3:4b:bc:94:92:73:91:6b:
f6:64:ab:4d:4f:4e:84:fa:f0:dc:1b:cc:b4:cb:2b:
c1:c5:a4:30:ab:1e:52:a2:e8:66:08:e2:fb:24:1c:
3f:3c:8f:ac:61:16:d5:49:42:1d:ec:de:ae:f0:14:
91:c2:c9:e6:c8:a9:bd:29:19:c1:8f:91:2a:29:fe:
5a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:83:BF:4E:EC:5E:D3:43:DB:51:56:A6:47:34:B9:EC:49:A9:8C:77
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:81:63:4d:f0:cc:31:03:56:6c:2e:fb:a5:5f:37:55:b5:ab:
48:c9:15:0d:cb:f1:78:0d:d0:53:c3:2f:ab:2b:7f:9d:ab:9d:
8d:f8:02:29:31:c6:bb:b4:e3:3b:c6:99:6b:b5:48:a7:cd:35:
14:35:88:c0:ec:ef:5a:64:a1:80:9d:6f:77:2d:3e:91:b9:40:
c2:54:b2:59:27:3d:9a:07:41:ea:bd:d2:f2:ba:ac:50:32:44:
e9:ec:f9:2a:80:c9:41:08:8b:6e:a5:23:dd:fc:64:98:ba:e7:
8e:04:f0:88:47:35:32:a3:d9:14:15:f2:ef:a4:b9:b2:83:44:
a3:09:18:3d:bb:e3:c3:d1:49:30:e2:79:82:52:7b:dc:19:37:
74:cf:f2:56:7d:56:9a:33:7d:74:12:29:97:28:1b:19:2b:22:
f3:02:b5:05:7c:40:70:57:f5:bb:38:f1:ba:8c:a7:00:4a:db:
d1:1f:29:23:e9:e8:c6:95:09:21:82:56:ef:ce:71:5d:76:20:
29:af:f6:d4:7e:8b:dc:b3:a5:2a:6a:e4:c0:55:cf:3b:14:75:
1f:37:cf:63:95:51:5d:4f:53:69:13:89:5e:e0:17:1f:0e:b0:
e5:13:cc:10:61:9e:81:c5:77:12:d3:ca:21:b2:fa:60:19:b7:
fe:0c:cb:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:33:05 2026 by rpki-client