Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: cqS1hw/H4mi0rj73GXaMVxuqfW83hV9JcMChZ13t1kc=
Subject key identifier: 24:C5:7D:0A:4B:45:6C:96:94:04:52:9E:F6:FE:75:42:4F:B4:23:6B
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E2D032B8A349CC35D48F95F47B5806B93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D34
Signing time: Fri 15 May 2026 19:00:42 +0000
Manifest this update: Fri 15 May 2026 19:00:42 +0000
Manifest next update: Sat 16 May 2026 19:00:42 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 2irI0nIxnhbCankfjfRH9xbsaf8WGZxR3HnMgcoW7pw=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2d:03:2b:8a:34:9c:c3:5d:48:f9:5f:47:b5:80:6b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 15 19:00:42 2026 GMT
Not After : May 16 19:00:42 2026 GMT
Subject: CN=24c57d0a4b456c969404529ef6fe75424fb4236b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:dd:3b:f6:f4:d7:cf:8c:6b:8e:ef:09:f3:26:
4a:77:25:f0:88:61:7a:8f:eb:02:b4:c0:66:31:f1:
c4:06:f8:2a:6f:16:b8:6b:7b:55:05:6f:19:a9:60:
a2:a4:a8:37:7f:13:08:93:c3:a0:c3:cf:88:3e:d2:
14:5c:a4:f4:97:da:5e:09:a7:58:d5:81:98:54:bb:
cd:2c:27:fe:ed:c2:d0:be:68:8c:5a:a6:70:ea:6b:
18:eb:7b:8a:2c:20:5a:2d:25:57:c7:64:f0:35:ba:
3e:43:87:98:3d:1c:9f:6f:84:fd:b3:8d:80:17:0f:
47:42:54:c1:25:01:7e:76:c3:17:5f:8a:ab:bf:fa:
25:84:4a:95:24:d5:10:cd:ab:4c:a6:0f:26:cf:c0:
37:47:59:dc:f1:14:c8:96:f7:74:87:ce:d1:92:9f:
67:51:84:ca:47:a2:5f:6f:d9:41:ab:28:d0:a4:c5:
f2:b0:1b:99:2c:03:56:ab:05:6c:30:6f:19:01:03:
67:f6:90:07:76:c3:9d:f6:4c:fd:56:9f:33:43:89:
6a:92:3f:80:85:c2:e5:ea:06:fa:c6:b7:7c:5f:8d:
0e:70:fc:2e:ca:3c:e9:6a:42:17:ab:98:54:55:d3:
c2:1c:de:5d:f7:62:90:1b:02:b6:a2:91:a6:7f:48:
58:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C5:7D:0A:4B:45:6C:96:94:04:52:9E:F6:FE:75:42:4F:B4:23:6B
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:8f:0d:42:e9:5e:f2:09:90:e2:ed:4b:70:e5:a3:65:0e:96:
a1:23:51:cf:87:da:25:00:11:ff:3b:92:48:21:b5:ec:ee:c6:
da:cc:ae:6f:e2:da:56:c0:85:42:39:05:f8:1b:78:27:95:5f:
4c:36:bf:79:b9:61:5f:6d:5c:75:5c:82:4a:17:86:dc:51:71:
28:4f:d6:4f:c9:85:f3:21:fd:2a:0c:22:ec:1f:e5:af:68:a3:
f4:32:8e:12:fb:e8:08:86:0e:4e:98:67:bc:18:d8:44:e0:ed:
de:07:ff:c0:93:74:88:a9:a4:ba:c0:dc:36:d9:3c:d7:d7:61:
7c:c7:4c:cb:08:e4:8c:90:1e:67:83:7e:16:af:67:96:ff:c5:
6f:d6:4c:98:59:11:8e:e9:6c:b5:49:73:b7:3f:f8:e3:85:a3:
ec:30:90:37:94:c4:37:45:3c:6e:38:04:d3:3b:e4:c4:dc:cd:
5a:52:77:dc:0c:65:84:92:df:e4:30:18:2a:64:77:5f:89:cf:
31:15:c8:50:30:fe:8e:2f:81:56:2b:ce:d6:d5:37:b2:a2:1f:
cb:87:6c:20:9d:ab:73:c8:fd:6f:e2:e8:e9:68:2b:6a:eb:55:
3f:a8:8d:b8:02:2c:ed:12:c8:9c:ef:35:d0:a9:ed:0e:94:f6:
f3:fa:e7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 20:44:09 2026 by rpki-client