Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: NjygTa/9VZyMVLxEYU7cZzPyPVKx15NzqN7Oaqd51Gs=
Subject key identifier: 50:48:6E:F4:27:15:F6:75:76:B7:9E:C1:7B:09:7B:70:19:EF:56:08
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E36AB47844DBF3C066D4B27A9C4AA1B56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D39
Signing time: Sun 17 May 2026 16:00:55 +0000
Manifest this update: Sun 17 May 2026 16:00:55 +0000
Manifest next update: Mon 18 May 2026 16:00:55 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 15rtVllKRFJ7BpQGnEUUDlDC9qFUtBnT6bQ2ZdKbIIY=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 18 May 2026 16:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:36:ab:47:84:4d:bf:3c:06:6d:4b:27:a9:c4:aa:1b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 17 16:00:55 2026 GMT
Not After : May 18 16:00:55 2026 GMT
Subject: CN=50486ef42715f67576b79ec17b097b7019ef5608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e8:7d:fe:d7:7b:1b:0a:ce:fe:68:72:5e:6d:
a5:69:0f:fd:aa:d2:93:ac:b0:23:d1:37:d0:49:c0:
12:3d:4a:ba:52:ee:c5:53:d3:7e:90:8d:0d:ac:6d:
79:b0:69:d6:09:40:45:49:be:1a:43:60:69:c3:26:
85:11:80:6d:7d:e8:dc:21:47:19:6c:c9:9a:d9:dd:
97:e5:c6:85:fd:7f:1d:e9:ec:39:be:fc:4c:40:1c:
b9:5c:37:82:2b:26:2c:65:c7:6b:82:7a:03:2c:14:
56:3e:c2:89:ae:67:fc:61:cd:9f:8c:3e:e5:fe:bf:
e0:29:96:c9:9a:e9:dd:71:da:36:a9:f5:16:b9:13:
3a:f5:dc:77:85:34:4f:d8:68:4f:b1:3b:64:89:0f:
45:dd:0d:58:5c:3a:f6:b1:7d:22:34:12:74:68:d2:
6f:7e:c4:74:52:9d:d9:67:15:fc:13:90:2b:7e:97:
15:b4:c2:f6:bb:b9:2c:de:28:20:43:e9:14:d8:30:
9e:d9:8b:5b:82:38:fc:4a:16:f3:55:12:24:6f:15:
f2:25:34:d6:55:95:ae:3c:8d:1f:bf:7e:cd:a1:ac:
4f:13:e9:d4:a5:bf:8e:c4:1f:09:93:c1:77:c5:5e:
b1:df:81:7f:1a:c6:2c:36:fd:f0:b0:af:ac:36:d7:
e8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:48:6E:F4:27:15:F6:75:76:B7:9E:C1:7B:09:7B:70:19:EF:56:08
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:58:ba:66:52:13:6c:fa:cf:42:82:bd:f6:e0:16:50:23:61:
2a:a7:f7:60:13:72:31:06:5f:ef:61:da:0c:11:e8:78:c2:c3:
92:65:aa:ae:cf:4d:1c:10:9e:8a:07:31:f2:eb:b7:fb:97:94:
2d:87:3f:7b:a2:6f:2c:fc:65:47:82:0e:ef:b0:2a:67:17:ce:
a2:9d:52:bf:c7:a9:a3:fd:db:4d:43:76:2f:98:d2:0c:7a:47:
3e:49:a9:3c:0f:10:57:8e:07:79:5d:cd:f4:79:bb:98:12:43:
d0:aa:b2:46:9d:50:1e:af:88:d4:db:ad:de:c9:27:ab:81:dd:
c0:b5:58:7b:6c:d0:33:e4:4f:c2:86:06:91:c9:19:d9:38:b7:
88:46:a1:51:1b:fd:3f:f4:f8:94:90:bc:ce:d1:77:51:95:ba:
2f:43:7d:85:cf:e7:83:b9:fd:9c:5a:a5:8a:72:26:c1:47:99:
1d:0a:3c:ae:6e:7a:d9:df:d9:97:46:7b:4c:1c:13:6b:48:58:
7e:0d:23:6a:91:53:2a:f8:63:07:7e:ce:ff:79:88:3b:84:8e:
00:f3:52:6f:de:8c:ad:72:11:98:9d:77:f5:9b:9c:3a:59:ae:
b6:38:12:03:5d:78:44:1e:8b:24:75:20:16:0f:16:62:0c:3a:
4d:a1:7d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 21:44:46 2026 by rpki-client