Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: w6Qv4/Vq0Nim6lvU5vOoPaBvWH40pt1ibQp1OLgHVf0=
Subject key identifier: 41:5D:E7:8D:65:AC:94:68:24:49:E1:AA:27:F6:5F:AC:43:F9:76:36
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E461E51ED5728859B221834522316C038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D41
Signing time: Wed 20 May 2026 16:00:52 +0000
Manifest this update: Wed 20 May 2026 16:00:52 +0000
Manifest next update: Thu 21 May 2026 16:00:52 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: TwvzDyp3oYDDUjhu/+vwoxTHFtahGRPy4d8H6sq7pcA=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 21 May 2026 14:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:46:1e:51:ed:57:28:85:9b:22:18:34:52:23:16:c0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 20 16:00:52 2026 GMT
Not After : May 21 16:00:52 2026 GMT
Subject: CN=415de78d65ac94682449e1aa27f65fac43f97636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:56:00:85:2c:70:3c:0d:c7:40:4f:8d:57:
3e:70:e4:1a:68:a2:23:6d:9f:ee:e4:e9:1f:a4:b3:
4d:d7:d1:4d:a9:f5:fc:bf:dd:3f:1e:f1:c9:11:b8:
8d:8f:12:27:b0:40:fc:31:bb:36:74:55:8e:28:4b:
cd:05:27:e2:13:9b:2e:e5:0a:43:df:76:63:cc:c4:
17:e5:9c:1e:f2:42:4f:d7:62:78:93:7e:8f:91:83:
85:d2:50:a6:9f:18:9c:07:53:6f:5f:fe:7c:a2:e6:
04:eb:22:57:9e:2c:09:2f:be:7a:ef:9e:97:a8:1d:
c2:6f:b6:b0:00:82:8c:09:68:8d:48:17:d0:9a:d8:
3c:e0:09:00:17:0f:1e:fa:6a:3d:7e:6d:39:ce:4a:
f8:1c:ac:bd:ac:91:a0:a9:af:9c:fb:9b:7f:a1:4b:
7d:7a:88:02:16:7a:8d:05:aa:1f:00:7a:cf:79:e5:
b2:53:e6:26:9a:b0:ef:55:fb:bf:07:1a:fd:5c:7b:
35:94:70:9e:a5:60:50:54:1e:ee:dc:b7:c5:78:e0:
ac:f2:2a:e8:2e:a4:17:c9:93:44:28:a5:6e:09:a1:
2c:88:3f:f2:56:9c:ac:3c:21:7a:d2:3d:c8:d3:5d:
ef:49:a6:32:46:6a:ba:76:b0:30:ff:d6:ec:08:fe:
a8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5D:E7:8D:65:AC:94:68:24:49:E1:AA:27:F6:5F:AC:43:F9:76:36
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:74:46:2b:80:a1:4a:d1:4e:45:9b:29:8a:ce:b0:1f:86:ed:
59:e4:72:cb:e6:b3:39:f0:e8:a7:bc:bf:fa:fb:7b:76:cf:52:
3d:0e:fb:13:72:ca:b9:5b:b1:f4:27:8d:5a:5d:fe:34:6f:5a:
5f:e7:c5:95:63:d0:0d:3e:65:4a:78:c3:32:79:b1:6a:82:cd:
01:db:09:e7:5e:53:91:00:38:00:3d:e2:30:72:2b:c0:7d:29:
6e:de:4f:1c:4b:b9:f9:dc:25:70:44:09:2f:34:b9:7d:d5:8b:
11:7f:9a:ba:a7:f2:83:6d:4a:87:7f:55:fa:1d:94:21:df:65:
29:f5:8e:ba:ab:81:77:0b:73:62:02:34:3e:75:9e:ad:96:f8:
9c:47:ec:d2:fb:f0:9b:5c:9b:1f:2a:8c:fe:54:62:8a:43:4e:
bf:f6:cf:36:3f:ee:3b:de:71:ce:5d:1b:aa:32:1a:e7:f7:24:
d6:e7:c4:81:97:c4:0d:f6:63:35:74:bb:08:2e:b7:72:52:cc:
ea:15:69:94:e7:d7:42:34:66:40:35:9d:f8:4f:a2:84:50:9d:
a0:00:dd:5f:47:04:58:06:80:9b:79:f8:4c:99:cc:f5:c5:4a:
f8:d5:2f:87:9d:d6:71:02:94:ee:b8:fb:34:c3:a0:ea:5a:ed:
fa:d6:23:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ5GHlHtVyiFmyIYNFIjFsA4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1
NmRiZmQwHhcNMjYwNTIwMTYwMDUyWhcNMjYwNTIxMTYwMDUyWjAzMTEwLwYDVQQD
Eyg0MTVkZTc4ZDY1YWM5NDY4MjQ0OWUxYWEyN2Y2NWZhYzQzZjk3NjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SpWAIUscDwNx0BPjVc+cOQaaKIj
bZ/u5OkfpLNN19FNqfX8v90/HvHJEbiNjxInsED8Mbs2dFWOKEvNBSfiE5su5QpD
33ZjzMQX5Zwe8kJP12J4k36PkYOF0lCmnxicB1NvX/58ouYE6yJXniwJL756756X
qB3Cb7awAIKMCWiNSBfQmtg84AkAFw8e+mo9fm05zkr4HKy9rJGgqa+c+5t/oUt9
eogCFnqNBaofAHrPeeWyU+YmmrDvVfu/Bxr9XHs1lHCepWBQVB7u3LfFeOCs8iro
LqQXyZNEKKVuCaEsiD/yVpysPCF60j3I013vSaYyRmq6drAw/9bsCP6oSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEFd541lrJRoJEnhqif2X6xD+XY2MB8GA1UdIwQY
MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt
ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm
LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI3RGK4Ch
StFORZspis6wH4btWeRyy+azOfDop7y/+vt7ds9SPQ77E3LKuVux9CeNWl3+NG9a
X+fFlWPQDT5lSnjDMnmxaoLNAdsJ515TkQA4AD3iMHIrwH0pbt5PHEu5+dwlcEQJ
LzS5fdWLEX+auqfyg21Kh39V+h2UId9lKfWOuquBdwtzYgI0PnWerZb4nEfs0vvw
m1ybHyqM/lRiikNOv/bPNj/uO95xzl0bqjIa5/ck1ufEgZfEDfZjNXS7CC63clLM
6hVplOfXQjRmQDWd+E+ihFCdoADdX0cEWAaAm3n4TJnM9cVK+NUvh53WcQKU7rj7
NMOg6lrt+tYjEQ==
-----END CERTIFICATE-----
Generated at Thu May 21 00:06:32 2026 by rpki-client