Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: EOw7LmV9umaIGEpM8pkxvfiDbiFyng5j2Yb0GD/Hn3w=
Subject key identifier: 40:5A:A0:B8:49:8C:9D:A7:30:45:25:70:F2:D8:A2:83:32:29:91:60
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019DA2652438F454D99FE925F18308E28101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0CE7
Signing time: Sat 18 Apr 2026 21:00:30 +0000
Manifest this update: Sat 18 Apr 2026 21:00:30 +0000
Manifest next update: Sun 19 Apr 2026 21:00:30 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: cML9sNA57Rwim6hh0TwAWojnjT9XyfEBXvY0k5AWVJw=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
4: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 17:59:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:65:24:38:f4:54:d9:9f:e9:25:f1:83:08:e2:81:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Apr 18 21:00:30 2026 GMT
Not After : Apr 19 21:00:30 2026 GMT
Subject: CN=405aa0b8498c9da730452570f2d8a28332299160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:52:ca:92:f5:b7:9e:6e:4f:77:67:7a:23:a5:
ea:ea:04:78:53:cb:71:22:65:0f:e9:50:3a:6b:81:
69:33:77:53:31:a0:b6:07:f1:1b:4c:13:99:33:6a:
ac:88:5f:33:45:05:84:0a:44:b2:ad:bf:92:e6:a6:
9b:71:e7:4f:b1:20:85:89:ff:56:2f:53:80:70:24:
7c:55:d3:cb:85:f1:e9:51:f7:89:18:0c:61:ed:3e:
66:3a:11:33:8b:6c:c8:45:c9:5c:7c:e0:c2:b1:9c:
d6:42:00:0c:c8:04:85:1f:08:27:a0:0e:f6:06:af:
e4:89:2e:46:c1:b0:82:36:77:0e:84:af:b2:fe:0d:
40:e9:8f:01:85:8e:ab:bf:98:61:fb:b4:4f:53:3d:
7b:49:3e:a4:d2:5a:03:de:22:50:68:f4:0f:ea:3d:
95:14:5b:1e:6a:14:0e:f7:1d:cb:98:d8:cb:9c:b2:
85:1d:5c:4f:0d:bb:24:8e:13:06:44:05:22:8f:31:
be:b0:50:3e:cc:ea:ee:10:3c:0d:6f:ae:75:95:76:
99:f0:42:96:45:aa:11:c0:cb:01:b3:98:4f:c6:6d:
0e:a7:d6:3d:f3:77:d2:31:fe:52:3a:79:79:fd:ac:
0a:7f:fb:ee:eb:60:ac:a6:d9:84:5f:b5:19:3f:f5:
18:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5A:A0:B8:49:8C:9D:A7:30:45:25:70:F2:D8:A2:83:32:29:91:60
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:47:e7:c4:f1:3b:9a:c1:67:a2:15:fb:44:4f:b2:a8:5a:c4:
b4:6a:31:16:04:4a:c2:8f:57:9d:30:79:e5:10:01:33:99:ba:
4e:0c:96:44:91:36:ed:a9:cd:89:89:81:5a:01:36:9d:79:39:
22:11:95:c9:24:54:12:33:7b:58:6d:ad:11:ae:cd:ed:d3:7e:
a4:95:c2:2d:a9:44:14:57:8e:0e:27:67:7e:6f:db:7b:e8:63:
9c:dd:54:26:f7:6f:d4:31:37:42:a8:64:b2:a2:74:98:85:cf:
c1:49:f3:dd:0f:ad:05:4c:98:fc:bb:be:14:d7:91:1b:82:8b:
e4:33:11:65:eb:20:3f:36:b9:24:81:09:9f:96:e7:e2:d2:e1:
8f:a5:12:ac:ec:92:a3:95:4d:3e:cf:46:72:12:78:b3:b5:df:
d5:a4:fd:7a:20:29:56:b9:40:67:1c:df:74:7d:c1:5e:d6:2c:
28:ee:b6:b5:57:bb:b1:9a:31:f9:dd:b9:dd:dc:2d:10:5a:94:
1e:7c:e1:a5:6f:70:dc:bb:46:93:11:bf:88:8c:48:36:00:22:
4e:bb:40:dd:04:51:66:05:d9:e7:5e:b8:f0:2a:72:40:34:e0:
d8:4c:ce:5d:11:e5:7b:68:e3:8b:79:eb:33:b8:b1:31:c5:e4:
bb:8e:9a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 00:13:22 2026 by rpki-client