Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: DM5raXy/7gfj274+lHzRPp0tqqpeWPy9DGKkKvvVw8o=
Subject key identifier: 86:11:59:E0:2E:F2:4F:2E:1B:ED:67:4E:50:21:5E:89:AB:51:58:74
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E235B8EA736D3682EB70D555CBDA1258E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D2F
Signing time: Wed 13 May 2026 22:01:03 +0000
Manifest this update: Wed 13 May 2026 22:01:03 +0000
Manifest next update: Thu 14 May 2026 22:01:03 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: V1OxgV+TcAqpIPtidE/pun0siAxZHPqobWIYtVeqBxE=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 22:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:23:5b:8e:a7:36:d3:68:2e:b7:0d:55:5c:bd:a1:25:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 13 22:01:03 2026 GMT
Not After : May 14 22:01:03 2026 GMT
Subject: CN=861159e02ef24f2e1bed674e50215e89ab515874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:fe:18:0b:0d:c0:5a:ad:2f:23:28:3e:85:17:
d3:89:4f:8f:47:fa:3b:50:c8:bc:e4:c0:51:9a:d4:
d3:5b:41:fb:36:d6:96:d5:85:31:ad:ac:f8:e3:ec:
20:17:a2:08:e0:f1:86:f8:94:97:a1:63:d7:8b:01:
94:d6:75:c0:84:51:d7:9a:b7:98:31:56:7e:22:28:
ad:4d:6f:e0:97:48:30:91:2b:4a:a5:2f:b0:60:52:
86:94:e6:09:d8:a3:00:b3:8a:73:25:8d:7f:4d:ba:
96:81:f3:14:58:79:fd:6c:9e:36:cc:dd:82:41:0e:
2d:a7:86:e9:77:9d:54:23:7e:7a:63:d4:78:47:52:
dc:dd:6f:21:77:02:f5:34:8c:03:71:d0:60:82:e6:
fe:b0:a0:e0:3a:42:b9:50:aa:01:8f:85:87:86:c5:
b3:a5:d6:c0:4c:62:ac:2a:40:b9:04:bd:97:be:d9:
df:1c:b4:47:24:cc:84:c1:21:28:f5:a1:78:9a:85:
cf:79:c1:e7:43:9d:b0:f6:77:4e:72:00:21:08:50:
3d:7e:b3:97:6b:2a:9c:53:04:ac:17:e8:c4:c8:50:
98:0c:72:ef:c1:64:5c:23:2c:29:33:99:b2:46:1a:
d3:dc:cc:c1:1d:0f:d3:20:ba:df:3d:77:55:b6:dc:
67:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:11:59:E0:2E:F2:4F:2E:1B:ED:67:4E:50:21:5E:89:AB:51:58:74
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:2d:26:29:67:3f:65:37:76:d7:34:0a:5e:67:56:2c:54:db:
a1:9d:0b:bd:bf:93:67:d7:da:fb:3d:6b:12:38:b7:42:e0:fb:
5a:40:df:33:25:31:54:9c:7d:bb:ff:51:fa:68:85:35:a2:3b:
3f:22:fe:9d:b1:4e:81:00:c0:4c:f3:3d:a1:36:5d:3a:5f:ba:
9e:75:5e:36:b0:a0:a1:39:fb:63:18:6f:d7:ec:04:70:04:36:
42:47:39:71:2e:96:ee:2a:03:8a:3b:53:fb:f6:24:ad:0b:6a:
e1:01:03:2f:17:3d:76:ee:41:16:3b:b9:a3:a4:b7:9e:43:ca:
25:e6:80:99:20:67:aa:6b:93:47:6e:56:5b:ac:59:78:16:73:
67:63:ef:5a:e9:db:28:9e:18:e9:42:20:3c:14:53:14:3b:da:
67:64:72:3e:31:9f:6c:eb:51:46:ad:08:6a:91:47:f7:3b:4f:
ab:f4:51:cb:41:09:c5:9b:2c:8f:c2:b8:88:85:d6:f8:42:4a:
69:0e:2c:19:06:aa:89:50:f6:e6:cd:08:dc:a2:35:5b:97:2b:
70:7e:d3:36:b0:e7:e5:96:f8:e7:15:fc:23:60:cb:58:d7:fd:
78:44:97:09:ec:cb:f6:fa:01:d4:94:ee:92:62:be:12:6c:81:
b4:ee:11:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4jW46nNtNoLrcNVVy9oSWOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1
NmRiZmQwHhcNMjYwNTEzMjIwMTAzWhcNMjYwNTE0MjIwMTAzWjAzMTEwLwYDVQQD
Eyg4NjExNTllMDJlZjI0ZjJlMWJlZDY3NGU1MDIxNWU4OWFiNTE1ODc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxf4YCw3AWq0vIyg+hRfTiU+PR/o7
UMi85MBRmtTTW0H7NtaW1YUxraz44+wgF6II4PGG+JSXoWPXiwGU1nXAhFHXmreY
MVZ+IiitTW/gl0gwkStKpS+wYFKGlOYJ2KMAs4pzJY1/TbqWgfMUWHn9bJ42zN2C
QQ4tp4bpd51UI356Y9R4R1Lc3W8hdwL1NIwDcdBggub+sKDgOkK5UKoBj4WHhsWz
pdbATGKsKkC5BL2XvtnfHLRHJMyEwSEo9aF4moXPecHnQ52w9ndOcgAhCFA9frOX
ayqcUwSsF+jEyFCYDHLvwWRcIywpM5myRhrT3MzBHQ/TILrfPXdVttxnKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIYRWeAu8k8uG+1nTlAhXomrUVh0MB8GA1UdIwQY
MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt
ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm
LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAby0mKWc/
ZTd21zQKXmdWLFTboZ0Lvb+TZ9fa+z1rEji3QuD7WkDfMyUxVJx9u/9R+miFNaI7
PyL+nbFOgQDATPM9oTZdOl+6nnVeNrCgoTn7Yxhv1+wEcAQ2Qkc5cS6W7ioDijtT
+/YkrQtq4QEDLxc9du5BFju5o6S3nkPKJeaAmSBnqmuTR25WW6xZeBZzZ2PvWunb
KJ4Y6UIgPBRTFDvaZ2RyPjGfbOtRRq0IapFH9ztPq/RRy0EJxZssj8K4iIXW+EJK
aQ4sGQaqiVD25s0I3KI1W5crcH7TNrDn5Zb45xX8I2DLWNf9eESXCezL9voB1JTu
kmK+EmyBtO4Rtg==
-----END CERTIFICATE-----
Generated at Thu May 14 05:39:28 2026 by rpki-client