Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: M3HQzjGiflJ7PUNLUd4NNTOz52C21PwxVx/QCSoklNg=
Subject key identifier: 08:1A:F3:10:54:6D:92:23:B4:C0:B1:67:F4:DF:8F:FA:C5:D7:EC:E9
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019DB65AAD2E23BF5C946B961C0261508863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0CF3
Signing time: Wed 22 Apr 2026 18:01:29 +0000
Manifest this update: Wed 22 Apr 2026 18:01:29 +0000
Manifest next update: Thu 23 Apr 2026 18:01:29 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: h0dWekrnEl0vZRJfT+EgD1jw4vvKqrMZ2p2/k5dQKsE=)
2: CxF7LDw8pI782-p1Fq0ewqlSc5U.roa (hash: +NFPkwDyR3XQAWm/PGSRbJQS/rrBSbxTpwvhLWnn4lU=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
5: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
6: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
7: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
8: zVma1odFcJAM_KGu4P72WLr1Nt0.roa (hash: l9EFPDT7uBlw444mi6SqVRE82+jg0O4FQzDjQsNWVQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 18:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b6:5a:ad:2e:23:bf:5c:94:6b:96:1c:02:61:50:88:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Apr 22 18:01:29 2026 GMT
Not After : Apr 23 18:01:29 2026 GMT
Subject: CN=081af310546d9223b4c0b167f4df8ffac5d7ece9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:63:37:c7:08:2d:25:cb:3c:00:65:7f:df:ff:
90:9e:a5:cf:74:3a:1a:a6:e2:a9:d3:d5:bd:4d:e4:
7d:83:0e:1c:1b:25:ff:9f:e0:b4:e3:6e:b2:16:e4:
0e:fd:7b:42:90:4d:f5:4e:e8:f5:7f:40:ed:be:d8:
ea:a1:01:c0:3b:f5:1a:17:f7:67:1a:db:f5:90:ab:
42:97:32:ca:bb:89:cd:1b:04:64:3a:45:4c:9c:95:
85:8d:13:df:b7:3a:07:4a:7f:a7:ee:4a:2e:88:69:
00:ac:e9:e9:a0:07:9e:50:35:2a:9a:43:ff:f3:68:
0b:d9:c0:e2:d0:91:49:df:cf:f1:52:2e:88:58:07:
bd:fa:0f:9e:12:1f:a7:89:0e:58:02:dc:46:bb:8f:
81:9e:16:f4:a6:23:4c:0c:ea:81:05:61:d9:98:14:
0c:5d:87:15:15:2f:06:95:91:b2:f5:96:4b:2b:8e:
5c:ad:c5:39:74:35:08:1a:0d:54:ea:ce:15:be:9d:
43:51:59:e9:de:07:d5:04:bd:8e:cc:40:0d:31:19:
b8:b6:48:d2:16:89:bb:2c:00:45:43:f6:0a:a1:3a:
eb:ad:54:8a:56:9c:de:7a:ca:1c:af:e5:fd:d0:ca:
cd:6f:42:4a:2d:97:1e:2d:17:0d:b7:ec:10:bf:63:
1f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1A:F3:10:54:6D:92:23:B4:C0:B1:67:F4:DF:8F:FA:C5:D7:EC:E9
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:0a:c7:6f:dd:31:83:da:8f:57:7e:5b:9a:89:e1:5b:30:18:
b6:5c:66:28:25:a2:a1:01:7e:df:46:d9:ae:73:6b:00:36:0e:
09:bb:49:55:8c:64:86:18:12:c3:ae:c0:12:51:18:53:03:85:
3e:7a:dc:76:bc:cf:e2:e3:1d:a9:e0:43:ad:ff:7b:bf:11:a9:
48:ce:ad:59:20:1d:df:b5:95:93:66:b7:f5:77:7c:26:04:2e:
97:4d:09:b5:6d:36:f4:dd:02:63:62:dc:0c:6b:4b:65:a0:a8:
c5:ed:22:8b:82:d3:3e:c6:d0:8c:90:5e:fa:40:be:1c:ba:60:
2e:b9:32:23:64:8b:ad:6c:17:e2:1f:65:46:ab:15:b7:38:8c:
06:92:fc:9a:7c:5a:fc:3a:21:e7:a3:03:1f:00:53:b6:ab:52:
cd:39:8f:af:b6:da:6a:8b:39:b9:80:03:14:e9:86:95:d4:bc:
65:ca:d5:b6:78:50:58:ab:bf:0c:96:6f:2e:77:fc:9d:41:3a:
e1:3b:04:53:a9:17:47:5b:ab:f5:3c:49:cf:d3:18:34:08:54:
09:4c:27:76:bc:63:13:f0:87:07:4b:99:45:95:10:38:32:a0:
09:64:38:34:4b:40:dc:46:cc:18:7d:9f:82:02:81:a1:10:87:
2d:75:c4:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 23 03:34:57 2026 by rpki-client