
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: 2AWCmmr+OYNXwPVsrrfA2gXPVNjml+eZSywxzaAVe/0=
Subject key identifier: D7:EF:A6:35:D1:70:64:24:F0:08:FE:9B:F0:7E:F0:27:AA:BB:6C:2F
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019F6614B0CCDCDA0561C608441C927FD140
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0DDE
Signing time: Wed 15 Jul 2026 14:00:59 +0000
Manifest this update: Wed 15 Jul 2026 14:00:59 +0000
Manifest next update: Thu 16 Jul 2026 14:00:59 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: pATI/mQ4nWhCYPykeKgtbnymObKvtYQPnX7w0diIS24=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: Z9-G8jBlIUV8JXo4mpweyF3YJ1U.roa (hash: dj5hMhYWdWHJcm+043OLfnQ2pOg2DSF2L7CpAN4Js2w=)
4: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
5: fnggY0IhO9mDzoeT1t0WuzkAzWI.roa (hash: 9e6IMcnEkPPF9sv33WqexenQbytaWL15Ul9zWEcxcQo=)
6: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
7: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 Jul 2026 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:66:14:b0:cc:dc:da:05:61:c6:08:44:1c:92:7f:d1:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Jul 15 14:00:59 2026 GMT
Not After : Jul 16 14:00:59 2026 GMT
Subject: CN=d7efa635d1706424f008fe9bf07ef027aabb6c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:af:bc:14:66:c6:db:72:de:a9:6c:b3:96:33:
66:0d:de:5f:34:4d:4a:4b:c7:f1:ef:f5:ba:92:8f:
e9:3a:9a:14:fd:e8:9c:d7:f3:8c:6b:18:e6:da:d7:
9e:55:c9:8a:1c:d9:88:76:f5:64:ae:7d:5c:8e:92:
bd:79:48:cb:b7:1c:dc:c0:c3:ba:32:09:dd:f8:59:
38:63:a3:e7:15:5c:05:b5:09:32:5d:55:6f:5f:15:
1a:1b:47:2d:12:fb:0e:d7:93:37:cb:cd:8a:c6:95:
90:b9:d8:ce:01:32:3e:70:e1:0d:fa:15:0b:ff:d0:
b2:80:d4:93:0d:af:ca:45:48:e6:11:e0:b1:58:cc:
d1:b1:08:ce:99:c3:b9:a5:66:1e:d7:31:25:02:8b:
55:48:02:8c:5c:56:03:1f:f7:e0:bf:44:fb:a6:7d:
6e:cd:70:c4:c5:db:2f:72:54:58:15:2a:73:2a:26:
74:51:e6:2f:98:92:2f:7b:37:25:19:8c:f1:ed:fe:
ab:a4:c4:96:a2:bf:4c:f4:84:25:4a:1d:a0:80:b9:
1e:d9:e7:47:ae:ac:1d:86:54:3c:99:58:81:a5:d7:
5d:e4:6d:7b:cf:cf:2f:30:f9:be:ce:3b:34:27:6a:
de:90:29:13:21:72:cc:bd:33:47:f3:36:c3:77:77:
ea:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:EF:A6:35:D1:70:64:24:F0:08:FE:9B:F0:7E:F0:27:AA:BB:6C:2F
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:c4:4a:d9:43:64:eb:13:66:d1:bd:07:e8:00:6e:50:1d:a9:
37:70:01:1b:63:fa:be:aa:fc:fe:b9:0e:25:ee:34:b3:c5:4d:
aa:35:9c:70:c2:e4:0b:f2:39:5f:b4:85:08:28:58:c5:19:c1:
86:24:64:84:fc:3a:29:17:71:3d:1b:2a:68:8f:e1:db:17:8c:
86:16:c6:38:da:d7:33:8d:a6:57:54:40:f2:5c:ba:c8:41:ef:
31:ea:e2:4a:cf:ed:6b:56:85:1f:95:28:fe:56:e4:0e:1b:7a:
2f:17:76:09:02:26:ab:1c:09:48:df:96:fa:09:a1:4e:2b:19:
b7:cc:5a:c2:84:b2:df:de:65:a0:2c:38:97:bd:16:37:c2:3f:
a5:3a:4b:00:35:ae:48:63:72:ee:a2:75:9b:8e:d5:ca:d5:15:
5b:74:be:44:ea:d2:d0:d4:2d:40:d4:38:d4:7b:8b:ff:b0:40:
63:1f:ec:95:bb:4e:c8:0a:ee:63:b8:2b:42:4d:09:52:2d:84:
3b:33:37:99:98:de:3f:a2:39:eb:bc:a2:b0:10:60:e5:dc:af:
3f:a5:cf:12:7f:89:2f:78:8e:6e:e2:a4:98:d7:bc:b1:8d:8d:
f6:cf:59:bd:a0:c1:a7:55:21:53:8c:ed:d8:04:23:cc:4a:63:
f8:23:c4:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 18:19:02 2026 by rpki-client