Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: HUY8H2wF5VGc9sqVQje/zewWx7tYQs5BkKVkHuBWzcA=
Subject key identifier: 93:E4:61:D0:D5:8A:EA:FD:C4:A5:75:7D:A0:A9:C1:B0:CD:76:A0:68
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019D8D2764124DF77A6BBCB707D9EF068072
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0CDC
Signing time: Tue 14 Apr 2026 18:01:02 +0000
Manifest this update: Tue 14 Apr 2026 18:01:02 +0000
Manifest next update: Wed 15 Apr 2026 18:01:02 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: wDYOJvN5L1ZGiarJKQn8hvJVVBCdQI2uCwLzzMiY3Zw=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
4: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 15 Apr 2026 18:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:8d:27:64:12:4d:f7:7a:6b:bc:b7:07:d9:ef:06:80:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Apr 14 18:01:02 2026 GMT
Not After : Apr 15 18:01:02 2026 GMT
Subject: CN=93e461d0d58aeafdc4a5757da0a9c1b0cd76a068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:24:0f:e3:b8:e7:97:c2:22:6c:b4:39:e9:ed:
42:d6:4f:60:0a:58:a0:ac:dd:ed:58:8b:87:f7:0b:
e5:7e:df:66:5c:75:13:49:76:7e:99:eb:ce:fc:a8:
a3:c6:4b:c2:95:aa:17:ab:ac:a9:b8:36:db:a2:72:
b4:a5:73:a0:52:a9:fc:03:0b:ee:f9:7f:31:61:53:
15:a8:0d:aa:26:a9:96:63:e0:8f:fe:6d:a0:a2:3d:
1a:f7:05:48:e0:06:f1:43:db:23:05:bc:c0:2b:97:
9e:78:7e:8d:ef:14:4d:a0:a6:cf:bb:3c:bb:5f:ea:
dd:22:fa:95:0b:4f:cb:c2:32:c3:26:60:cb:3a:22:
70:cd:8d:9b:00:5e:dc:38:ec:e6:89:61:cd:f0:0e:
14:09:9c:a4:c1:6d:29:9c:17:e5:76:f5:3b:64:fe:
d7:ac:cd:50:5f:63:37:63:f0:e6:30:88:f7:6f:61:
b7:a8:e1:69:0a:d7:49:b2:d7:2d:60:46:c1:2c:8d:
b6:02:de:3c:0d:a1:6a:25:18:07:62:66:9b:7f:c2:
2e:78:c1:68:5d:11:89:ac:44:6c:ae:97:77:73:8b:
fc:29:62:dc:cb:91:06:de:01:ad:62:cb:59:e0:fe:
e2:74:19:4e:e7:84:aa:59:50:17:2b:1c:56:11:12:
89:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E4:61:D0:D5:8A:EA:FD:C4:A5:75:7D:A0:A9:C1:B0:CD:76:A0:68
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:ed:93:a6:47:d5:04:e5:d3:12:cb:cb:bc:6f:80:0b:26:9f:
c7:44:de:27:2a:3f:d9:1c:52:82:f3:42:05:0a:68:7a:ff:7e:
55:c2:f5:67:eb:c0:02:c8:e3:c9:57:28:8d:d8:54:0e:82:57:
bc:95:dc:aa:64:17:90:3c:c4:37:71:24:d3:a3:82:a7:5c:cd:
2a:ff:e8:a1:6d:bc:ee:35:12:87:8f:64:88:cd:ae:79:50:9f:
a4:09:78:ac:69:c2:a7:77:dc:e4:7a:66:d6:f7:73:4a:33:42:
6a:ef:73:e2:4a:a8:5d:46:3d:c8:8e:06:ba:0b:3f:f7:a5:b8:
bf:a3:83:13:ed:0e:ca:86:5a:13:f3:32:6a:ac:22:48:16:16:
bf:9f:50:13:a6:c9:f7:b7:06:34:79:e5:8e:5b:97:d4:1e:50:
b0:c7:64:b5:e5:a2:21:26:0d:d0:4b:fc:38:2d:d9:d4:3b:2c:
32:0c:31:92:67:06:5e:d8:1f:d8:48:63:b6:4a:c3:fa:2a:22:
31:4a:f5:cc:39:5f:61:3d:b2:2c:25:fd:d0:5e:a6:2b:8f:1e:
46:40:aa:5f:b2:09:44:db:19:77:e9:93:37:86:2c:bc:03:05:
f7:8c:47:93:77:2c:5c:78:61:0c:b6:8b:41:68:d7:41:3c:71:
bc:f4:2c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 15 00:05:10 2026 by rpki-client