Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: wP7OYW5K+JTgOxiWczQyeqgZ6SwYlNEr2aPXL4soEBk=
Subject key identifier: 93:87:61:64:52:98:1C:A4:92:D9:3F:DF:46:E0:DF:BE:5E:3F:FA:32
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019E4BEA367F98F57576F240F4878AB22B4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D44
Signing time: Thu 21 May 2026 19:01:40 +0000
Manifest this update: Thu 21 May 2026 19:01:40 +0000
Manifest next update: Fri 22 May 2026 19:01:40 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: i9iU8ptpyRQeGBPtroz/OsxjGbbKaIojWrDGH50gkVg=)
2: IIKBJ5F-ZYfDiLk7t6WJRQ2nV4E.roa (hash: S9KRzMh8QRY1YXASzZ2F1vNcK2llA+Uzs+Q5mhLfjRo=)
3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
4: Vfrj1CjwXIt_tA2vbVO6W0Q8sww.roa (hash: mvOhadzyYlNh3bwJh8QRN9BDoPYKpsh/DrQUaDTKRJg=)
5: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
7: no2DAadLlyCgfJ3yGfXMXAle7ss.roa (hash: wO/hILyjAZxEBMqsImhYXJk4hOHjBmxpFt4GY+g4M0Q=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 May 2026 19:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4b:ea:36:7f:98:f5:75:76:f2:40:f4:87:8a:b2:2b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: May 21 19:01:40 2026 GMT
Not After : May 22 19:01:40 2026 GMT
Subject: CN=9387616452981ca492d93fdf46e0dfbe5e3ffa32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:41:f7:ea:ec:3d:1f:05:d6:dc:de:af:67:3d:
2d:73:fd:43:12:97:aa:21:58:00:6f:d1:0f:61:d5:
13:f5:cb:06:57:08:45:35:a7:f1:6a:fa:14:33:6d:
fd:ac:f8:02:18:1f:00:85:05:b5:79:0b:2d:4c:eb:
5b:00:0a:d7:f2:ee:91:67:f4:d2:4a:d1:f3:a5:9d:
d5:16:f2:93:9c:0f:d1:0c:7b:88:16:0f:e7:12:1a:
98:04:4d:f8:cf:37:d2:e7:36:ca:ca:8a:69:4b:6c:
98:86:1a:fd:bf:f9:4e:85:82:37:d1:21:f5:21:d6:
18:3c:39:86:85:f1:50:05:2f:4e:e7:62:da:2a:4a:
35:fe:0c:72:7a:88:59:bb:65:8d:7b:b4:06:0a:24:
73:f3:9e:29:d5:97:e6:ce:9e:0b:3d:9f:68:a0:a0:
3a:0e:5f:04:2e:56:99:44:87:cc:fc:66:52:ba:07:
27:69:ae:d2:11:e3:86:c3:9c:b8:c3:1b:9d:f6:89:
07:8e:51:1e:6c:99:45:35:91:5b:25:00:62:17:4e:
32:f4:cc:46:d1:86:1e:aa:bd:18:04:85:a3:d2:02:
23:c3:3f:ab:7c:4d:e1:05:9d:28:24:8e:b6:55:26:
13:a9:83:c3:11:8b:46:ee:12:61:c4:dd:db:52:3d:
d7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:87:61:64:52:98:1C:A4:92:D9:3F:DF:46:E0:DF:BE:5E:3F:FA:32
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ff:b7:03:f6:40:af:fb:5d:a5:34:4a:d0:a8:fc:42:7c:ba:
76:32:42:3c:dd:d1:03:85:43:3b:83:8b:20:16:c7:35:29:a6:
19:09:62:f0:dd:59:66:92:66:3e:e0:b9:57:34:31:d1:76:39:
3b:d8:8d:97:bd:66:9f:e3:19:df:c1:54:e7:7b:51:c2:d1:d9:
5d:a2:0b:38:59:d4:29:e1:88:71:1b:db:90:bd:75:9e:0f:ab:
e9:9b:4a:97:fd:97:22:58:fe:fc:ad:a2:74:14:f6:c5:13:59:
6f:57:33:e7:1e:92:71:d0:11:ea:78:1d:4e:fa:0b:30:0c:67:
76:ce:88:fd:4f:84:0c:30:79:93:9f:22:62:5d:c9:9a:33:be:
c2:91:8b:31:78:1f:f9:e9:e9:c4:37:bf:64:12:df:de:ca:c5:
72:48:9c:70:cd:47:ca:f0:60:25:3b:3d:a4:6d:18:56:4c:63:
d8:43:1e:0b:37:cf:2f:9c:e5:32:0e:2a:5a:73:01:9c:4d:c5:
84:a3:3f:75:2d:dc:02:3c:97:c1:40:08:22:30:38:01:bb:f3:
42:68:94:7a:50:69:1a:08:09:e5:f3:86:13:70:ba:0f:58:82:
09:53:b6:d3:ad:43:9b:37:42:ed:da:87:b8:71:68:2c:e4:94:
59:54:ac:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 01:49:49 2026 by rpki-client