Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: og6KKH0d/SKAvSFY3f4T2cn6skShWIQVJf2HhLVQ9RM=
Subject key identifier: 63:AA:91:A2:9A:0C:EF:D5:DB:E1:90:8E:8B:B4:0B:B8:25:4A:6D:18
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019DDB0BE74A42EBF4F40254EB2CEF4ACF81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0D08
Signing time: Wed 29 Apr 2026 21:01:23 +0000
Manifest this update: Wed 29 Apr 2026 21:01:23 +0000
Manifest next update: Thu 30 Apr 2026 21:01:23 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: OV3tvT1jox0OC5P7qNxC6FRDmkbm8Lw88qRZZ5ASOPU=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: Waos7-XGOfCb1jVnxaDXXJ8FbS0.roa (hash: OlEw+/VKb5C5I0jNouIEEfOwzaJNKrqkp/9DnrwnKW8=)
4: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
5: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
6: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
7: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Apr 2026 21:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:db:0b:e7:4a:42:eb:f4:f4:02:54:eb:2c:ef:4a:cf:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Apr 29 21:01:23 2026 GMT
Not After : Apr 30 21:01:23 2026 GMT
Subject: CN=63aa91a29a0cefd5dbe1908e8bb40bb8254a6d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a0:39:ea:de:f4:75:88:84:8a:a5:22:36:4d:
04:4c:c2:5b:f2:08:3a:13:ae:5b:91:75:1f:cf:76:
d7:a7:35:ed:80:30:1e:8a:84:8d:08:1e:06:40:ab:
54:d7:0f:fd:ea:ca:df:31:e0:5c:8f:9a:73:29:06:
03:af:e7:b4:dc:89:ed:35:73:03:a2:51:5a:6d:4e:
b1:bf:53:8f:50:1b:69:f6:57:04:01:18:dd:75:ae:
50:74:af:65:74:d8:d0:72:58:e8:5c:21:7b:ac:fc:
69:9b:85:70:81:c6:87:a4:42:1f:72:56:ae:26:ba:
b8:f6:12:00:7a:40:eb:30:a2:44:c8:87:46:ed:9f:
39:1a:e8:dd:1f:bf:be:50:65:4e:9a:10:33:39:17:
26:55:03:3b:ae:c7:6a:f7:bd:81:c6:49:ea:1a:9d:
05:96:66:ed:6b:78:0c:60:68:12:a1:03:d3:c9:de:
37:14:f6:f2:ca:42:9f:e1:dc:f8:1a:85:16:b0:ad:
7b:94:82:e1:bd:31:82:27:16:d2:bb:10:9d:a6:1d:
6a:ea:17:e4:60:d2:dc:28:14:68:7d:18:0a:53:03:
2f:f8:9d:5e:10:70:58:17:0a:0a:55:7a:f5:26:48:
d2:75:ca:5e:cc:04:fa:7a:dc:8f:de:e6:06:43:8c:
33:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AA:91:A2:9A:0C:EF:D5:DB:E1:90:8E:8B:B4:0B:B8:25:4A:6D:18
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:15:d8:e1:ed:20:a9:dc:2e:7d:5c:f3:97:df:77:8f:8e:91:
e2:74:7b:5c:69:08:2d:e3:e2:b6:4c:51:0e:95:a4:e7:40:8b:
54:8b:c6:0c:84:1f:87:0d:ae:2d:92:ac:54:eb:d8:e6:1e:ba:
49:b2:81:bb:70:7e:cd:dd:af:4b:5d:10:4c:8d:6c:20:18:7a:
f0:85:27:55:18:67:4f:99:b2:e0:2d:b5:48:77:40:76:83:b6:
9b:d2:db:89:fa:43:6a:ab:17:dd:b9:56:d8:c4:fb:4c:cf:ec:
cc:df:3a:2e:e5:53:7e:d1:9d:00:2a:aa:3b:de:47:13:d2:6c:
f6:41:78:14:d2:eb:90:a3:c7:ef:b2:32:ef:ee:bb:2a:33:c2:
1c:8b:5a:bf:84:4c:3a:ad:73:00:ad:8b:20:aa:cb:64:f3:6f:
3c:da:56:c4:c1:fe:d0:ba:2e:ff:84:e1:19:a8:36:ae:f0:58:
79:ce:90:b4:96:59:cb:01:c2:12:98:1f:21:93:59:65:60:7a:
40:96:65:4f:0f:2d:8d:27:9f:32:43:93:bf:51:5b:4c:e8:fd:
e3:bf:2d:1f:4b:4b:bb:62:9c:70:02:ae:30:c3:7f:8d:98:42:
6a:a2:1b:f0:2f:74:ff:09:8e:1b:8e:56:41:25:d1:dc:59:89:
d2:11:84:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 03:40:16 2026 by rpki-client