Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: +L8M/1BCN8y/RKfTg4SchjTm+8BnQlIIH97ZQjSC3vs=
Subject key identifier: 97:D7:FD:0A:57:69:F1:AD:21:3E:6D:63:73:85:49:CD:A4:53:CE:05
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 0199FB0EF224BFA8A6168B53E364096287C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0A7E
Signing time: Sun 19 Oct 2025 06:01:24 +0000
Manifest this update: Sun 19 Oct 2025 06:01:24 +0000
Manifest next update: Mon 20 Oct 2025 06:01:24 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: j/TjfHoR04N0CV5bMoNf83yN50oL/oKlyx2PvNCBDq4=)
2: Q9uvUMUGF4tW9TpLUtXmiB_YDYU.roa (hash: 6w5t2feWmLv2FpcZk6E6i1f0DCsFUL0L2nW9iOpOGYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:f2:24:bf:a8:a6:16:8b:53:e3:64:09:62:87:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Oct 19 06:01:24 2025 GMT
Not After : Oct 20 06:01:24 2025 GMT
Subject: CN=97d7fd0a5769f1ad213e6d63738549cda453ce05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:30:9b:dc:32:2f:b2:ce:01:23:71:81:c4:2f:
22:d3:c6:16:03:d4:32:60:88:e9:44:63:4c:77:3d:
83:75:af:f9:e8:ee:f9:4a:2f:fa:a0:a1:60:e3:b5:
27:34:ea:8f:5c:af:67:6c:a4:d6:4c:8b:19:04:6e:
3d:85:ec:35:46:84:9d:80:5d:5f:35:e2:d6:91:a7:
e4:1c:8b:56:2f:08:fc:9c:4a:14:89:bb:48:ce:ee:
56:45:63:34:8c:8f:f7:9c:94:90:27:e4:6f:d0:17:
4a:26:07:ef:e6:c3:96:c6:ab:82:eb:92:d0:91:66:
f5:5f:24:31:b7:90:e1:70:2c:79:b9:4f:8c:3f:d7:
f7:b0:cf:3a:f0:7e:ef:76:2d:26:60:66:1e:e7:f1:
e4:0b:96:55:6d:c6:f6:e2:c9:32:c9:67:b5:3d:64:
4d:2a:ba:4a:f9:1c:19:87:2d:1d:3b:b9:65:67:91:
ca:57:cf:73:da:cc:f4:c8:b7:e3:17:5f:9b:e3:2e:
08:20:b5:4e:58:1d:b6:78:25:79:37:54:dd:32:7c:
f8:a3:93:8f:59:1a:c6:30:66:54:4f:c7:4e:56:02:
01:3e:0b:57:61:c5:c3:a9:27:41:66:6a:bd:86:10:
f3:bf:9c:20:57:c7:52:62:1e:ea:bc:a9:7d:2b:03:
5f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D7:FD:0A:57:69:F1:AD:21:3E:6D:63:73:85:49:CD:A4:53:CE:05
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:77:3b:33:cd:84:09:f9:9a:c5:aa:dd:b6:86:9b:cc:14:4f:
1d:0d:fa:47:da:87:09:bc:08:94:6f:92:e3:81:77:c9:e8:73:
99:c5:02:42:ca:ea:43:0d:ce:13:9e:fe:83:a8:a0:1c:cd:c6:
fd:68:9a:2f:27:55:cf:28:9b:3b:24:8a:a6:93:26:20:75:d7:
3d:84:ee:76:8d:82:ef:a3:e7:f0:61:cd:85:04:5f:2f:4c:b0:
fb:59:0f:91:d9:d3:2b:e0:71:c6:05:c1:07:6d:fd:22:27:0f:
8d:98:de:10:ba:b6:77:24:fc:26:45:5e:e1:36:3a:4e:4b:e0:
58:52:da:83:dd:c3:e1:af:8f:54:19:91:3f:82:53:8f:a2:ee:
48:2b:a4:ef:6d:97:ef:3d:6b:69:54:f8:a9:2a:75:cf:33:c6:
fe:7b:8c:1d:20:05:00:9d:f6:59:a0:49:a9:c3:f3:93:62:b7:
5a:1d:c7:66:45:19:4f:17:9a:3f:14:96:db:b9:4c:f1:31:14:
98:b7:81:ea:70:5a:92:5f:7a:56:cc:b3:3d:b3:38:b8:22:95:
66:99:78:e6:0a:27:05:a7:c1:94:ae:ca:5f:04:ee:4a:0a:6c:
6e:14:cb:fb:e7:2c:fa:66:78:a4:fb:33:b8:7e:25:60:bd:b9:
42:06:07:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7DvIkv6imFotT42QJYofAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj
ODExOTYwHhcNMjUxMDE5MDYwMTI0WhcNMjUxMDIwMDYwMTI0WjAzMTEwLwYDVQQD
Eyg5N2Q3ZmQwYTU3NjlmMWFkMjEzZTZkNjM3Mzg1NDljZGE0NTNjZTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjCb3DIvss4BI3GBxC8i08YWA9Qy
YIjpRGNMdz2Dda/56O75Si/6oKFg47UnNOqPXK9nbKTWTIsZBG49hew1RoSdgF1f
NeLWkafkHItWLwj8nEoUibtIzu5WRWM0jI/3nJSQJ+Rv0BdKJgfv5sOWxquC65LQ
kWb1XyQxt5DhcCx5uU+MP9f3sM868H7vdi0mYGYe5/HkC5ZVbcb24skyyWe1PWRN
KrpK+RwZhy0dO7llZ5HKV89z2sz0yLfjF1+b4y4IILVOWB22eCV5N1TdMnz4o5OP
WRrGMGZUT8dOVgIBPgtXYcXDqSdBZmq9hhDzv5wgV8dSYh7qvKl9KwNfPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJfX/QpXafGtIT5tY3OFSc2kU84FMB8GA1UdIwQY
MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt
MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk
LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW3c7M82E
CfmaxardtoabzBRPHQ36R9qHCbwIlG+S44F3yehzmcUCQsrqQw3OE57+g6igHM3G
/WiaLydVzyibOySKppMmIHXXPYTudo2C76Pn8GHNhQRfL0yw+1kPkdnTK+BxxgXB
B239IicPjZjeELq2dyT8JkVe4TY6TkvgWFLag93D4a+PVBmRP4JTj6LuSCuk722X
7z1raVT4qSp1zzPG/nuMHSAFAJ32WaBJqcPzk2K3Wh3HZkUZTxeaPxSW27lM8TEU
mLeB6nBakl96VsyzPbM4uCKVZpl45gonBafBlK7KXwTuSgpsbhTL++cs+mZ4pPsz
uH4lYL25QgYHog==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:46 2025 by rpki-client