Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: 0Vc5hSTJq3Ds4uFUlyXvBjtRV4txFIGY0pOg/y97dkU=
Subject key identifier: 29:A8:9D:7C:F9:F3:37:BB:EE:58:E3:B0:9D:AD:D6:B2:86:71:99:F4
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 019D32D0FE9508B0A5D65E29C42513C511B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0C29
Signing time: Sat 28 Mar 2026 05:00:50 +0000
Manifest this update: Sat 28 Mar 2026 05:00:50 +0000
Manifest next update: Sun 29 Mar 2026 05:00:50 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: auq7lM60WGgGk5muTb8jx7a4YqRkqlt37SEa3BRSaUw=)
2: uIJ0IS79WDVVxYIbBz_R4fqspJQ.roa (hash: h35WdtQ05WmybDkYDylEfj+xzINWR/bUtvARmeLtlc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:d0:fe:95:08:b0:a5:d6:5e:29:c4:25:13:c5:11:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Mar 28 05:00:50 2026 GMT
Not After : Mar 29 05:00:50 2026 GMT
Subject: CN=29a89d7cf9f337bbee58e3b09dadd6b2867199f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b8:d8:02:c5:4d:f5:6a:59:52:08:f8:28:2e:
c0:d5:26:d9:4d:9f:b1:29:1f:38:c3:ca:ce:a5:4d:
71:72:6e:24:93:54:67:f0:4d:0c:5d:a8:e4:2b:26:
1a:ae:ed:be:47:64:5e:d6:3e:55:8f:cf:0f:0c:dc:
9d:ac:e4:91:81:3c:2e:0b:a1:fb:14:aa:c0:b6:3e:
6e:66:87:43:7c:d7:a5:ad:d1:8a:39:c3:ef:3d:43:
13:3f:0c:fe:2d:4b:7e:e6:d0:a6:1a:c3:bb:e8:ff:
ac:41:01:9a:5f:0e:61:2e:be:2d:ce:67:b7:a9:a0:
43:08:3b:0c:c1:9b:b2:9b:5a:6c:f2:bc:e4:6f:11:
a3:40:3b:56:bf:d3:89:82:33:8c:77:ff:7a:8d:ad:
29:d8:7d:1f:e8:9d:a9:48:e1:99:14:e1:b1:08:1c:
7e:aa:79:30:d7:08:57:b8:21:9f:ae:05:58:1a:a0:
64:71:43:e2:f0:48:2e:f1:38:50:d4:95:6b:62:0d:
01:d3:a5:0e:47:eb:cb:b3:5d:fb:e2:e4:06:98:2d:
19:6a:c5:7a:ad:81:e5:a5:e5:40:cb:4b:f6:6c:f4:
23:37:1d:7b:b2:ca:d7:ad:9e:96:1c:49:df:23:54:
43:ac:e8:8b:d1:74:9b:78:0b:98:90:5c:96:05:b7:
85:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A8:9D:7C:F9:F3:37:BB:EE:58:E3:B0:9D:AD:D6:B2:86:71:99:F4
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:65:b6:4b:87:a6:1f:b5:d5:f1:64:dc:80:f6:36:3d:c1:55:
dd:8b:08:55:ff:c8:2e:8f:5c:39:65:49:c4:39:82:0e:bc:56:
92:23:0b:74:be:db:d6:e3:1f:66:31:57:ec:3e:4b:a1:54:f2:
3b:eb:57:fd:dd:a2:d4:b5:04:2c:7f:99:61:36:bf:e0:db:1c:
c1:6d:44:0e:4e:87:8d:f9:05:8d:3e:a1:a0:73:96:46:d6:82:
5a:fb:42:5f:48:b7:d5:a7:53:33:e8:b3:20:5e:e5:74:84:7c:
98:2d:fa:94:9b:58:cc:f8:b2:a1:16:65:de:d3:8b:40:4a:eb:
ce:5d:5c:a4:2a:8b:6a:f6:2e:48:9e:1a:07:81:56:f9:29:ea:
d5:0b:99:b5:d6:a9:64:f8:bb:b5:aa:bb:2a:19:53:bd:31:ca:
37:7e:35:24:d4:8e:00:9e:f1:eb:b4:87:a4:ec:71:a1:84:19:
0e:9e:fb:14:0a:31:e8:73:ab:60:f6:d3:3c:0b:2d:06:51:20:
ed:1b:d2:c0:38:49:13:18:e4:73:63:6a:cd:23:86:be:f2:c4:
1b:a2:4d:a4:34:ee:06:9b:da:48:d0:2a:05:0c:0c:a4:f3:04:
7c:20:eb:08:8e:2a:bd:9f:36:e2:76:4a:a3:04:dc:4b:73:0e:
69:40:f4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:06:23 2026 by rpki-client