Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: 3M9cb4YjWIjg/ibwiYaabQYL9DoQGt3AD4mPPx4t1As=
Subject key identifier: C4:5C:33:19:A8:61:50:AE:58:F1:02:F9:E0:AC:83:16:4C:23:EB:00
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 019E1C7D96B0EB578D2ED89B257F8F5F8CBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0CA2
Signing time: Tue 12 May 2026 14:00:53 +0000
Manifest this update: Tue 12 May 2026 14:00:53 +0000
Manifest next update: Wed 13 May 2026 14:00:53 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: iQzxca5tppfV1Ko87YmkXtzVlPzr/wEs3XEDZ5qrJFs=)
2: uIJ0IS79WDVVxYIbBz_R4fqspJQ.roa (hash: h35WdtQ05WmybDkYDylEfj+xzINWR/bUtvARmeLtlc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:96:b0:eb:57:8d:2e:d8:9b:25:7f:8f:5f:8c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: May 12 14:00:53 2026 GMT
Not After : May 13 14:00:53 2026 GMT
Subject: CN=c45c3319a86150ae58f102f9e0ac83164c23eb00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dc:13:e7:08:14:fc:e1:84:9e:db:f6:3b:fd:
78:f1:9e:c5:44:21:55:e5:0d:3d:18:af:85:ab:87:
17:2f:8e:02:20:1b:0d:3f:10:3a:b7:60:a2:11:57:
ef:89:e7:cb:5f:61:e6:18:1c:e3:ab:7d:cd:e4:c3:
36:ac:d3:66:7f:3f:5a:25:8e:ef:b5:bc:19:18:90:
2a:a8:61:b1:79:5e:0b:45:97:5f:27:da:11:85:b0:
37:84:2c:ce:6c:78:e7:8a:94:77:9d:08:fb:cd:9e:
9b:5e:36:f4:c1:11:12:4b:e6:1a:f4:36:9a:30:f5:
08:c6:b9:c4:f0:17:03:bc:b1:b0:57:e2:d2:35:ed:
50:43:45:9a:a4:01:96:6f:01:73:c5:a7:1e:17:84:
27:b4:72:02:bb:25:ef:c8:cb:eb:01:45:65:24:a1:
88:f5:7b:ac:4d:fd:25:e8:cf:ee:00:5e:16:5e:15:
7b:64:48:6d:08:f2:03:ef:03:d7:e7:fb:63:58:6b:
7c:ea:8c:67:46:5d:aa:59:28:43:94:74:22:ca:6a:
7a:70:2a:d1:e8:d5:f0:06:d8:4a:1f:3e:97:e1:71:
2b:c2:42:7b:13:ae:c5:b6:b0:62:25:07:a5:85:d7:
ba:dd:57:91:8c:6a:d4:1a:a4:63:c8:4b:be:8b:18:
45:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5C:33:19:A8:61:50:AE:58:F1:02:F9:E0:AC:83:16:4C:23:EB:00
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:ce:b6:40:3b:c7:92:6a:b1:ff:36:db:7d:09:95:f7:9d:e0:
d9:00:37:6e:f7:6f:cd:51:5b:85:20:5a:2f:a1:1c:3f:9f:c8:
62:f8:4e:14:4c:23:32:1c:aa:98:e0:58:fe:c9:e0:54:b3:2a:
e8:35:ce:e7:89:4c:1e:68:47:54:ea:ad:85:89:71:0f:7f:17:
25:d5:75:67:35:b1:99:ca:6d:00:30:cd:a2:91:e0:31:ab:d6:
fb:57:3d:60:67:38:7d:8a:eb:8b:6e:af:46:65:4f:df:67:38:
6a:4a:1a:c2:9f:9e:f4:66:19:0a:bc:a9:9e:83:2c:ca:8f:58:
c2:ae:ef:da:7c:18:16:53:ad:66:80:27:4d:91:30:66:a2:25:
18:84:3e:39:9f:1a:43:30:e0:72:1c:d8:78:a3:e7:ca:7c:49:
84:b5:77:9e:8b:b3:f2:8d:8a:8b:15:3e:18:89:81:6b:c8:bc:
35:77:41:a0:f8:14:75:53:76:64:bd:7e:15:63:2f:51:3d:86:
49:d2:17:21:68:cb:29:29:2e:15:7f:dd:d0:90:0e:9b:f5:79:
53:ea:58:7a:67:ee:11:c1:bd:e1:5f:74:f1:2e:4e:15:e1:bd:
10:7f:8a:9c:53:8d:fd:71:1f:73:63:ae:7d:44:65:fe:b1:54:
5d:3d:3b:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4cfZaw61eNLtibJX+PX4y7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj
ODExOTYwHhcNMjYwNTEyMTQwMDUzWhcNMjYwNTEzMTQwMDUzWjAzMTEwLwYDVQQD
EyhjNDVjMzMxOWE4NjE1MGFlNThmMTAyZjllMGFjODMxNjRjMjNlYjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9wT5wgU/OGEntv2O/148Z7FRCFV
5Q09GK+Fq4cXL44CIBsNPxA6t2CiEVfviefLX2HmGBzjq33N5MM2rNNmfz9aJY7v
tbwZGJAqqGGxeV4LRZdfJ9oRhbA3hCzObHjnipR3nQj7zZ6bXjb0wRESS+Ya9Daa
MPUIxrnE8BcDvLGwV+LSNe1QQ0WapAGWbwFzxaceF4QntHICuyXvyMvrAUVlJKGI
9XusTf0l6M/uAF4WXhV7ZEhtCPID7wPX5/tjWGt86oxnRl2qWShDlHQiymp6cCrR
6NXwBthKHz6X4XErwkJ7E67FtrBiJQelhde63VeRjGrUGqRjyEu+ixhFPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMRcMxmoYVCuWPEC+eCsgxZMI+sAMB8GA1UdIwQY
MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt
MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk
LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAac62QDvH
kmqx/zbbfQmV953g2QA3bvdvzVFbhSBaL6EcP5/IYvhOFEwjMhyqmOBY/sngVLMq
6DXO54lMHmhHVOqthYlxD38XJdV1ZzWxmcptADDNopHgMavW+1c9YGc4fYrri26v
RmVP32c4akoawp+e9GYZCrypnoMsyo9Ywq7v2nwYFlOtZoAnTZEwZqIlGIQ+OZ8a
QzDgchzYeKPnynxJhLV3nouz8o2KixU+GImBa8i8NXdBoPgUdVN2ZL1+FWMvUT2G
SdIXIWjLKSkuFX/d0JAOm/V5U+pYemfuEcG94V908S5OFeG9EH+KnFON/XEfc2Ou
fURl/rFUXT07Sg==
-----END CERTIFICATE-----
Generated at Wed May 13 00:12:43 2026 by rpki-client