Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: PE4XjWjDPWVfO8uCKWY8QBjrkYg2HzrmX4evQAfegEM=
Subject key identifier: 13:B2:1A:A0:D4:31:01:5A:8A:9D:61:6C:8A:D2:B2:78:F7:03:D8:A3
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 0197BA7E803449F38D74CFB7B799BBBC1EAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0953
Signing time: Sun 29 Jun 2025 07:02:21 +0000
Manifest this update: Sun 29 Jun 2025 07:02:21 +0000
Manifest next update: Mon 30 Jun 2025 07:02:21 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: 9Eoc6UrwKmBtOc1QmeKj3qW0Mp/xNSoaV/6hB5uFYp8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:80:34:49:f3:8d:74:cf:b7:b7:99:bb:bc:1e:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Jun 29 07:02:21 2025 GMT
Not After : Jun 30 07:02:21 2025 GMT
Subject: CN=13b21aa0d431015a8a9d616c8ad2b278f703d8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:6f:22:f1:1d:18:83:b8:53:50:f2:46:41:
ad:c3:7c:e0:57:1c:cb:5e:85:9b:01:5f:41:48:8d:
4e:b3:09:a0:68:12:32:b5:3c:1c:02:a3:13:55:df:
90:02:ed:35:02:6f:35:59:58:4c:ef:34:9d:f2:38:
3f:14:33:9a:1f:ab:63:39:b4:a2:29:6d:c9:85:18:
27:47:f5:a1:4b:5d:f9:8e:58:13:2a:5c:cc:5c:89:
5c:fb:ce:86:ee:4a:cf:f9:b7:15:c2:ca:c4:7d:c5:
fa:5e:3e:5b:4c:c2:a1:47:71:20:4c:18:3d:d7:ed:
b0:9c:64:8c:43:93:11:ef:7c:b4:c1:59:1f:48:57:
65:be:3b:74:1c:83:01:6f:db:27:65:5d:cc:2e:6d:
f0:c0:fa:ed:b5:0f:68:51:a0:94:b0:50:9f:0c:0e:
60:b0:16:c5:e4:e3:f9:67:0e:c9:5c:87:2d:96:a9:
08:28:46:31:e2:9c:07:34:67:f9:b2:48:4d:c0:a0:
19:df:52:3e:ae:a4:b1:11:d0:0d:97:92:fa:10:84:
bd:25:a9:e0:63:d5:16:ee:61:da:ff:b7:8b:17:fc:
18:7d:dc:76:2e:d3:a2:ea:a1:be:45:aa:08:b2:23:
1f:9f:b0:6b:55:4f:df:1f:b4:78:a5:30:2e:59:45:
3d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B2:1A:A0:D4:31:01:5A:8A:9D:61:6C:8A:D2:B2:78:F7:03:D8:A3
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:06:29:97:09:c0:7e:7e:79:26:54:e3:c8:5d:a5:c4:e6:2e:
5d:1b:b1:40:80:54:89:ea:7b:84:c4:ca:68:10:bb:41:ed:19:
fb:d0:55:22:c2:50:7a:96:41:cc:70:0d:3a:cd:08:e1:00:cb:
6c:42:60:8b:a4:53:48:28:0b:f0:97:cf:45:45:4f:7c:46:fd:
f5:b8:c4:d5:64:58:f3:de:28:22:17:f7:46:52:25:c4:23:cb:
15:ca:e6:c5:84:99:33:88:0a:75:49:72:b9:da:83:71:c6:51:
d5:cf:83:04:60:3f:2c:19:12:2b:6f:73:5e:5a:87:be:5f:ae:
a1:c1:31:a4:61:65:86:7a:18:13:fb:78:b6:0d:a3:1d:19:f2:
5b:f3:8c:c5:09:99:7e:f4:c0:19:7c:2d:0e:f2:65:89:e1:60:
42:6c:fc:66:15:97:65:f6:79:f5:e7:39:7b:77:99:23:aa:11:
36:e4:bd:81:35:2c:ed:f1:6c:a1:54:38:42:3b:de:8f:c4:89:
18:1a:34:29:61:53:1b:bb:c5:32:00:6b:b7:34:e9:0b:be:28:
dd:89:60:d7:71:7a:af:44:d3:54:16:a6:48:d6:ec:89:c2:e6:
74:13:61:66:a2:4d:26:d5:28:81:7c:f3:ca:67:0e:6a:08:fc:
0b:19:29:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6foA0SfONdM+3t5m7vB6rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj
ODExOTYwHhcNMjUwNjI5MDcwMjIxWhcNMjUwNjMwMDcwMjIxWjAzMTEwLwYDVQQD
EygxM2IyMWFhMGQ0MzEwMTVhOGE5ZDYxNmM4YWQyYjI3OGY3MDNkOGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozpvIvEdGIO4U1DyRkGtw3zgVxzL
XoWbAV9BSI1OswmgaBIytTwcAqMTVd+QAu01Am81WVhM7zSd8jg/FDOaH6tjObSi
KW3JhRgnR/WhS135jlgTKlzMXIlc+86G7krP+bcVwsrEfcX6Xj5bTMKhR3EgTBg9
1+2wnGSMQ5MR73y0wVkfSFdlvjt0HIMBb9snZV3MLm3wwPrttQ9oUaCUsFCfDA5g
sBbF5OP5Zw7JXIctlqkIKEYx4pwHNGf5skhNwKAZ31I+rqSxEdANl5L6EIS9Jang
Y9UW7mHa/7eLF/wYfdx2LtOi6qG+RaoIsiMfn7BrVU/fH7R4pTAuWUU9gQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBOyGqDUMQFaip1hbIrSsnj3A9ijMB8GA1UdIwQY
MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt
MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk
LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATwYplwnA
fn55JlTjyF2lxOYuXRuxQIBUiep7hMTKaBC7Qe0Z+9BVIsJQepZBzHANOs0I4QDL
bEJgi6RTSCgL8JfPRUVPfEb99bjE1WRY894oIhf3RlIlxCPLFcrmxYSZM4gKdUly
udqDccZR1c+DBGA/LBkSK29zXlqHvl+uocExpGFlhnoYE/t4tg2jHRnyW/OMxQmZ
fvTAGXwtDvJlieFgQmz8ZhWXZfZ59ec5e3eZI6oRNuS9gTUs7fFsoVQ4Qjvej8SJ
GBo0KWFTG7vFMgBrtzTpC74o3Ylg13F6r0TTVBamSNbsicLmdBNhZqJNJtUogXzz
ymcOagj8CxkpMQ==
-----END CERTIFICATE-----
Generated at Sun Jun 29 14:15:27 2025 by rpki-client