Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: 5xD/KGG3+Fi583X3DAkTtObCkjj8yNJDrbNSQyIUoKE=
Subject key identifier: 55:53:C9:8C:43:F4:76:00:0E:69:F2:95:95:5A:45:E9:64:90:40:77
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 019CAD906E153A37E4F2022B5B8A8F2C773C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0BE4
Signing time: Mon 02 Mar 2026 08:00:49 +0000
Manifest this update: Mon 02 Mar 2026 08:00:49 +0000
Manifest next update: Tue 03 Mar 2026 08:00:49 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: QtYdYOvQg11Uy5rav0i1WfQzAtuEnXc9aVkDiToyR8c=)
2: uIJ0IS79WDVVxYIbBz_R4fqspJQ.roa (hash: h35WdtQ05WmybDkYDylEfj+xzINWR/bUtvARmeLtlc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:6e:15:3a:37:e4:f2:02:2b:5b:8a:8f:2c:77:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Mar 2 08:00:49 2026 GMT
Not After : Mar 3 08:00:49 2026 GMT
Subject: CN=5553c98c43f476000e69f295955a45e964904077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:59:0c:24:be:f9:0d:12:e1:4d:65:eb:54:7f:
f4:08:89:0e:32:72:2a:81:81:ab:3f:fd:29:c2:e0:
0d:9b:f5:08:82:ef:c2:7c:d1:cc:b4:20:6c:25:3a:
42:72:97:57:a7:f3:ed:b3:79:f7:a0:3a:76:2b:d7:
cf:c1:17:de:e0:32:84:1c:55:a5:83:75:27:d3:b7:
a3:b3:a1:a0:86:fa:70:98:f6:8e:6a:06:2e:aa:18:
9d:01:98:b9:27:f9:89:31:03:e0:1a:64:02:2e:1a:
a1:7e:f3:88:c7:44:df:19:53:51:ae:7c:1d:a2:d0:
8d:b5:5f:00:3f:13:ba:1f:35:ef:6f:84:e1:d4:29:
37:11:75:ea:17:6e:df:ab:8e:eb:8a:32:1c:94:d1:
cb:fb:65:c2:ea:9a:f5:14:84:59:fe:8d:7f:68:93:
8e:ac:ca:84:ce:19:f5:eb:ea:0d:5c:81:ba:4b:b4:
ea:96:a3:e6:98:3d:e4:f1:7b:fb:ee:e3:f7:2a:90:
2f:d0:c7:28:dd:51:d1:4c:16:e6:b9:d2:a1:33:cd:
b9:19:44:9f:32:f5:46:09:0e:43:74:a0:75:91:4d:
0c:7c:6b:a3:90:0f:8b:6d:a1:34:50:0c:8d:55:89:
12:42:41:8b:e2:79:d2:fe:0f:55:eb:fb:60:07:56:
cc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:53:C9:8C:43:F4:76:00:0E:69:F2:95:95:5A:45:E9:64:90:40:77
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:99:c7:dd:ba:7a:c1:04:e4:1e:fc:03:e8:6d:e1:55:1a:b3:
8d:fe:45:55:d3:87:53:30:b8:9f:43:9a:ae:f6:34:ab:1d:bd:
e4:d1:f1:ed:2a:c0:ef:4e:27:db:36:05:53:78:93:a5:76:11:
92:2e:fc:c6:38:68:7c:2d:c0:9d:ee:3b:0e:86:09:7b:9a:e7:
5e:3f:91:93:f6:9a:d0:0f:45:d2:ee:ce:68:80:0a:3d:cd:38:
c8:c1:ea:b2:9e:4f:b8:61:fe:bb:45:31:a8:67:2f:26:75:37:
24:52:41:c8:10:06:28:79:11:c7:30:40:29:90:16:72:78:68:
78:1f:bc:b4:ec:13:6c:8e:8d:7f:18:f5:10:71:75:15:47:0a:
ec:c1:fb:17:c2:ef:84:a4:1e:81:42:05:90:bc:e5:5f:7d:01:
16:5f:3c:c4:c8:e2:ef:e1:91:cf:61:e2:77:2f:d4:68:d8:b3:
cb:0f:3f:de:c8:6c:cc:5a:ee:4a:49:6e:fc:15:32:9d:54:82:
42:77:96:0a:34:23:dd:07:dd:a1:f3:55:09:b6:fc:20:11:27:
30:c0:5e:f2:ae:bc:0c:2b:86:b2:e3:9d:6e:91:72:c7:af:2e:
3d:31:4d:db:75:44:61:d2:a4:9c:2e:90:f0:51:27:9b:6d:ad:
83:61:fa:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytkG4VOjfk8gIrW4qPLHc8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj
ODExOTYwHhcNMjYwMzAyMDgwMDQ5WhcNMjYwMzAzMDgwMDQ5WjAzMTEwLwYDVQQD
Eyg1NTUzYzk4YzQzZjQ3NjAwMGU2OWYyOTU5NTVhNDVlOTY0OTA0MDc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVkMJL75DRLhTWXrVH/0CIkOMnIq
gYGrP/0pwuANm/UIgu/CfNHMtCBsJTpCcpdXp/Pts3n3oDp2K9fPwRfe4DKEHFWl
g3Un07ejs6GghvpwmPaOagYuqhidAZi5J/mJMQPgGmQCLhqhfvOIx0TfGVNRrnwd
otCNtV8APxO6HzXvb4Th1Ck3EXXqF27fq47rijIclNHL+2XC6pr1FIRZ/o1/aJOO
rMqEzhn16+oNXIG6S7TqlqPmmD3k8Xv77uP3KpAv0Mco3VHRTBbmudKhM825GUSf
MvVGCQ5DdKB1kU0MfGujkA+LbaE0UAyNVYkSQkGL4nnS/g9V6/tgB1bMUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFVTyYxD9HYADmnylZVaRelkkEB3MB8GA1UdIwQY
MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt
MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk
LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK5nH3bp6
wQTkHvwD6G3hVRqzjf5FVdOHUzC4n0OarvY0qx295NHx7SrA704n2zYFU3iTpXYR
ki78xjhofC3Ane47DoYJe5rnXj+Rk/aa0A9F0u7OaIAKPc04yMHqsp5PuGH+u0Ux
qGcvJnU3JFJByBAGKHkRxzBAKZAWcnhoeB+8tOwTbI6Nfxj1EHF1FUcK7MH7F8Lv
hKQegUIFkLzlX30BFl88xMji7+GRz2Hidy/UaNizyw8/3shszFruSklu/BUynVSC
QneWCjQj3QfdofNVCbb8IBEnMMBe8q68DCuGsuOdbpFyx68uPTFN23VEYdKknC6Q
8FEnm22tg2H6Gg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 17:54:42 2026 by rpki-client