Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: /kJRRRwOoaPq3v9PqFOn/qpHCsK8fcFm6nq9oXLDjh8=
Subject key identifier: 93:F8:F1:56:10:C8:19:5B:89:EB:AD:27:0C:77:09:01:98:37:90:BA
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 019D992B8AB7CAC0D68EB9995A88118CE659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0C5E
Signing time: Fri 17 Apr 2026 02:01:00 +0000
Manifest this update: Fri 17 Apr 2026 02:01:00 +0000
Manifest next update: Sat 18 Apr 2026 02:01:00 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: Uv3CHErqoovFga2FJcE9ob+CdErCrUmhSBUCdzganas=)
2: uIJ0IS79WDVVxYIbBz_R4fqspJQ.roa (hash: h35WdtQ05WmybDkYDylEfj+xzINWR/bUtvARmeLtlc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:8a:b7:ca:c0:d6:8e:b9:99:5a:88:11:8c:e6:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Apr 17 02:01:00 2026 GMT
Not After : Apr 18 02:01:00 2026 GMT
Subject: CN=93f8f15610c8195b89ebad270c770901983790ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4a:cd:7c:11:1c:e1:12:b3:89:88:a6:dc:76:
72:86:92:14:89:5a:0a:f1:9d:27:39:de:8f:35:f8:
fc:52:fd:03:d7:d6:42:76:49:7f:e1:f6:4c:a3:8e:
b0:c7:4d:4a:f7:01:f6:63:30:2f:ec:eb:2e:e0:36:
92:c6:b0:d0:b6:62:91:c5:36:78:5c:21:25:f9:61:
c8:be:4e:66:b7:3a:89:bf:01:83:c1:4b:b9:86:eb:
45:59:99:bb:a4:3c:7b:01:b7:2a:65:ac:bf:2c:b9:
aa:aa:8d:2a:6f:a6:f6:96:60:3b:f2:26:04:90:35:
5a:78:f9:a7:44:09:03:64:04:22:67:7b:db:ce:15:
2b:44:b3:c9:39:a1:8f:d8:81:f4:76:0a:9d:f3:ff:
81:69:09:4b:ed:e0:fa:05:b4:1d:16:b2:c6:99:51:
a3:14:2b:f9:25:17:68:79:01:1b:ad:45:fc:dc:4a:
9a:fc:ab:64:03:7b:a2:ea:6e:cc:00:90:0b:0a:58:
5a:b3:00:2f:b1:40:df:aa:89:eb:c6:71:87:e6:55:
85:e8:8c:d8:89:dc:78:78:84:2c:80:24:8d:e6:69:
f0:f2:2a:92:25:dc:93:a2:1c:8c:28:44:10:be:31:
e1:f4:02:6b:db:79:45:05:24:0c:9d:76:42:ee:33:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F8:F1:56:10:C8:19:5B:89:EB:AD:27:0C:77:09:01:98:37:90:BA
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:b3:d0:54:4f:80:5d:b0:d5:58:ed:56:0b:19:c4:62:69:01:
81:39:db:eb:c5:2e:f3:63:b8:95:59:bb:96:54:9d:90:e3:3f:
2f:33:f5:39:69:d4:4d:9f:ec:4b:f4:63:a4:54:b1:ec:48:da:
2f:79:47:47:6b:8c:46:61:de:80:42:b5:c8:b2:c1:a6:54:b3:
2f:76:99:cd:a1:ff:e6:22:00:1e:af:6e:59:3a:f8:55:be:79:
b7:47:45:78:bb:f0:f0:75:89:9c:64:06:3b:bd:77:84:aa:f7:
23:5c:12:c1:30:86:d4:f6:0f:24:f3:8c:62:8d:2e:cb:9b:53:
3e:89:fd:d0:d9:d4:3e:5b:f6:c1:a1:54:fe:c7:f5:79:6f:1d:
76:89:13:2c:cb:cf:6a:33:a1:a6:68:e7:19:a4:fe:38:35:ac:
03:42:c5:31:49:b6:58:c9:d5:b0:42:04:b4:83:0c:50:87:c0:
f6:f9:05:72:51:1e:bb:8d:93:22:95:a1:b2:b3:da:7d:2a:c1:
ca:fd:62:ab:e4:70:a5:61:9e:8f:46:d1:75:2e:45:56:73:b1:
bb:98:7e:fa:e6:9f:40:bb:ee:c6:c0:28:3d:65:ea:c2:46:13:
ed:af:10:51:80:2d:e4:60:45:23:bc:d3:6e:8c:34:37:ce:58:
d9:0f:41:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:24:09 2026 by rpki-client