Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: So7bCfYdFvIFFVPPt71E8Q/pWqw+KOZnh/azFFu/2Ts=
Subject key identifier: B6:8D:90:F9:D7:2B:D8:80:48:35:9A:58:CE:83:20:A2:E2:57:C0:29
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 019A4E18D0FE6C65EE36E34D4BBC9859B258
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0AA9
Signing time: Tue 04 Nov 2025 09:00:40 +0000
Manifest this update: Tue 04 Nov 2025 09:00:40 +0000
Manifest next update: Wed 05 Nov 2025 09:00:40 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: T8z7UeA42ErqKv4safld14WGzzrvl2KeOFjaeMmPZPA=)
2: Q9uvUMUGF4tW9TpLUtXmiB_YDYU.roa (hash: 6w5t2feWmLv2FpcZk6E6i1f0DCsFUL0L2nW9iOpOGYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:d0:fe:6c:65:ee:36:e3:4d:4b:bc:98:59:b2:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Nov 4 09:00:40 2025 GMT
Not After : Nov 5 09:00:40 2025 GMT
Subject: CN=b68d90f9d72bd88048359a58ce8320a2e257c029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f5:7e:87:4b:b6:02:a4:cf:72:74:36:a2:b6:
d0:f3:4a:59:d8:90:14:e6:0b:bb:51:5a:17:ae:19:
ae:52:af:22:cd:02:47:85:4a:6a:91:99:40:f6:a3:
b4:ae:4a:ca:99:8f:43:96:20:8b:01:02:a2:94:6f:
5d:91:95:21:20:41:e2:bb:87:2c:b9:24:21:f3:7c:
ab:0c:fb:61:d7:3a:7a:c2:af:61:34:50:2f:32:ad:
fb:53:eb:ee:9e:e6:f4:73:7a:47:38:75:b2:77:ea:
55:58:22:39:21:c4:74:f6:0a:05:5e:8e:62:03:41:
b1:56:0e:80:27:52:12:b3:53:f0:17:a4:28:8e:e1:
2f:54:4a:78:d9:49:1f:91:a4:9e:60:ef:88:c9:2f:
75:73:32:d2:65:cd:e9:43:cc:74:33:0b:f3:8a:0d:
f1:0d:1c:dc:b4:f0:63:e6:ff:47:ae:46:e3:a7:02:
f0:d4:db:52:9f:b5:93:d0:4b:f3:ff:85:0a:fa:76:
9b:30:62:a4:1e:b4:85:4d:d7:3b:a3:e9:1c:d2:3e:
44:55:4c:83:4c:93:14:6a:54:5a:cb:13:d8:56:a3:
a9:74:81:a2:b8:1b:32:1f:06:8c:fa:97:f0:80:f2:
be:2e:e0:c0:33:8a:83:a6:6b:af:a0:10:07:c7:5f:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:8D:90:F9:D7:2B:D8:80:48:35:9A:58:CE:83:20:A2:E2:57:C0:29
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:6a:e2:e7:1a:a4:2a:54:44:c1:75:40:92:92:c4:f4:2d:83:
ef:1d:55:25:56:a1:11:29:fe:00:9b:d4:03:08:2a:5a:2e:8a:
c3:aa:8c:9e:63:90:1d:83:c1:00:6e:35:01:7e:ff:77:6b:83:
ca:62:76:cf:42:20:f5:fa:f0:2f:1e:93:85:73:08:19:11:c2:
f4:0d:ed:1e:a4:17:84:60:4b:56:37:6b:a4:b6:5f:42:55:2a:
d7:44:1b:22:89:1a:ec:24:6d:a6:84:c2:cf:59:4f:4c:e5:6b:
cf:71:7d:27:00:1b:bb:d3:20:a3:d8:52:8c:ac:4c:bb:51:34:
12:ac:ad:52:cd:81:9a:2b:6c:ba:79:a5:51:31:c6:3e:61:a8:
1d:c9:99:ab:72:ae:ad:51:12:a7:bd:74:4a:74:a3:55:57:09:
16:ab:03:2c:f3:56:fa:7f:e8:fa:22:23:e3:54:68:33:51:28:
03:93:70:03:5a:01:f1:3c:94:65:c8:e5:b6:ce:19:c5:26:71:
b3:58:e7:6c:78:a0:45:0c:0b:50:65:aa:c3:db:7b:c1:69:ad:
7a:6c:ac:70:3c:67:04:6a:60:bf:23:77:51:79:2e:01:65:01:
85:ef:60:8c:37:bf:1a:96:de:40:50:01:1f:6b:dd:05:ba:eb:
a4:62:dc:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:17:46 2025 by rpki-client