Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: LU7GpcZZsr2vJhkphInWs0TeO7GUs09gcNiM6yNd5A4=
Subject key identifier: 51:56:FA:90:31:FF:5B:A7:DA:1D:5A:2A:AE:2F:93:40:D1:03:D8:AC
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 019EBEB5E274D4EF0D7B25FD7EB8087EF422
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 0CF6
Signing time: Sat 13 Jun 2026 02:00:51 +0000
Manifest this update: Sat 13 Jun 2026 02:00:51 +0000
Manifest next update: Sun 14 Jun 2026 02:00:51 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: XCH+Od345L+BdMn4zMrHP6mzLHthjH//CYNfqfe5Lu4=)
2: uIJ0IS79WDVVxYIbBz_R4fqspJQ.roa (hash: h35WdtQ05WmybDkYDylEfj+xzINWR/bUtvARmeLtlc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b5:e2:74:d4:ef:0d:7b:25:fd:7e:b8:08:7e:f4:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: Jun 13 02:00:51 2026 GMT
Not After : Jun 14 02:00:51 2026 GMT
Subject: CN=5156fa9031ff5ba7da1d5a2aae2f9340d103d8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:91:a7:1b:c6:92:6d:53:95:80:db:79:63:b9:
ff:78:83:95:8a:17:13:7b:8b:1b:1b:33:aa:60:50:
b3:1b:0e:51:26:01:ec:14:2e:56:5a:9c:81:c7:22:
b3:48:a1:af:71:a3:cf:aa:e6:91:75:55:d2:e1:a6:
dd:80:4d:3a:10:cc:96:db:24:e3:a9:76:00:aa:6c:
22:7f:c2:21:48:66:6a:5e:52:e1:61:fc:2a:71:4a:
ef:84:55:15:95:60:f3:f0:3e:e5:c5:5c:fc:93:a1:
e3:7e:83:a6:98:fa:da:a3:66:4a:5d:40:e5:5f:db:
9b:5c:5b:f3:2c:d9:9c:8d:0e:40:a2:82:c1:18:47:
50:16:21:f7:44:36:1c:3b:06:78:5c:9e:e1:49:0b:
c7:41:93:51:30:aa:38:b0:16:6c:06:9c:a1:24:c1:
81:43:fc:b6:4f:60:e6:82:0d:e4:a2:eb:7e:81:1a:
2d:c0:8b:78:21:3f:9c:5c:78:3a:15:ed:9f:c1:a6:
6e:48:c3:e8:53:13:00:5e:96:1d:58:13:46:12:f9:
f2:b0:04:99:93:95:6c:f2:87:6f:3f:5a:01:10:bf:
2d:ed:26:6a:50:95:d7:a8:df:ba:93:8a:dd:37:ec:
1c:3e:9d:60:2c:8a:d2:42:20:b4:82:7c:40:de:b3:
3f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:56:FA:90:31:FF:5B:A7:DA:1D:5A:2A:AE:2F:93:40:D1:03:D8:AC
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:5a:7e:66:61:c1:3b:57:e3:9b:7b:0c:46:dd:ab:70:6d:79:
36:87:21:78:d3:51:75:fe:3f:3c:b4:30:fd:0e:3f:ac:1e:b9:
04:30:b0:02:39:b8:ab:57:25:7d:e0:21:f2:a4:59:c6:16:5b:
a5:3f:1e:1f:d0:4e:20:1e:7d:b1:81:34:f7:00:39:e0:13:90:
49:40:3a:7f:7b:0e:75:97:38:3b:9f:a9:2a:b7:0d:a5:83:86:
ed:8a:8c:ed:11:66:54:7c:38:34:7c:b6:3e:c9:c6:e6:b1:bf:
05:7a:9b:5d:65:af:b1:7c:92:9a:ba:7c:10:a3:42:ce:c8:b7:
10:9f:2f:6e:10:ac:91:17:07:bb:ad:6e:99:ed:4b:a9:11:90:
9d:7f:14:f0:ad:ee:25:72:55:8d:4b:8c:7e:0d:ef:38:51:25:
b5:16:aa:ba:be:e0:60:25:f2:35:be:5d:e2:3e:0a:9e:fe:d5:
8e:18:18:05:e3:c5:3f:3a:fa:ab:23:81:1b:b4:5a:10:0c:24:
16:67:49:14:cd:cf:1e:cc:24:d9:ac:5e:7b:a6:c6:38:08:13:
16:e0:4d:92:cd:38:7a:19:73:d9:f5:29:38:52:1a:03:8f:bd:
a8:07:26:ef:30:4a:4e:1b:81:88:a9:6c:5e:8b:0b:ff:9c:0d:
b4:ba:da:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:00:55 2026 by rpki-client