Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
File: 81ROkj2IO6zkqj9-9wByr-NRHyg.mft (raw, json)
Hash identifier: AB818kGKrEk/sxfe7c/iSgmufVLp6DTJ8IJxUq9SDXo=
Subject key identifier: DA:A9:86:2A:5B:A4:83:D5:91:80:63:4D:7C:E9:93:0D:4E:50:F3:21
Authority key identifier: F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
Certificate issuer: /CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Certificate serial: 019A725C4C56ED00815CED0D230E6A75F66D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
Manifest number: 045E
Signing time: Tue 11 Nov 2025 10:00:42 +0000
Manifest this update: Tue 11 Nov 2025 10:00:42 +0000
Manifest next update: Wed 12 Nov 2025 10:00:42 +0000
Files and hashes: 1: 81ROkj2IO6zkqj9-9wByr-NRHyg.crl (hash: +sxi72eNWutNS7gSRS2f4+1uArUno2ELFTFtJOTlMYA=)
2: Gv4EnRb88MY5aVLEY17_OZ0Wl08.roa (hash: WkS34pHH/XzAUtEopuzXUXT2LtpQyPdLz2PYfITDjLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:4c:56:ed:00:81:5c:ed:0d:23:0e:6a:75:f6:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Validity
Not Before: Nov 11 10:00:42 2025 GMT
Not After : Nov 12 10:00:42 2025 GMT
Subject: CN=daa9862a5ba483d59180634d7ce9930d4e50f321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b8:c0:04:07:d4:0f:70:19:e9:ac:a8:cf:73:
ab:54:08:15:0f:c0:ce:13:51:ed:b8:f8:ce:8f:e8:
75:8e:54:e5:d5:97:d2:8b:94:a6:98:bb:6e:4f:d6:
d0:76:7e:06:01:89:6a:b0:6d:9b:4a:a4:80:8a:92:
5a:f8:2a:80:17:27:65:84:f4:a6:23:b9:3f:83:e0:
86:a1:90:b5:32:12:94:aa:d7:93:6d:e0:62:5a:ba:
75:79:8c:52:f9:60:ee:5a:ca:b8:45:9e:4e:55:6f:
5a:ec:b1:da:cf:90:bf:7e:42:33:e3:fe:ce:6c:53:
e6:6c:f8:c0:98:5c:66:3c:d7:f6:38:fa:f0:0f:a3:
c0:33:64:f4:d0:cc:99:98:38:1c:39:f9:65:d0:b1:
ed:ae:7b:3c:d0:34:79:4f:66:db:30:2e:aa:75:bf:
2b:20:03:16:11:8c:31:9b:4d:ac:26:fe:24:e4:13:
91:17:8d:eb:de:25:48:9d:25:dd:23:fb:8e:05:f6:
59:a3:23:15:8d:1d:f0:a1:5c:ce:f6:c1:83:f3:5f:
d8:50:ec:ad:af:58:6a:86:0c:1c:34:ea:dc:8d:c0:
39:4a:14:30:c9:ac:fa:f8:09:31:6d:24:d4:2e:4f:
fb:17:7b:1e:b7:01:24:4d:1c:57:3f:5a:76:1b:cf:
43:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A9:86:2A:5B:A4:83:D5:91:80:63:4D:7C:E9:93:0D:4E:50:F3:21
X509v3 Authority Key Identifier:
keyid:F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:ca:3c:c6:c0:0d:86:30:7f:bb:9d:38:b5:84:e7:be:f9:dc:
c9:5e:86:73:f4:1a:7b:ac:af:d4:03:ab:b7:00:8d:fc:5e:f5:
2d:06:c9:fd:ee:58:0c:b9:ef:61:88:93:0b:2a:50:95:64:d5:
29:75:63:c7:8f:0c:a9:17:a3:42:b1:b8:5a:d3:97:2f:d4:c3:
00:4b:3b:0c:81:a2:22:4f:a0:5a:c2:a2:8a:f1:f6:a9:29:11:
0d:f1:1a:b2:c5:53:6c:1d:c9:13:b5:e4:77:9e:4d:64:92:e5:
dc:66:b7:8e:c1:75:e9:a4:e8:95:d9:63:b6:e9:ca:ee:1f:19:
f2:c1:65:3a:23:1b:2f:f4:2b:25:a7:df:8c:88:e6:1c:ed:af:
37:f7:35:e7:ee:e3:0a:03:f0:e6:3b:14:e4:08:39:eb:ca:c2:
40:61:31:8f:5f:93:91:0a:da:a2:8e:32:12:8c:e4:2d:a8:ca:
e3:c5:f5:73:47:97:52:d0:03:21:53:15:6d:71:7e:28:95:07:
cd:29:b2:9e:31:e2:46:15:43:8b:25:ca:74:85:e1:a5:8b:61:
c3:80:60:a5:bd:93:3c:51:8e:2a:c9:71:c8:f0:03:04:8b:ff:
ba:a4:75:28:c9:e7:01:eb:76:16:cd:d6:11:12:00:90:a5:b3:
a7:20:06:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:54:55 2025 by rpki-client