Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
File: 81ROkj2IO6zkqj9-9wByr-NRHyg.mft (raw, json)
Hash identifier: slnatkEFmXcXppYxuuldtPaNPX+WZg55PEPhKxgQeFg=
Subject key identifier: 19:2D:9C:00:A5:FB:0F:05:BE:E7:18:D8:1A:EE:3A:F4:D2:E4:8A:62
Authority key identifier: F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
Certificate issuer: /CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Certificate serial: 019F18D6B4448BFB07D56E631D472F94A757
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
Manifest number: 06C7
Signing time: Tue 30 Jun 2026 14:02:31 +0000
Manifest this update: Tue 30 Jun 2026 14:02:31 +0000
Manifest next update: Wed 01 Jul 2026 14:02:31 +0000
Files and hashes: 1: 81ROkj2IO6zkqj9-9wByr-NRHyg.crl (hash: tLx9rVvRn9LhxqFdAUr1ivRgH2fQrMyx0eWlj2qf25M=)
2: TrhXkCJb8q-vuCZF4exUSreBB7E.roa (hash: EGX2grrS3l79QBgl+a645PR4w0grZD/PxlFuVBj36pQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:b4:44:8b:fb:07:d5:6e:63:1d:47:2f:94:a7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Validity
Not Before: Jun 30 14:02:31 2026 GMT
Not After : Jul 1 14:02:31 2026 GMT
Subject: CN=192d9c00a5fb0f05bee718d81aee3af4d2e48a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c7:69:0e:28:ff:d4:88:d4:9d:8a:b6:82:e5:
48:3b:8a:ec:23:30:27:33:81:b5:b7:05:d8:1f:d9:
f6:4c:07:3f:f4:59:5c:de:3a:f7:f3:a4:cf:25:0d:
96:28:df:2c:24:3e:e1:aa:9a:31:33:26:57:59:94:
fb:07:6a:45:39:29:5b:43:55:56:d9:b1:5d:72:9d:
d5:90:91:61:0e:a1:d1:1f:e6:88:9f:24:a6:cd:14:
63:0d:07:94:fe:f3:d5:ff:99:16:b2:ca:db:04:12:
b6:40:5b:18:0c:bc:09:8e:47:d4:fa:02:28:03:5d:
7d:fc:e0:8a:cc:17:eb:b7:78:ae:d7:94:b0:f1:10:
52:48:a5:ad:f7:27:60:ab:f7:bc:ea:84:78:f0:ae:
aa:c7:1d:90:04:e4:82:3d:aa:0c:42:65:db:2f:7c:
d7:4e:53:9b:11:c3:5b:1c:e7:bb:c2:b4:8f:07:b7:
12:33:13:41:38:8d:ff:48:af:1e:22:40:df:f6:e5:
30:35:ee:ba:be:58:9c:ee:5d:2b:b9:b1:e1:7a:04:
e8:0b:4f:97:06:9e:3c:a1:c9:9c:82:a1:5e:a6:34:
b9:11:32:f1:d2:93:fb:fe:ea:96:81:d5:20:02:88:
4a:a7:84:45:a4:a6:51:3e:de:3c:7c:9d:8a:68:c8:
75:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:2D:9C:00:A5:FB:0F:05:BE:E7:18:D8:1A:EE:3A:F4:D2:E4:8A:62
X509v3 Authority Key Identifier:
keyid:F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:39:30:34:ed:51:0e:f4:e9:53:f9:03:99:7a:c0:1e:e4:14:
94:ce:df:98:55:62:e0:4f:ca:49:58:0b:3c:fe:54:66:db:eb:
a6:77:a7:11:14:81:20:38:99:f1:82:77:8e:95:a3:fd:da:96:
66:a3:0e:e1:92:50:07:d8:ac:e0:b5:0c:fc:03:e7:84:38:37:
f5:a5:44:3f:0c:10:90:b2:fe:15:ab:eb:7a:3b:4d:25:86:05:
22:7b:d3:c5:5f:15:34:51:6e:23:8c:54:9d:a2:fa:99:b4:4d:
d7:9b:ca:5e:42:de:b9:e7:62:b2:7b:30:29:93:18:fe:96:9b:
49:c5:2d:ce:1e:13:5c:73:51:a8:c4:59:19:56:4b:5e:c6:7d:
c5:93:b1:fc:00:c3:8b:c9:f8:4b:8b:4f:20:78:00:42:9e:04:
86:48:4c:a2:d2:58:32:71:68:05:67:27:2e:61:13:a2:59:16:
2f:c6:70:1e:c2:da:70:6d:27:61:59:0a:46:f4:6d:64:e1:6d:
34:89:5d:3e:c4:12:5d:05:de:02:ee:04:a9:3b:b2:77:ab:7c:
6e:20:6c:f1:25:ec:af:bf:2e:9c:8a:ce:bb:fd:5f:82:1c:5a:
94:34:73:82:2c:f6:f5:06:0f:4b:5c:d9:f7:46:8e:b2:20:ff:
6d:75:46:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:08 2026 by rpki-client