Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
File: 81ROkj2IO6zkqj9-9wByr-NRHyg.mft (raw, json)
Hash identifier: vwoJ6IUjJlb40FjDrxq64YbNTkHwHyANZexjucuCWUE=
Subject key identifier: 58:0D:EF:97:4E:05:00:28:15:65:9D:4B:39:87:5D:71:C0:9C:2A:2A
Authority key identifier: F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
Certificate issuer: /CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Certificate serial: 019922552EAA882212E44AB0FCA080A8788D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
Manifest number: 03B0
Signing time: Sun 07 Sep 2025 04:00:31 +0000
Manifest this update: Sun 07 Sep 2025 04:00:31 +0000
Manifest next update: Mon 08 Sep 2025 04:00:31 +0000
Files and hashes: 1: 81ROkj2IO6zkqj9-9wByr-NRHyg.crl (hash: acOj5X0f8Bz78hxUhwTWZ63lUpVwkjjDp00ehv57lc0=)
2: Gv4EnRb88MY5aVLEY17_OZ0Wl08.roa (hash: WkS34pHH/XzAUtEopuzXUXT2LtpQyPdLz2PYfITDjLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:2e:aa:88:22:12:e4:4a:b0:fc:a0:80:a8:78:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Validity
Not Before: Sep 7 04:00:31 2025 GMT
Not After : Sep 8 04:00:31 2025 GMT
Subject: CN=580def974e05002815659d4b39875d71c09c2a2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3d:37:1d:9f:e4:09:0d:19:3c:c4:73:e4:7b:
4b:5e:4b:3a:11:1c:e5:26:f8:f3:22:a6:87:f0:80:
c7:30:cb:b1:5d:9b:70:19:ec:8d:1c:02:6a:f6:28:
df:19:15:ee:2b:f1:39:2c:59:a7:83:11:59:42:f6:
22:e1:99:d4:72:0d:e8:ad:c2:21:1e:61:2a:17:0d:
e6:a4:29:d7:0c:85:17:6e:3c:be:52:c5:b4:c2:34:
40:a8:81:fc:2a:33:d9:49:d7:c6:61:ec:02:51:22:
89:a2:c4:d7:29:4b:8c:46:30:bd:18:d1:81:13:0e:
75:80:5e:88:c3:5f:2c:09:da:ec:5b:8c:53:3c:56:
d3:f5:bf:13:98:e7:c5:32:67:f1:92:5c:d5:bf:0c:
67:c2:d0:98:c9:95:87:be:b0:f8:44:01:ca:f5:d6:
36:82:99:7e:3b:37:af:1b:66:a8:e2:b4:03:48:2d:
17:03:55:fc:9e:67:17:ec:fa:77:f5:74:fd:bb:03:
1d:2a:32:6d:cb:1f:08:5d:1b:df:cc:6d:a6:34:35:
45:96:b2:42:da:3e:af:fa:a8:ac:cb:e0:4c:fd:fb:
f3:76:d0:52:fd:6f:ff:f5:cc:bf:a7:98:12:47:97:
50:29:13:81:aa:07:ca:30:4e:8b:00:34:ba:68:e2:
c8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0D:EF:97:4E:05:00:28:15:65:9D:4B:39:87:5D:71:C0:9C:2A:2A
X509v3 Authority Key Identifier:
keyid:F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:68:54:b6:50:54:54:f7:c9:db:17:3f:a7:d3:c1:77:29:4a:
93:45:d8:7c:7d:ab:a5:0b:1e:24:42:79:33:81:c4:aa:d7:8a:
aa:0b:ac:57:de:5f:21:71:f8:b4:0e:46:81:12:77:63:d7:54:
15:52:26:c9:9a:6d:45:41:d4:e2:0d:1d:25:cc:62:a4:c1:54:
74:bc:37:b4:04:2a:06:46:7b:d6:da:ba:f1:ab:52:29:7f:12:
dd:32:fc:0c:fa:53:bf:6e:96:52:18:93:6d:0f:b0:78:b0:ce:
75:b8:09:c7:e7:ea:57:b9:55:45:dc:38:8d:b3:a0:51:18:0b:
b6:65:1e:53:d6:c6:14:81:b5:e1:cd:02:09:f1:e1:e4:88:a8:
c0:5d:e6:e7:d4:45:6b:ff:0d:87:a0:d0:d3:00:95:2d:31:9e:
b3:85:71:8a:ee:d7:a4:b6:85:c2:02:20:63:f9:b4:9f:84:55:
ca:55:ce:8c:83:06:af:33:97:c3:6b:2c:55:d9:c3:1b:55:50:
ca:7d:b5:93:79:04:8c:fa:29:fd:b6:72:dc:0d:5a:e8:79:e7:
79:21:37:14:ac:13:40:fb:e9:98:ee:e6:0e:a2:7c:4d:68:b8:
3f:59:cd:84:2c:61:8d:27:0b:14:67:ed:3a:64:7e:a2:30:d6:
df:6d:e2:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:56 2025 by rpki-client