Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
File: 81ROkj2IO6zkqj9-9wByr-NRHyg.mft (raw, json)
Hash identifier: gmtbd7IAkwvt2IIiGtIvCSdhqGmS8EmKbN2zm/DTGGo=
Subject key identifier: D3:97:79:1C:D3:8D:06:40:67:C5:1D:C0:0A:5D:67:9A:F3:21:5E:96
Authority key identifier: F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
Certificate issuer: /CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Certificate serial: 019D37F6F83E3A23D1AD0421C9DEC873E94D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
Manifest number: 05CE
Signing time: Sun 29 Mar 2026 05:00:25 +0000
Manifest this update: Sun 29 Mar 2026 05:00:25 +0000
Manifest next update: Mon 30 Mar 2026 05:00:25 +0000
Files and hashes: 1: 81ROkj2IO6zkqj9-9wByr-NRHyg.crl (hash: jsGADQOHVJ2n0R6l3jk7KDiXN3WQK/B3ZEhokVZW5AE=)
2: TrhXkCJb8q-vuCZF4exUSreBB7E.roa (hash: EGX2grrS3l79QBgl+a645PR4w0grZD/PxlFuVBj36pQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:f8:3e:3a:23:d1:ad:04:21:c9:de:c8:73:e9:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3544e923d883bace4aa3f7ef70072afe3511f28
Validity
Not Before: Mar 29 05:00:25 2026 GMT
Not After : Mar 30 05:00:25 2026 GMT
Subject: CN=d397791cd38d064067c51dc00a5d679af3215e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8e:17:ad:ec:20:25:3a:73:0e:88:f6:5d:f7:
55:5d:2e:ae:8f:45:b3:4d:19:60:b5:a6:af:e6:27:
ac:b1:79:1d:c2:3d:e9:e7:ad:68:2c:0f:77:ee:11:
42:71:83:8d:bb:52:61:8f:0b:86:05:c3:7e:b8:30:
26:98:2f:90:0a:73:2d:c8:04:24:14:74:f7:11:31:
88:32:a8:a8:f5:c9:d8:1a:c8:64:e9:7a:e6:65:b1:
78:04:36:87:f8:7b:1b:20:2a:f0:3d:a2:a4:c4:9c:
1c:93:49:be:49:d1:31:a1:73:4d:db:3d:4a:eb:3d:
52:1d:19:06:7e:1f:d9:18:f4:7c:4a:e9:d6:7f:79:
8b:48:72:bc:34:2a:64:1b:56:d8:e6:79:70:7d:fa:
8b:4f:c1:05:16:8f:99:33:50:8f:5d:a8:1d:d6:a8:
ee:a6:51:51:a5:bc:15:b1:60:68:d6:76:94:4e:99:
3e:1b:be:58:f1:9f:f8:17:16:a3:ca:39:2d:dc:3c:
c1:68:b7:2e:7d:16:6c:7f:63:30:d5:2e:67:c1:28:
ac:cf:6c:c6:cf:e3:91:b7:41:7f:b2:33:d3:ac:30:
07:9a:cf:98:14:ff:a6:72:5f:aa:bf:b6:1f:ae:ad:
35:dd:cd:b4:2b:bc:6f:2f:39:33:30:ba:43:3f:6d:
d2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:97:79:1C:D3:8D:06:40:67:C5:1D:C0:0A:5D:67:9A:F3:21:5E:96
X509v3 Authority Key Identifier:
keyid:F3:54:4E:92:3D:88:3B:AC:E4:AA:3F:7E:F7:00:72:AF:E3:51:1F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81ROkj2IO6zkqj9-9wByr-NRHyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/86d1aa-6475-4013-86ea-38c756aa4b50/1/81ROkj2IO6zkqj9-9wByr-NRHyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:be:bb:77:31:cc:fe:83:23:2e:25:cd:94:df:ae:93:fa:a6:
34:ae:28:f9:54:24:79:2c:80:e2:11:2b:f0:f3:93:ab:c5:e5:
5f:e6:84:a9:7b:4a:2f:3d:c5:4d:54:a0:d2:0a:19:82:04:8d:
a5:ce:8d:87:0d:93:ba:6d:6e:af:29:74:d7:12:a3:ba:44:d0:
2a:f4:60:14:ea:20:68:74:f1:10:58:4e:fa:7b:04:f2:b0:cc:
6b:f7:91:96:69:44:8c:39:5e:81:ad:11:cb:bc:78:d4:9d:84:
2a:d6:0e:c8:78:63:fd:0a:40:c6:fc:20:6e:2c:26:b2:6b:3d:
d4:6e:4b:80:a2:5b:2c:e7:df:ab:a0:f6:23:22:2f:d7:36:61:
ca:c9:1d:d0:1e:74:1c:61:e8:78:e8:63:58:7a:20:72:3e:c8:
bd:24:3e:05:7f:14:60:6c:ae:49:b2:65:ce:c9:e1:11:fd:4d:
8e:da:03:7f:32:bc:eb:02:98:f1:c7:54:9e:1b:33:e5:ac:38:
a9:ac:a0:29:57:d3:73:f8:bb:f4:55:07:45:be:00:21:a5:f1:
c1:9b:f3:a9:21:30:50:e0:82:44:9d:d3:62:da:9e:00:55:4e:
25:fb:4a:80:85:a2:f0:69:d2:ea:fb:4a:16:af:65:d8:e6:38:
85:5a:13:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:02:34 2026 by rpki-client