Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
File: 81TlIOe7fhP1Ms7PBagtK3l5UqI.mft (raw, json)
Hash identifier: LcwskvuGeayy9TgJzTVY5UziBJoYH9zCaQYu+pdYk3w=
Subject key identifier: 75:DB:2F:4C:00:93:D2:7F:D0:59:CE:A6:01:BF:F3:A1:13:8B:8E:47
Authority key identifier: F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2
Certificate issuer: /CN=f354e520e7bb7e13f532cecf05a82d2b797952a2
Certificate serial: 019CAA58EDE1FA37A86F7667D8C610D05657
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
Manifest number: 0D9E
Signing time: Sun 01 Mar 2026 17:01:20 +0000
Manifest this update: Sun 01 Mar 2026 17:01:20 +0000
Manifest next update: Mon 02 Mar 2026 17:01:20 +0000
Files and hashes: 1: 28zXLFeRXoHKQibLR_FN7To5SA4.roa (hash: 0h5lbt3CG3w27XHBcRA+PH1NQ7TLUhzbv0Xa/y3+zNw=)
2: 81TlIOe7fhP1Ms7PBagtK3l5UqI.crl (hash: Hrr53Bo8WcMEL9H8/JcAmgRalkVvcPDB31tquAF690U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:ed:e1:fa:37:a8:6f:76:67:d8:c6:10:d0:56:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f354e520e7bb7e13f532cecf05a82d2b797952a2
Validity
Not Before: Mar 1 17:01:20 2026 GMT
Not After : Mar 2 17:01:20 2026 GMT
Subject: CN=75db2f4c0093d27fd059cea601bff3a1138b8e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:28:c6:bb:bf:d2:f0:ee:6c:89:17:81:bd:e6:
3c:4b:6d:c5:27:54:ad:0a:c5:92:8b:64:c8:3b:53:
33:04:bc:de:69:1f:b5:db:33:d7:63:af:8a:d5:7c:
6d:a7:7b:62:fc:dd:91:ef:6e:1d:4d:c8:22:9d:99:
8b:87:79:e3:b5:a8:8f:65:08:5c:2b:a3:a6:70:f5:
84:c4:31:5f:7e:8e:6e:93:11:0e:0e:bb:61:f0:c3:
c2:f0:3e:48:cd:06:e2:66:fa:11:fe:7e:a0:ab:e0:
a7:83:6b:74:e4:30:46:63:9c:14:e1:ec:b8:93:ef:
36:c5:6a:f8:6f:f0:3e:f4:77:e5:bc:9a:fc:50:9d:
b8:a3:67:9d:f9:de:8c:0c:ee:f8:c6:38:4f:4c:81:
b0:ac:3a:8c:8e:d8:6f:bd:af:71:2d:3c:50:b6:02:
08:6e:38:40:79:7a:f6:28:45:c3:36:c9:2a:65:89:
19:be:0e:02:af:21:a2:0c:95:c2:e0:d2:1f:19:74:
30:af:87:20:53:3c:4b:4d:fa:c1:d6:82:4c:ea:5c:
4c:b6:51:9c:ba:34:fb:64:85:ff:dc:16:58:5c:12:
f9:04:14:71:dd:51:ac:15:12:53:02:cf:5a:2e:c8:
fb:64:1d:70:d8:c0:c1:ed:11:a3:eb:15:a3:75:3b:
c7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:DB:2F:4C:00:93:D2:7F:D0:59:CE:A6:01:BF:F3:A1:13:8B:8E:47
X509v3 Authority Key Identifier:
keyid:F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:b1:e5:83:db:8a:fc:b4:d2:a3:1b:3f:fa:70:00:4b:0e:ff:
9a:4c:48:a3:cf:2b:d0:6d:0f:4b:29:ee:91:89:be:a1:5e:bf:
29:68:ca:3d:bf:ee:e3:90:c0:d1:b0:ba:f9:93:b9:67:8a:af:
f9:56:ce:af:6c:a9:19:5b:5c:e5:19:3f:b2:7b:89:c4:2a:d7:
a2:98:30:fb:1f:e0:e2:98:0d:55:17:10:fe:e8:ae:cb:17:f7:
1c:85:bc:8f:4e:9d:36:42:34:28:63:7b:6f:4a:ef:87:83:ed:
de:48:7a:3a:4b:cd:ca:40:ec:a1:54:29:10:22:4e:f8:54:e9:
c3:63:79:d7:b5:2d:56:65:bc:0f:65:08:95:6e:b9:8d:1f:05:
06:16:7d:14:9e:47:72:1a:b4:69:fe:e8:c5:d9:c5:ae:14:9e:
bc:f3:b7:bd:c5:ee:0f:7d:13:d6:77:f3:67:4b:a5:18:05:c2:
d8:a4:33:3e:30:96:0b:1d:b3:51:a8:63:fa:91:3f:59:82:53:
17:cd:37:63:f9:c2:82:04:ec:a9:08:b7:66:ad:48:e8:67:a6:
e1:a4:8c:99:93:ef:22:9c:89:1b:e2:26:eb:f5:64:3d:8b:01:
f7:5a:78:c0:ec:df:e3:87:78:73:a5:7b:91:ea:1f:54:f4:9e:
da:ae:d1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:34:39 2026 by rpki-client