Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
File: 81TlIOe7fhP1Ms7PBagtK3l5UqI.mft (raw, json)
Hash identifier: bNghojQ/ULFZnQBRwRDNNg4B25FsyXlJQsM8WIH84P8=
Subject key identifier: 02:32:4A:DF:32:B2:80:E0:7B:05:DD:56:39:AB:12:9A:7B:C2:58:31
Authority key identifier: F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2
Certificate issuer: /CN=f354e520e7bb7e13f532cecf05a82d2b797952a2
Certificate serial: 019A4D73E4B9725385388C712A8B8C3FAD8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
Manifest number: 0C64
Signing time: Tue 04 Nov 2025 06:00:31 +0000
Manifest this update: Tue 04 Nov 2025 06:00:31 +0000
Manifest next update: Wed 05 Nov 2025 06:00:31 +0000
Files and hashes: 1: 81TlIOe7fhP1Ms7PBagtK3l5UqI.crl (hash: YyCE5t31B5bO6BS10nOeg9qm8Lfk7mhcGu+I70ZGVmk=)
2: 9R7qE2JixKC-vbV8JeqORUi7upg.roa (hash: qMwpouu0cneK+WPX+gDmDCVwU3yx/zaa1DbEZEykJcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:e4:b9:72:53:85:38:8c:71:2a:8b:8c:3f:ad:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f354e520e7bb7e13f532cecf05a82d2b797952a2
Validity
Not Before: Nov 4 06:00:31 2025 GMT
Not After : Nov 5 06:00:31 2025 GMT
Subject: CN=02324adf32b280e07b05dd5639ab129a7bc25831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6a:6e:5b:9b:12:f0:5c:6c:11:68:63:c5:41:
5e:ca:95:35:d1:ce:2f:a0:a8:84:35:0c:39:bb:c1:
a0:76:3b:87:a5:1f:1a:cb:66:b4:20:aa:f8:a4:10:
2a:d4:4c:4f:fd:30:f7:82:7e:49:22:dd:6d:19:73:
fa:c9:c3:e5:4f:2e:b2:71:b5:bf:d6:e5:06:2b:b7:
0c:b8:0e:63:9b:91:11:20:af:09:43:42:b1:73:71:
0e:10:0c:46:c7:74:26:15:a6:43:be:89:4a:f7:68:
b0:3b:56:98:3d:59:e1:eb:e4:47:fb:94:67:18:a8:
25:59:8e:6e:69:a6:29:d9:e6:3c:c2:ca:7d:f1:7a:
88:75:d4:a5:45:38:09:ad:9c:01:c8:17:e1:33:c6:
2e:e9:d6:10:16:33:6a:13:d4:d7:75:bb:3e:9b:04:
e1:ea:e3:4b:d5:ad:aa:62:f7:df:f5:66:a3:5f:47:
43:48:fe:45:b9:69:73:8c:13:dc:fd:a7:c8:9e:85:
6a:56:09:85:34:e4:30:4c:6c:49:3e:5c:e5:ff:26:
84:0d:43:80:e6:93:b5:23:1b:a8:61:76:49:3d:66:
0d:31:de:de:4b:bf:1b:1d:4a:55:a2:19:d9:2a:6d:
61:50:c1:7e:ac:8a:4a:fd:35:c9:32:2b:28:7b:8f:
9a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:32:4A:DF:32:B2:80:E0:7B:05:DD:56:39:AB:12:9A:7B:C2:58:31
X509v3 Authority Key Identifier:
keyid:F3:54:E5:20:E7:BB:7E:13:F5:32:CE:CF:05:A8:2D:2B:79:79:52:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/81TlIOe7fhP1Ms7PBagtK3l5UqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/c2f69f-ee8e-475a-9079-ca51fb30eddf/1/81TlIOe7fhP1Ms7PBagtK3l5UqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:86:56:8b:34:74:1b:7e:5e:84:a2:64:24:47:72:e0:27:a5:
30:4c:5d:02:39:2c:d5:70:d3:30:21:30:a9:57:ad:5c:a1:ce:
0e:d2:b0:53:18:d3:ab:10:67:06:8b:a3:4f:bc:57:8d:71:cb:
8c:cb:80:f8:77:a6:63:81:82:cb:37:23:17:0c:c4:30:b5:69:
5a:f2:23:c9:bc:b2:78:27:9b:df:a4:28:c8:59:eb:93:ab:68:
26:c4:a9:73:e9:ba:75:b6:f5:1d:3e:51:80:0d:fc:1f:89:1f:
fc:a5:d3:4a:c5:c7:8b:12:f2:e9:ab:15:20:af:1d:7a:74:9e:
99:a2:03:3d:ee:f5:c7:96:4e:9f:0e:b8:39:9f:48:aa:e1:67:
ac:60:0f:89:0b:0a:d3:23:57:a7:1e:d6:42:1d:1b:70:39:db:
48:df:5a:19:b4:c2:ac:06:7a:d3:f3:55:71:0e:b1:8a:28:38:
d5:4a:b2:7a:84:e4:2d:9a:e2:ac:c0:c4:a8:bd:42:7b:a6:29:
02:68:f6:4e:ee:01:fc:6d:06:cc:94:70:62:d8:1e:00:1e:83:
f5:52:72:26:82:89:bf:c3:24:1b:66:c6:a7:53:f3:c1:55:78:
1d:2a:50:d0:f2:2e:ce:9d:0c:56:12:a5:5a:d2:b8:b9:3f:91:
a2:e9:31:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:42:11 2025 by rpki-client