Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: WkU9K9vLBvYOX3kc/Ks9Er+wGC/0vTw28Hroj8Op3VM=
Subject key identifier: E0:B7:CE:A6:1D:E5:EF:71:AF:16:6F:23:C7:EE:87:22:0C:95:FE:8B
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 019A7149C008519BB0089819B7549E015ED8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 1721
Signing time: Tue 11 Nov 2025 05:00:49 +0000
Manifest this update: Tue 11 Nov 2025 05:00:49 +0000
Manifest next update: Wed 12 Nov 2025 05:00:49 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: 6GLFKl79k/4HNlx46t6c3ZmSBbkOTIDOPWh5YeabE40=)
2: ye296n7TFw2U7qCSerBkbo7SsH0.roa (hash: m5pP+tHttyj1Oj+JBIbSiGDkTJLLn21rUnR9Ptw/3e0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:c0:08:51:9b:b0:08:98:19:b7:54:9e:01:5e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: Nov 11 05:00:49 2025 GMT
Not After : Nov 12 05:00:49 2025 GMT
Subject: CN=e0b7cea61de5ef71af166f23c7ee87220c95fe8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:08:db:b3:11:e9:6a:c7:67:40:7a:c6:cb:e1:
d1:d7:1f:c4:e7:ac:86:b9:28:a9:f3:a0:20:31:0d:
1a:d6:5f:45:7b:b0:27:bb:0f:b8:26:4b:58:a5:bb:
06:9e:6b:41:17:57:8a:78:65:14:43:fc:69:08:5e:
b5:f8:6c:3f:b3:ee:f6:31:4a:e6:47:47:e2:2b:43:
5e:aa:16:0a:df:d2:db:3c:e1:7d:08:78:bd:a5:8e:
df:4e:74:12:c0:41:fd:b7:bf:8d:4c:03:ce:7c:08:
b9:ee:2d:b3:1a:66:0d:64:71:c5:d9:35:da:eb:6f:
1b:51:29:4c:4e:09:47:64:65:b9:2b:c5:3e:29:82:
e8:2f:b8:2e:1c:ac:ea:89:0d:22:52:b3:c3:ae:af:
75:9f:5d:03:9a:31:01:a4:a6:07:b7:f3:86:30:43:
ad:1e:4f:11:ec:26:42:6c:9a:c0:de:e9:87:f8:8f:
e3:69:80:2f:05:98:15:ae:24:1d:62:b4:e0:84:d2:
0f:05:8a:b0:52:ba:89:63:e1:4e:64:de:c4:bd:d8:
8f:83:d1:bb:4c:a0:21:ca:09:d6:ea:2b:05:7b:e6:
4f:a3:73:9d:39:e6:f7:19:62:b5:74:bb:08:23:1d:
54:d9:ae:74:35:97:d7:a0:cd:ef:7f:94:2c:16:d5:
40:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B7:CE:A6:1D:E5:EF:71:AF:16:6F:23:C7:EE:87:22:0C:95:FE:8B
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:b5:f6:7c:2a:71:d1:44:26:43:d8:42:8c:fd:e1:b7:8a:af:
6c:86:18:5b:49:3f:ab:4f:13:37:db:b5:89:11:b6:1f:c5:34:
c9:55:37:94:b9:7f:d4:7a:5e:0a:da:9e:5a:85:8e:95:0e:b7:
ed:05:58:cd:1c:07:55:df:90:f9:92:3d:c3:d3:a9:bf:a3:da:
6d:85:2d:10:2b:fe:f7:3c:3f:d5:77:ca:79:85:ef:19:39:34:
03:14:a2:0b:43:03:88:b8:4e:f9:4a:87:fa:1a:43:df:47:2e:
08:15:43:7e:ad:d9:72:17:b5:21:13:c3:19:2d:49:0d:88:c1:
31:7c:de:e5:7b:6d:d4:6a:6e:69:5e:ac:1b:58:f4:f8:f3:90:
4f:ee:fb:de:09:b8:c0:95:3d:71:ed:81:5b:6f:b4:fb:fc:91:
fe:d5:0e:e6:6b:a2:64:25:3d:8f:31:cf:1c:ce:98:c0:8b:f1:
ee:69:88:91:7c:29:00:95:fb:07:c9:04:10:27:92:41:a8:b4:
9e:b5:7c:7b:13:ef:00:64:f0:dd:36:da:d8:32:b2:4c:c8:23:
90:42:c4:49:78:a2:f9:92:b1:fc:9c:d0:a2:5e:4a:df:2c:3a:
22:f6:cd:c6:f9:dc:25:2a:22:4e:84:ac:b9:27:51:51:af:32:
37:58:9d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:14:31 2025 by rpki-client