Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: uyYqNMHemI6chDa2HI+YlxcWODvop0MEtQjNZWNQk+k=
Subject key identifier: CF:31:F0:35:AE:30:3F:D9:9B:02:51:F5:69:0E:31:0D:D2:C1:AA:2C
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 0197C9825F791DABF13F4E1C904E5DBDECA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 15C1
Signing time: Wed 02 Jul 2025 05:00:53 +0000
Manifest this update: Wed 02 Jul 2025 05:00:53 +0000
Manifest next update: Thu 03 Jul 2025 05:00:53 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: V8lXRLtXyVnBIoSKPpZvNp+Dl6BA0LSJCxYRgWnlHWQ=)
2: ye296n7TFw2U7qCSerBkbo7SsH0.roa (hash: m5pP+tHttyj1Oj+JBIbSiGDkTJLLn21rUnR9Ptw/3e0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:82:5f:79:1d:ab:f1:3f:4e:1c:90:4e:5d:bd:ec:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: Jul 2 05:00:53 2025 GMT
Not After : Jul 3 05:00:53 2025 GMT
Subject: CN=cf31f035ae303fd99b0251f5690e310dd2c1aa2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:17:a5:92:e3:65:5b:bb:aa:5a:e1:a9:9a:01:
44:09:43:c6:ff:3e:e7:43:17:cf:4b:7b:cb:e0:b5:
4c:a0:e3:a9:2a:b3:f0:4c:f8:b2:33:f1:67:30:ee:
5b:2d:d5:54:9f:c7:44:dd:48:78:23:2f:8f:a7:96:
a5:01:ed:0e:70:21:0e:5a:92:4f:58:30:c4:38:0c:
3f:e2:69:58:bf:cd:ad:8e:8e:ed:27:8b:35:74:2a:
3b:97:ce:e9:36:b7:6c:98:e4:41:47:03:57:f8:c4:
c6:58:75:2b:f2:7c:4b:1a:f0:f1:a9:de:dc:c9:e4:
4b:0d:30:fc:e6:dc:19:6e:d2:27:26:66:19:13:8c:
45:1c:c9:59:9d:d1:11:79:ef:67:5e:b0:a1:56:8e:
7a:7a:b0:8c:13:98:09:f8:35:82:75:64:bb:fb:c6:
4b:4a:a3:e4:f4:db:9b:e2:92:d8:fb:e6:0d:c8:9a:
4a:09:10:8e:6e:2b:13:d4:11:6d:e5:4a:7c:3a:c8:
bd:f2:8f:bc:60:15:37:96:4a:46:da:9e:de:fc:b5:
c6:50:34:f6:8a:ad:42:5d:75:e6:ca:3a:d2:73:6d:
21:8d:b3:05:41:68:d9:e3:08:ec:0c:23:b3:1b:56:
70:54:27:b4:5e:ca:3f:c5:be:4a:e5:a8:b6:f9:93:
3a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:31:F0:35:AE:30:3F:D9:9B:02:51:F5:69:0E:31:0D:D2:C1:AA:2C
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:3f:65:3c:06:86:42:4b:ba:31:59:ab:b3:d9:24:09:33:0e:
19:76:4c:7d:3b:f1:7a:ca:46:9a:b9:a7:fd:1f:92:f9:e4:01:
4d:49:6a:6d:3f:64:06:d6:47:b4:1a:71:9a:af:22:38:6a:b6:
fd:27:76:82:81:54:2f:93:4f:25:fd:85:ad:79:1d:dc:88:dc:
59:e9:74:bb:d4:92:a9:dd:b6:c3:7a:cb:b9:47:40:7b:39:44:
92:30:c8:f2:b6:b6:b2:98:1e:30:80:81:c5:da:3e:79:25:ea:
fb:4c:15:23:e4:5b:04:38:ac:8a:89:5b:d9:7b:9b:e9:f3:fa:
e2:88:6d:d4:05:08:d1:76:01:cc:01:ae:fa:eb:95:b1:3c:e0:
23:83:5d:6f:74:64:a9:44:6c:c1:dc:d1:24:f4:4f:7a:8e:59:
ce:0b:fd:7e:7c:ed:ac:01:95:3b:d9:08:26:bd:99:b4:cd:19:
d4:87:48:88:37:97:4f:69:93:a7:ae:2f:3e:d7:aa:b4:51:6e:
79:03:82:06:3e:ca:1d:6c:05:d5:31:e7:9c:67:5a:e1:78:f5:
87:a5:91:55:79:37:f0:79:20:08:45:fd:90:61:2e:16:97:9f:
6b:6e:e4:6a:6d:54:98:b3:7d:07:23:77:6a:62:e1:c4:f9:ef:
53:12:3a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:02:41 2025 by rpki-client