Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: C0vzqShnlJKv02ChPZ3wHltAfIW0q+4pogTAS474vCI=
Subject key identifier: E9:C9:C1:78:A5:D4:40:9B:FC:8F:23:81:14:13:90:AC:D7:F1:CD:D7
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 019D39781BAB32C4DB04D50C671A71C90E78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 12:01:05 +0000
Manifest this update: Sun 29 Mar 2026 12:01:05 +0000
Manifest next update: Mon 30 Mar 2026 12:01:05 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: Jw7KVbKew9N+pp88xKsvzOwEJZzpfnzbWcdls/cOG2Y=)
2: DhpOUL_Ta1FDpH83x5fYZb3w0iw.roa (hash: 31Sl0HBZjZWI7Tb9GRR7XcM/c70/RPdQDShrKX9L2rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:1b:ab:32:c4:db:04:d5:0c:67:1a:71:c9:0e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: Mar 29 12:01:05 2026 GMT
Not After : Mar 30 12:01:05 2026 GMT
Subject: CN=e9c9c178a5d4409bfc8f2381141390acd7f1cdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:25:54:67:d1:a8:98:7d:58:0e:f5:81:f3:41:
f0:06:32:30:22:1c:63:4e:eb:f5:c5:52:de:5c:ad:
a2:a4:cf:5a:ff:69:0e:69:81:a1:e4:64:45:73:2f:
4b:be:f9:a1:38:8d:c0:e7:fe:66:10:2e:a9:90:16:
17:b1:c5:86:b7:47:b0:61:6a:a9:85:c3:44:df:6d:
2f:9d:9a:44:75:24:29:21:5e:ea:e9:02:7a:2d:aa:
00:0d:5f:b1:4f:8a:d1:91:b0:5b:ef:74:bd:09:e8:
40:7e:bd:47:d7:10:13:be:c5:7f:83:98:6c:3b:ce:
4d:5f:05:fd:06:a9:51:6c:f2:42:fa:c2:f1:2b:69:
e8:02:7f:4b:5f:00:dd:0d:56:b1:83:f0:4f:90:db:
c1:fe:a2:f6:b5:f5:04:92:e8:31:0a:17:31:d1:e7:
ba:eb:09:34:66:b1:0e:a8:e3:82:df:85:49:d2:fe:
af:6e:72:e3:06:cf:38:ae:0d:28:17:7f:ee:6e:c5:
2b:20:11:f8:bd:01:1d:12:5c:21:9d:f4:77:f9:de:
65:f1:dc:b5:2c:d0:fb:73:2b:7d:d3:ff:f8:48:0f:
7b:18:e2:c7:a9:a0:8c:a0:8b:a4:a8:a2:2a:aa:ef:
2b:ce:fc:d9:ea:02:c0:44:00:5e:c7:b8:3c:71:4f:
bc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C9:C1:78:A5:D4:40:9B:FC:8F:23:81:14:13:90:AC:D7:F1:CD:D7
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:3f:ac:b9:5d:99:fa:0a:67:71:74:cb:8c:a8:8f:d5:40:3d:
66:73:1a:e4:cc:5b:ba:40:1e:09:ea:1d:0d:24:0c:50:c8:7c:
4b:d5:7a:3f:2d:0a:df:47:af:0c:46:6f:42:68:c9:c9:1b:80:
c0:fc:f4:df:9e:62:d7:0c:65:87:b5:aa:31:e3:70:19:30:46:
8c:9f:25:d9:80:f9:87:e6:13:4a:e1:96:cb:25:4e:8c:a8:52:
72:81:9a:15:82:0b:c7:ec:9b:09:6f:1e:9a:73:a7:fd:1e:68:
d0:5f:e1:9b:a1:ee:a6:cb:c2:96:b5:46:8a:63:c3:7e:a7:c3:
25:63:98:28:8e:91:ed:d0:1c:b8:1d:72:bb:d8:e4:9b:96:10:
8c:5a:d4:5e:42:20:bb:1d:7b:af:b4:ed:65:24:03:7b:7e:ba:
0f:ce:d2:43:85:f9:b7:04:0e:0d:be:df:80:67:5e:d9:82:b2:
0b:a1:83:9d:f6:d9:7d:9b:2a:7f:30:9e:df:48:45:11:d3:ef:
2a:18:05:0f:e4:95:ea:9c:f8:3a:63:bb:26:4d:31:e7:13:b1:
6c:30:0c:9b:dd:3d:80:52:d6:b8:35:c1:c9:41:e7:98:43:ef:
0a:e1:cd:69:f9:f0:b7:86:f5:42:b5:92:7a:fb:fe:0f:9d:c6:
f9:f0:33:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:05 2026 by rpki-client