Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: ujWc0uMijy/q82kYjuCWqQkm9hhe2EeE9S8XKrMQoU8=
Subject key identifier: 98:90:51:46:83:0D:FA:6E:94:09:1C:92:D1:A3:84:43:0D:9D:3B:28
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 019923312D8AC589DF7E8E8F2CC577F31422
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 08:00:49 +0000
Manifest this update: Sun 07 Sep 2025 08:00:49 +0000
Manifest next update: Mon 08 Sep 2025 08:00:49 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: PcxUDNZjzqMxG1bGXghaSKBAQWU8pwL0oxDTBgfzSL4=)
2: ye296n7TFw2U7qCSerBkbo7SsH0.roa (hash: m5pP+tHttyj1Oj+JBIbSiGDkTJLLn21rUnR9Ptw/3e0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:2d:8a:c5:89:df:7e:8e:8f:2c:c5:77:f3:14:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: Sep 7 08:00:49 2025 GMT
Not After : Sep 8 08:00:49 2025 GMT
Subject: CN=98905146830dfa6e94091c92d1a384430d9d3b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d1:c7:4b:a0:65:18:48:71:fc:2b:23:1b:16:
b6:79:61:51:04:4c:0d:2e:73:8b:10:38:5e:2f:f1:
73:a8:a0:80:27:8b:eb:d4:bc:88:63:74:1b:d8:01:
0d:f1:ef:7e:07:31:75:d8:f1:23:bc:9b:d5:af:f5:
b2:32:b7:4d:95:ec:fd:ed:12:bb:0f:ea:f3:26:4e:
a4:c6:5c:5c:d9:15:97:66:ca:4b:96:d0:14:a6:bd:
db:be:a3:00:91:37:29:3f:3e:86:63:96:83:42:bb:
ff:9e:c3:6d:97:18:9d:ed:5e:07:e7:02:70:25:be:
5a:71:82:7b:d7:f8:89:56:4e:6e:97:39:a7:af:1d:
c1:dc:2c:26:2f:79:2c:f3:4f:59:9b:16:69:39:ba:
99:2a:d7:75:2d:0f:63:ad:72:eb:50:c9:b0:ab:bc:
c5:e8:0b:77:4e:ea:73:df:c0:c4:c6:71:dd:25:04:
28:2c:4a:55:0c:e7:ff:ed:8b:80:12:5e:80:71:f8:
ea:af:96:f7:2e:d5:a8:03:a3:69:4c:87:1c:22:83:
6d:1a:22:7c:00:ac:dc:39:43:92:e3:c2:85:e4:60:
d4:42:55:b3:43:e4:74:5e:5a:bb:a0:80:79:7d:3c:
f6:c8:11:dd:27:58:32:68:8c:25:42:c3:df:9b:96:
78:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:90:51:46:83:0D:FA:6E:94:09:1C:92:D1:A3:84:43:0D:9D:3B:28
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:d0:12:b3:e5:1c:2d:06:05:16:cc:a7:12:2c:6b:bb:b1:b0:
2e:15:bf:eb:f9:8c:b2:0a:ef:04:f0:ba:99:9d:d1:71:f9:d1:
0f:43:0d:37:b2:bf:49:84:a4:c8:0b:ea:5b:5a:99:a8:67:06:
24:89:c6:6c:c5:ad:53:7a:f6:c6:18:eb:9c:11:8b:68:35:05:
bf:c7:4b:d6:73:e1:88:42:78:28:6e:9e:fd:4a:7c:ad:7d:f2:
92:f8:b7:8d:9a:21:7c:45:ef:83:d2:f2:64:b4:11:8e:6b:86:
41:56:02:db:e4:98:25:ca:e0:c5:0d:11:a7:fd:55:24:73:cf:
bf:be:ac:5c:e6:5f:cd:28:68:b9:38:51:e6:52:88:9e:1d:b3:
51:12:6a:f6:2d:dd:6a:73:e9:8f:c0:6b:e0:b7:ce:3c:84:ff:
4c:ea:24:9f:54:32:92:5d:d4:a4:11:f1:78:1e:7a:6d:58:b3:
8f:cc:1d:b0:37:2f:e3:67:71:ab:39:36:af:f8:d3:2c:4c:2c:
06:43:6d:db:cf:f8:a0:a1:97:40:36:e3:c3:f8:88:72:9f:ac:
e7:d7:95:fb:70:12:81:45:25:db:6e:6d:e9:86:d3:d2:c9:b9:
27:59:9a:dc:48:f4:d5:69:c7:6a:da:39:87:fc:0d:ac:b4:56:
29:03:aa:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:46:11 2025 by rpki-client