Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: /Zbyb8gDhiRUYUJCmwwep5E3i2nauGtCnWcrBZbs/oc=
Subject key identifier: A2:2A:40:E1:03:6C:92:EF:25:C9:AB:4F:2B:B1:B2:2E:49:A3:18:C7
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 019F1867E4C646376AD0FDF723A74B92AE02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 198A
Signing time: Tue 30 Jun 2026 12:01:29 +0000
Manifest this update: Tue 30 Jun 2026 12:01:29 +0000
Manifest next update: Wed 01 Jul 2026 12:01:29 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: 5XRCTza8+27UIiBq3FOmSLN51M2KLIBCiODtnjvLnFg=)
2: DhpOUL_Ta1FDpH83x5fYZb3w0iw.roa (hash: 31Sl0HBZjZWI7Tb9GRR7XcM/c70/RPdQDShrKX9L2rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:e4:c6:46:37:6a:d0:fd:f7:23:a7:4b:92:ae:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: Jun 30 12:01:29 2026 GMT
Not After : Jul 1 12:01:29 2026 GMT
Subject: CN=a22a40e1036c92ef25c9ab4f2bb1b22e49a318c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ec:eb:d6:72:55:79:0b:7d:5f:9c:4a:66:7e:
18:c9:de:75:94:35:90:d8:bf:c2:57:4c:6e:bd:86:
f0:73:e4:86:01:f7:b4:fc:8b:20:29:45:99:09:2b:
93:5e:dd:83:12:e4:de:28:88:8c:0f:f5:d4:64:11:
64:7f:71:fd:df:10:9d:8d:88:d3:2d:71:7c:4c:c9:
ff:64:0e:dc:95:e6:b5:60:5b:61:f9:83:c9:c0:a2:
82:e0:bd:ca:d4:80:05:85:0e:06:1f:f4:27:82:dc:
ff:97:35:19:45:35:54:96:aa:7c:4f:26:35:32:88:
1b:f0:7e:b9:5e:72:8f:3f:86:7c:0a:67:dc:e5:12:
c8:8d:87:40:b2:00:1c:97:06:68:c4:e4:2f:25:15:
35:15:4d:3b:52:62:04:1b:cd:4a:41:33:ca:b5:7f:
2b:b9:98:e7:02:bd:ad:32:eb:03:e5:c4:e4:b4:9f:
2d:ff:0c:ce:91:e4:ce:b1:d9:aa:82:93:6f:91:4c:
e3:1d:26:ff:97:2c:7b:7c:dc:31:c7:04:3c:0e:de:
29:b1:fe:0d:48:32:ed:3e:27:1b:7c:f6:7d:1b:91:
28:b9:db:03:75:67:e3:67:7a:25:b7:24:a3:bf:d7:
8e:76:1b:b0:cd:30:fd:86:76:e8:a4:b5:37:88:de:
bb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:2A:40:E1:03:6C:92:EF:25:C9:AB:4F:2B:B1:B2:2E:49:A3:18:C7
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:41:e7:b8:34:3c:a4:19:24:40:05:e8:34:7f:8d:c9:b5:d8:
84:88:9a:04:5f:e9:b8:bf:0c:fe:d9:07:29:56:7c:a0:bb:3e:
1d:29:7b:03:23:66:36:c9:67:73:dd:7a:69:7e:a3:8b:30:03:
08:56:e7:c1:6f:68:00:ef:d9:2d:32:7b:a8:b1:8f:04:50:36:
80:36:ba:8f:a7:fe:25:13:d5:b8:a1:bd:a4:b5:c9:76:72:c7:
c3:76:18:12:f7:db:f9:ff:90:36:a6:ae:20:4c:f5:d2:ab:23:
0e:19:4c:f7:bd:27:f6:55:db:84:c7:62:1b:8b:60:37:58:51:
f5:65:39:df:9d:5f:a6:08:86:a6:cf:6e:d4:82:39:23:cb:b9:
83:dd:43:b8:bd:62:4a:68:95:b7:a8:ef:60:ba:85:ba:0d:0c:
cb:a3:01:77:b0:55:54:63:98:9f:1a:47:d5:71:96:6a:e3:e7:
2e:2d:ec:d7:88:1a:62:8a:f5:99:43:a9:70:c1:bb:7f:02:d6:
ab:a6:dc:18:6b:20:44:8e:fe:e3:de:1c:91:93:ef:f7:11:65:
b5:25:7c:46:39:53:35:30:fe:4a:f4:37:8a:f1:ca:12:e3:27:
f5:9f:84:ea:3f:26:c2:11:c8:6b:1f:1a:85:47:58:7d:2d:a2:
b9:cc:8f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:54 2026 by rpki-client