Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
File: 0CAT81SL49yz3KGNT8k3ifRPA78.mft (raw, json)
Hash identifier: B9CmUIyCcwxp3izqIjyMDQs8wlVj1PScfdKmDEof34g=
Subject key identifier: 9C:22:53:B5:26:5C:A3:DC:D1:60:A6:75:10:CD:48:06:95:B3:38:B5
Authority key identifier: D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
Certificate issuer: /CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Certificate serial: 019E30A90EA0A531AE70F828B54B7D2F65B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 12:00:46 +0000
Manifest this update: Sat 16 May 2026 12:00:46 +0000
Manifest next update: Sun 17 May 2026 12:00:46 +0000
Files and hashes: 1: 0CAT81SL49yz3KGNT8k3ifRPA78.crl (hash: YN4iwfjaWahW3vACM7VmD3MowOUwiNqEi3ILbjT+M5Y=)
2: DhpOUL_Ta1FDpH83x5fYZb3w0iw.roa (hash: 31Sl0HBZjZWI7Tb9GRR7XcM/c70/RPdQDShrKX9L2rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:0e:a0:a5:31:ae:70:f8:28:b5:4b:7d:2f:65:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d02013f3548be3dcb3dca18d4fc93789f44f03bf
Validity
Not Before: May 16 12:00:46 2026 GMT
Not After : May 17 12:00:46 2026 GMT
Subject: CN=9c2253b5265ca3dcd160a67510cd480695b338b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d5:eb:dc:14:4f:a9:da:68:f1:17:22:e8:2d:
36:4f:c9:73:1f:88:7a:51:d6:d6:4e:c4:76:e3:e8:
df:2d:2d:25:bf:67:41:db:c6:73:5b:d2:e4:cb:e2:
28:97:7c:9d:28:be:d8:b5:03:26:3d:4b:17:bc:1e:
5a:31:c1:77:0c:39:30:62:8a:44:df:1f:0d:aa:3f:
81:50:21:be:b6:e7:50:f3:f8:a8:21:f3:0d:9f:66:
88:35:27:91:5e:62:0e:89:e8:05:d9:e5:3c:25:96:
5f:af:4f:0b:73:f0:15:5e:4d:59:db:4d:69:96:61:
83:92:3c:7a:e1:ac:0c:f1:77:61:43:9e:7e:6c:f0:
34:c2:4c:8f:75:dd:fc:79:44:3e:13:20:1b:28:82:
69:a1:fc:72:1b:d6:f1:1e:bd:fe:7e:bb:8a:e2:26:
dc:0c:64:50:90:25:d0:ca:1d:d6:0c:c8:53:80:d1:
80:3c:81:f6:43:23:33:21:20:13:32:eb:d4:91:3d:
dd:87:6a:42:52:1a:c7:ed:29:c9:85:b6:f0:3a:29:
d2:e4:e0:70:aa:b9:a3:e3:a8:da:ca:2d:60:9d:c7:
8e:08:7a:49:e6:ad:69:75:0f:8e:b9:1c:8f:5d:76:
f1:7f:f7:a3:1a:ba:6e:13:20:bb:40:57:74:39:55:
e7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:22:53:B5:26:5C:A3:DC:D1:60:A6:75:10:CD:48:06:95:B3:38:B5
X509v3 Authority Key Identifier:
keyid:D0:20:13:F3:54:8B:E3:DC:B3:DC:A1:8D:4F:C9:37:89:F4:4F:03:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0CAT81SL49yz3KGNT8k3ifRPA78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd431a-9706-4f38-800b-2a685f78b29d/1/0CAT81SL49yz3KGNT8k3ifRPA78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:d1:0e:de:d5:0b:72:bc:0f:53:1f:ad:f7:4e:d0:c3:f3:67:
9e:c5:2f:8c:47:3a:da:98:73:58:89:94:5f:73:a8:23:fd:3f:
d1:7c:9d:00:67:ce:c2:d0:1d:74:d0:0d:dd:a2:6b:a6:d5:f4:
5f:6f:d3:b8:27:2d:56:12:fd:93:51:3e:9f:33:6e:d9:90:50:
a9:52:4e:fd:cb:69:a5:1d:f0:26:c3:4f:98:7f:5f:fb:89:9a:
b4:fd:42:ce:8b:8c:e1:a0:84:9e:2d:f1:b0:dc:4c:f2:87:4e:
c6:59:24:cb:fd:2a:da:0e:1c:ba:df:97:4d:29:06:5d:4b:0b:
bc:f3:20:5b:65:0f:b8:53:bd:38:69:18:87:91:d7:0f:31:81:
34:e3:e8:ca:4b:77:2d:a4:74:03:78:7b:96:9e:f6:a0:84:71:
a4:ef:c8:86:5b:23:7e:35:1e:4b:5b:01:13:29:0d:ce:08:a8:
26:99:95:fe:45:9c:0a:cd:6f:1b:f0:36:5f:18:d7:66:e6:12:
b6:80:2c:e6:ac:94:03:9c:bd:f5:2d:e8:fb:2a:1e:45:c4:d7:
da:70:06:d0:a0:b6:ac:cc:c4:42:b8:1d:24:45:f2:25:53:10:
8c:6c:1e:2a:e5:ef:58:94:02:dc:0c:b7:3a:eb:04:40:f7:df:
b5:94:45:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:40:00 2026 by rpki-client