Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: +k7xFUmgjFhl2Z9jCdPgeQtp7mW3DGX4p1LBvS3ha/I=
Subject key identifier: 57:EF:90:C8:0E:8B:9D:86:74:56:1A:30:DB:04:E8:69:78:6D:6A:EB
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 019F17F9C7D59C7760374C9F607CB48B8C47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 1983
Signing time: Tue 30 Jun 2026 10:01:13 +0000
Manifest this update: Tue 30 Jun 2026 10:01:13 +0000
Manifest next update: Wed 01 Jul 2026 10:01:13 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: QbGYlQQ/Oiy4CbS4KFi1NPafjNrZzuYSnBV6yzF2plo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:c7:d5:9c:77:60:37:4c:9f:60:7c:b4:8b:8c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: Jun 30 10:01:13 2026 GMT
Not After : Jul 1 10:01:13 2026 GMT
Subject: CN=57ef90c80e8b9d8674561a30db04e869786d6aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bb:75:01:10:94:83:ce:c6:b8:92:ef:45:e7:
29:7d:d4:5b:20:28:1c:be:7c:a6:e5:f6:a2:bb:10:
94:1e:ca:6b:b1:00:6f:c5:dc:6c:04:8c:92:7c:f7:
17:46:b2:8e:00:cc:b6:04:61:47:6b:c5:3b:21:fa:
a7:f8:ec:8b:c7:a0:f1:74:35:09:67:9a:3e:d4:50:
22:64:ff:4a:7d:0e:c6:37:b9:60:25:21:57:43:78:
0c:94:d4:a4:17:d1:9f:28:b9:39:36:7b:39:42:9d:
81:00:8a:fe:ea:55:c3:c7:0c:59:6d:33:89:31:5a:
69:c5:a4:6d:73:7c:34:8f:ab:c4:64:04:86:3c:d5:
94:da:ca:62:7d:70:56:1b:de:5b:60:bd:6e:e8:00:
08:9c:9e:0a:c7:ba:d2:c6:d8:41:24:65:ec:7c:94:
4d:d3:41:ae:e7:cb:29:81:f5:82:32:e0:0b:b1:9f:
d9:ae:91:86:74:2a:97:5a:4d:2b:d9:9a:4a:d7:5d:
9e:db:80:5f:61:24:75:fb:d7:a7:4a:7d:66:89:ae:
73:2b:90:da:4d:75:d1:45:bc:c4:ec:d6:70:f2:4b:
cd:36:10:37:52:b3:c1:93:b7:65:18:fb:a9:7c:75:
7d:04:5c:b4:05:77:0a:03:bf:ef:17:6c:cd:45:c9:
6b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:EF:90:C8:0E:8B:9D:86:74:56:1A:30:DB:04:E8:69:78:6D:6A:EB
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:79:52:0b:83:63:b0:d5:59:60:41:90:b4:3e:7c:14:73:55:
b7:87:86:21:0c:55:60:df:33:39:48:df:2d:96:aa:ff:7a:6e:
3a:c1:6f:61:09:8d:fb:76:89:1a:c5:ed:58:06:d2:af:b2:0c:
1a:8b:d2:da:b1:0d:d5:65:e9:4d:ce:ac:05:00:f1:18:34:e9:
aa:32:8a:ed:1b:13:42:ad:7d:59:21:e1:2b:b6:5b:4e:94:a6:
38:a2:17:31:ee:ca:92:a5:29:be:bb:5e:fc:d1:2a:f0:1f:3d:
c2:aa:cf:89:e5:28:37:a8:75:91:55:2a:84:33:79:33:d1:9d:
90:02:a6:29:09:20:03:98:5c:fe:85:fe:4a:ec:6f:7c:56:30:
90:60:6e:9a:f1:b1:4e:67:29:75:93:cc:ce:17:da:cc:80:fe:
cd:62:e0:e5:50:89:a8:72:0b:6e:ac:15:c2:e8:81:17:f7:9e:
51:6b:d0:cb:ae:c9:ae:19:50:71:fa:08:33:32:6b:6e:27:8d:
28:1d:0f:d2:3f:62:3d:22:6c:39:eb:d2:15:54:e1:89:06:1a:
01:bc:14:7a:e0:52:23:9e:fc:47:a1:2b:ec:5a:18:70:9c:90:
86:67:03:16:15:7a:0a:ff:21:d7:f5:3c:d9:86:e2:ee:f7:a7:
b6:6b:e8:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8X+cfVnHdgN0yfYHy0i4xHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDYwZDIwMTc5NWE2YTk5MmVkNGFjMThiYjdjNTJjMTA4
Yjc4NTIwHhcNMjYwNjMwMTAwMTEzWhcNMjYwNzAxMTAwMTEzWjAzMTEwLwYDVQQD
Eyg1N2VmOTBjODBlOGI5ZDg2NzQ1NjFhMzBkYjA0ZTg2OTc4NmQ2YWViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7t1ARCUg87GuJLvRecpfdRbICgc
vnym5faiuxCUHsprsQBvxdxsBIySfPcXRrKOAMy2BGFHa8U7Ifqn+OyLx6DxdDUJ
Z5o+1FAiZP9KfQ7GN7lgJSFXQ3gMlNSkF9GfKLk5Nns5Qp2BAIr+6lXDxwxZbTOJ
MVppxaRtc3w0j6vEZASGPNWU2spifXBWG95bYL1u6AAInJ4Kx7rSxthBJGXsfJRN
00Gu58spgfWCMuALsZ/ZrpGGdCqXWk0r2ZpK112e24BfYSR1+9enSn1mia5zK5Da
TXXRRbzE7NZw8kvNNhA3UrPBk7dlGPupfHV9BFy0BXcKA7/vF2zNRclrwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfvkMgOi52GdFYaMNsE6Gl4bWrrMB8GA1UdIwQY
MBaAFNtGDSAXlaapku1KwYu3xSwQi3hSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2Ut
ZTgyZWQzZDc2YTg3LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2UtZTgyZWQzZDc2YTg3
LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqXlSC4Nj
sNVZYEGQtD58FHNVt4eGIQxVYN8zOUjfLZaq/3puOsFvYQmN+3aJGsXtWAbSr7IM
GovS2rEN1WXpTc6sBQDxGDTpqjKK7RsTQq19WSHhK7ZbTpSmOKIXMe7KkqUpvrte
/NEq8B89wqrPieUoN6h1kVUqhDN5M9GdkAKmKQkgA5hc/oX+SuxvfFYwkGBumvGx
TmcpdZPMzhfazID+zWLg5VCJqHILbqwVwuiBF/eeUWvQy67JrhlQcfoIMzJrbieN
KB0P0j9iPSJsOevSFVThiQYaAbwUeuBSI578R6Er7FoYcJyQhmcDFhV6Cv8h1/U8
2Ybi7ventmvoig==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:04 2026 by rpki-client