Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: Nkvbuj5PO+f27Mb06pKxt8YHuayUhNeA4ZcPxQR687I=
Subject key identifier: 53:67:D3:D9:A4:48:63:8F:2F:3A:A7:2C:24:F5:FB:55:78:65:6D:A4
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 019E303BD77EB6AB4E7FEA38B95FABF268CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 190B
Signing time: Sat 16 May 2026 10:01:28 +0000
Manifest this update: Sat 16 May 2026 10:01:28 +0000
Manifest next update: Sun 17 May 2026 10:01:28 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: GqSoLXazbZfTUPt7fbDrfiRBRud+MSkYDEhGX8wxml4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:d7:7e:b6:ab:4e:7f:ea:38:b9:5f:ab:f2:68:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: May 16 10:01:28 2026 GMT
Not After : May 17 10:01:28 2026 GMT
Subject: CN=5367d3d9a448638f2f3aa72c24f5fb5578656da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:86:9f:62:cc:76:7c:cd:83:46:b4:ad:16:aa:
49:c3:c7:8a:b6:ab:72:fa:e0:7f:e9:36:2a:96:99:
51:6c:c7:f9:fe:04:c5:49:58:d1:11:58:dd:e3:1a:
33:ba:38:ba:d2:16:45:16:7d:f2:ba:e2:d5:86:fd:
f0:62:02:b8:07:9e:71:61:0d:f2:a8:a2:47:80:01:
0d:0d:34:a4:2f:c1:f0:25:ac:65:6f:01:e0:0e:7a:
bd:98:ee:bf:93:19:8b:a2:cb:4b:ba:09:28:ae:ab:
1d:aa:9e:6f:43:d2:cc:78:6c:62:ec:2d:c0:74:a9:
f9:31:61:d5:27:09:06:ea:41:79:3e:f4:64:4c:9a:
e1:af:d3:95:c7:4c:14:aa:2d:a7:8f:65:39:ac:97:
a2:81:40:07:5a:19:e3:2b:69:b0:74:80:2c:28:61:
c1:02:40:ac:34:d0:2f:05:48:72:d0:e1:16:99:34:
e7:21:8a:e4:32:f7:46:51:e0:05:c1:5f:13:d1:08:
d4:05:9e:fe:e9:33:4d:3e:1a:85:db:59:82:bf:70:
19:80:6d:77:bd:3e:d0:d3:de:05:c1:1b:0d:d7:c4:
ff:3d:f0:6c:b5:2b:68:1b:28:e0:f0:0f:ed:b9:86:
75:c1:fb:54:42:ad:27:14:15:01:e2:b5:09:ab:5b:
6e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:67:D3:D9:A4:48:63:8F:2F:3A:A7:2C:24:F5:FB:55:78:65:6D:A4
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ca:9f:86:b7:1d:4a:55:54:44:f0:dc:e6:3c:a4:70:32:86:
be:e0:f2:9b:42:7d:da:a3:67:fa:10:34:3c:44:90:b4:e8:6d:
35:2f:49:82:39:02:b9:00:6d:05:0e:86:7c:f0:2f:c3:cf:d8:
04:7a:72:36:7e:39:45:25:8d:e1:b3:bf:f0:f4:3b:fa:f4:8e:
32:6b:bd:3b:05:10:ce:53:09:c2:97:15:87:a6:3b:05:5a:29:
13:62:41:44:f0:3d:23:2f:44:b3:82:09:c1:f3:76:5b:8a:5d:
73:72:f6:b3:ed:f7:99:f7:93:0c:e4:28:e5:e2:d2:be:c2:7b:
2e:cf:42:b4:cc:7a:b7:f8:1c:09:46:0c:6b:58:a2:01:22:c0:
ae:1a:9c:2c:54:9a:14:06:fb:6c:f5:df:82:b8:0a:db:08:bd:
26:e7:3c:31:b5:20:69:9b:8e:4a:de:25:0f:a8:99:c7:e9:93:
81:13:e6:7c:cb:23:ed:c7:46:79:03:8c:6d:49:17:6a:5a:15:
d1:eb:b0:5d:60:dd:d5:6b:b1:d9:f9:14:8b:aa:19:65:1b:34:
05:d0:b6:f8:28:45:02:01:e5:5c:c3:71:46:84:e9:13:ed:32:
f4:fc:c8:37:13:ba:5f:ef:a9:6d:ad:30:d4:f5:0a:e4:ac:13:
f8:82:62:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:25:18 2026 by rpki-client