Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
File: 20bM9fil_kT0v9m6ZrpRJG2osYQ.mft (raw, json)
Hash identifier: L6EVdWyW94/sutgjGIo786agOCsScXy9yT3VE7cTtG4=
Subject key identifier: FB:63:94:09:A2:4B:28:39:07:8B:B1:C2:A0:31:3E:22:7E:85:0D:1C
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 01992255DF7448EB2B08E3D78AE7EA0AF582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
Manifest number: 1436
Signing time: Sun 07 Sep 2025 04:01:17 +0000
Manifest this update: Sun 07 Sep 2025 04:01:17 +0000
Manifest next update: Mon 08 Sep 2025 04:01:17 +0000
Files and hashes: 1: 20bM9fil_kT0v9m6ZrpRJG2osYQ.crl (hash: WiDO49AeylxYNwF3mzuxAfGKhFzjBcUmb/Qog37Q+so=)
2: tE13-Z8TEXFI2N_Q3eslEjXwYJ4.roa (hash: 7axnrMAdFOe7EcvPvTZA4mgDnvv0sfD7w1s1AvMo3bY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:df:74:48:eb:2b:08:e3:d7:8a:e7:ea:0a:f5:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: Sep 7 04:01:17 2025 GMT
Not After : Sep 8 04:01:17 2025 GMT
Subject: CN=fb639409a24b2839078bb1c2a0313e227e850d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:13:b0:5f:05:b3:97:02:c0:0b:9a:5c:91:58:
6a:d9:f8:05:9b:42:07:66:0e:75:1a:05:c2:fd:92:
ca:f3:74:cb:0f:0f:c7:17:73:86:2e:f9:54:a3:1f:
cd:cb:45:fc:ff:45:45:8b:39:15:0d:e6:6e:31:6b:
32:04:c2:bf:d2:e8:4d:a2:f2:d1:27:7b:ec:73:8b:
98:0f:19:4b:d8:4b:e1:a9:28:db:d6:e2:f8:b7:a6:
2d:43:f0:90:b2:52:e0:a9:7c:58:3b:25:29:e5:e9:
8f:e6:f9:1d:01:de:06:30:25:5a:60:b3:4b:b2:26:
3f:cd:b0:c9:c1:e5:39:69:99:db:a9:7c:a0:ba:94:
ef:45:06:e1:03:05:93:79:e6:0f:b2:75:26:e0:b9:
58:04:16:62:22:17:2b:a7:bb:5c:5e:d9:3a:eb:47:
21:b7:86:bf:81:6c:7b:53:fe:b0:2c:c8:6e:5f:13:
0c:2a:94:e6:80:9b:3f:10:c5:b9:ac:8e:57:b5:ef:
0c:3a:15:2e:7d:da:19:af:0f:24:28:72:9a:6d:5a:
55:8a:4e:51:ea:59:0c:b2:b3:63:6c:24:d2:e2:8f:
b5:bc:81:2f:e5:de:80:2f:dd:ce:15:ff:7e:da:10:
5e:70:3e:a0:77:ba:9a:ed:8f:82:31:f1:18:68:6a:
9b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:63:94:09:A2:4B:28:39:07:8B:B1:C2:A0:31:3E:22:7E:85:0D:1C
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:90:c5:69:a4:c6:8d:ff:b1:4e:3a:0e:83:5b:6e:5e:38:e5:
17:2f:af:e6:35:02:30:1c:10:26:e4:18:af:63:51:d0:d9:69:
dd:d7:1e:1a:ab:f4:06:02:ca:07:33:01:dc:38:8c:5b:84:cd:
3a:de:12:d6:50:9a:52:38:39:4c:c9:ee:3b:5b:c8:b2:de:ba:
97:bb:25:d7:62:35:64:b7:89:5c:7e:7b:10:73:f3:26:f6:4c:
00:be:b8:44:40:89:42:14:82:42:70:08:72:39:f8:1b:bc:14:
25:de:92:62:ec:cb:3a:3e:a5:71:7f:13:39:b5:7a:c9:22:b1:
36:a1:93:ed:23:7b:5b:3f:5a:95:db:34:3e:0f:30:d9:94:4c:
10:03:3b:fa:df:78:7e:45:12:d3:d9:b6:f9:97:ef:e6:7c:78:
aa:14:4e:1d:c0:81:5d:fd:92:cd:8f:44:45:25:94:33:55:fe:
be:13:64:d5:97:43:f6:60:4a:03:1f:42:7b:f5:a7:40:12:53:
5f:e9:0d:8c:6e:dc:31:27:b3:31:06:4d:53:10:64:18:6c:1e:
99:57:66:25:79:2b:65:4f:43:e5:4c:74:8b:28:25:11:44:3d:
6a:cb:21:d3:cf:4c:e6:5f:a0:cb:44:e8:7e:31:ab:26:7f:f6:
d7:ce:85:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:34:24 2025 by rpki-client