Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
File: 20bM9fil_kT0v9m6ZrpRJG2osYQ.mft (raw, json)
Hash identifier: 7rlsZV4N3JSnkD+HoTrhAIP9EDNIuMfojinpE30h0jw=
Subject key identifier: 84:EF:BB:AD:38:9E:3E:66:B5:B2:AE:D3:64:F8:23:95:DD:89:0E:86
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 019F17C3493C5BE638F5F86F39602EB2B465
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
Manifest number: 174C
Signing time: Tue 30 Jun 2026 09:01:41 +0000
Manifest this update: Tue 30 Jun 2026 09:01:41 +0000
Manifest next update: Wed 01 Jul 2026 09:01:41 +0000
Files and hashes: 1: 20bM9fil_kT0v9m6ZrpRJG2osYQ.crl (hash: kClUkdYfoUjWTg8nNyUIugMicCv65amdf9R/Em5Abm4=)
2: 7kzK7-E42Pa8w63nDviF_cLjzRw.roa (hash: UZPrhRmZER1+q3579qQlJmn/mR5/oV526WWY7+wNVgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c3:49:3c:5b:e6:38:f5:f8:6f:39:60:2e:b2:b4:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: Jun 30 09:01:41 2026 GMT
Not After : Jul 1 09:01:41 2026 GMT
Subject: CN=84efbbad389e3e66b5b2aed364f82395dd890e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:76:27:81:2e:20:9e:fc:e0:b2:f0:5f:62:75:
3d:6f:e4:f8:9a:6b:75:47:2e:69:34:24:70:df:ab:
2c:2e:0a:e7:e1:ae:fd:37:14:b3:97:93:c9:97:45:
68:ef:36:90:ce:c3:22:70:c2:8c:05:fd:9c:cb:cc:
09:68:95:03:17:b5:c9:7a:3f:2a:68:68:6d:0e:fe:
6d:d0:47:b3:bb:fc:1e:d5:9a:54:c0:aa:bc:2f:db:
b9:3f:53:c1:c7:76:4b:82:4b:6e:dd:cf:cd:1a:04:
83:07:a0:ca:90:ae:21:05:a3:91:2f:d6:d4:e4:a8:
aa:b5:dc:61:9a:e1:66:aa:95:d5:ba:30:e9:74:e5:
91:4d:6b:66:dd:a9:76:fe:02:b5:77:79:2c:ae:c8:
3b:a3:7a:d6:b2:60:ae:03:6f:74:65:0a:13:31:c8:
9a:de:2e:68:20:40:41:c6:62:90:f3:29:a8:7b:05:
88:4b:ab:e2:e2:d1:d2:58:28:50:9b:55:a8:77:cc:
1e:2a:8a:6f:93:cd:f4:a3:c3:4e:da:68:7f:ce:df:
d7:de:b2:56:6d:e1:f0:6f:61:6a:c5:bf:79:25:c1:
65:7d:92:72:79:23:78:4d:ef:4e:06:c2:82:d2:97:
45:90:26:3a:62:49:85:41:5f:6f:4a:ae:37:b3:ec:
f8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EF:BB:AD:38:9E:3E:66:B5:B2:AE:D3:64:F8:23:95:DD:89:0E:86
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:bd:3d:00:33:23:6f:91:5d:75:0e:a6:11:11:44:44:97:7d:
40:9b:6a:10:8d:a9:ac:70:bf:f0:86:20:78:17:fd:1c:c6:c8:
be:ec:8e:2f:c7:c4:ba:31:a4:12:c5:c0:13:91:6c:4e:52:c0:
c4:7f:a2:d9:7b:2d:2c:95:af:43:99:a3:8a:56:a9:01:4f:ef:
a7:59:df:61:16:4a:db:e8:c3:96:c1:61:af:5f:f7:7d:25:86:
fc:c7:33:b0:7e:f1:bd:7c:ca:a3:41:0b:d8:c8:f6:3a:af:c8:
12:9b:76:47:f8:36:99:9a:5c:51:06:61:02:bd:53:8a:ae:cb:
04:f9:d7:19:0d:d5:63:17:45:34:62:ae:1f:4a:34:1c:e8:c4:
ea:d5:9c:ae:18:a1:08:dd:f8:31:14:0e:6f:89:c7:5b:3c:38:
07:c4:f7:a2:1b:a5:c8:83:71:e9:53:03:96:f1:56:af:22:67:
a0:f3:48:a3:cf:ed:28:c2:3d:17:32:84:d3:05:5c:e4:67:3e:
25:75:b1:02:3a:ed:c9:67:a6:fb:67:25:95:5f:7b:5d:fd:cd:
c6:c3:eb:45:b6:40:ad:99:a3:0f:50:3b:b0:c5:35:06:4e:91:
88:91:8c:bc:a0:46:63:f8:72:f7:5e:24:fc:86:7f:f3:79:98:
20:d1:67:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:02 2026 by rpki-client