Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
File: 20bM9fil_kT0v9m6ZrpRJG2osYQ.mft (raw, json)
Hash identifier: WegKLpOZBKlUf3gg+6SV1ik0v/JCV+YoGPfWz+fO4SY=
Subject key identifier: B4:E4:F1:F9:D4:44:D4:CA:D5:5A:40:5D:37:36:3E:73:D0:80:36:08
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 019D38D2A836F96DF50FE06A37EACA21833D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
Manifest number: 1654
Signing time: Sun 29 Mar 2026 09:00:22 +0000
Manifest this update: Sun 29 Mar 2026 09:00:22 +0000
Manifest next update: Mon 30 Mar 2026 09:00:22 +0000
Files and hashes: 1: 20bM9fil_kT0v9m6ZrpRJG2osYQ.crl (hash: zG50HiEtOI3dKJv5RSTX5kvXyDE44r6Q9cSvMwar1NM=)
2: 7kzK7-E42Pa8w63nDviF_cLjzRw.roa (hash: UZPrhRmZER1+q3579qQlJmn/mR5/oV526WWY7+wNVgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:a8:36:f9:6d:f5:0f:e0:6a:37:ea:ca:21:83:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: Mar 29 09:00:22 2026 GMT
Not After : Mar 30 09:00:22 2026 GMT
Subject: CN=b4e4f1f9d444d4cad55a405d37363e73d0803608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8a:56:d1:22:4a:df:0e:17:1e:d6:30:b1:4b:
5f:56:b9:f2:b9:47:50:12:1b:ea:5b:32:85:58:84:
bc:a4:cc:f4:c2:c9:30:40:66:cb:b9:05:fd:f9:a3:
bc:8c:8a:76:51:af:3a:d2:44:89:c6:52:d2:47:59:
b6:8e:2d:cb:3b:68:43:b8:d0:a7:5a:a9:99:ed:25:
87:6c:5d:8c:8f:1d:ef:36:26:cc:2d:fb:c3:56:fe:
4b:ca:e4:52:ff:24:0e:39:22:df:6d:50:01:f9:2f:
ef:ed:db:87:68:bc:a7:62:73:27:36:2c:b8:4f:07:
07:22:fb:65:a7:ab:8c:c1:e0:ee:8c:ba:f1:76:5c:
47:6b:ac:7d:4b:70:66:c2:68:03:66:fb:7c:0f:9e:
0d:90:60:7f:e1:1e:41:a1:db:34:89:8a:11:71:54:
09:f9:3a:43:f8:d2:41:46:25:1f:70:88:a8:62:f3:
f9:23:be:50:79:9e:75:c1:d4:d7:a9:0b:cf:c4:7f:
bf:1c:01:c3:73:04:4e:1f:04:ba:d7:2c:9c:bd:e3:
94:09:25:db:5b:c5:24:67:7c:f8:96:29:bb:e5:9a:
e5:8a:5c:d4:6c:49:44:13:cb:08:13:04:a9:9a:55:
9e:c2:b8:ab:cc:57:69:93:70:cc:01:a4:eb:36:be:
58:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E4:F1:F9:D4:44:D4:CA:D5:5A:40:5D:37:36:3E:73:D0:80:36:08
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:dd:89:17:1d:26:f0:0f:71:10:58:bf:94:43:4a:88:7a:f9:
ac:ea:51:ef:59:6c:d6:a3:fb:c5:58:4e:17:21:00:0b:42:62:
47:10:50:39:65:18:dc:a3:33:56:84:1e:8c:8d:82:fd:ed:cc:
95:9a:51:d9:c9:d1:08:69:7e:b8:11:10:4a:e2:cc:24:79:69:
35:c3:cc:10:0a:bf:f2:0f:df:cc:d9:5a:1d:4f:7e:3a:fb:c6:
13:8b:f3:c8:02:28:ce:cf:83:1d:45:59:0d:a7:7a:bb:51:74:
b2:86:cd:c3:ee:82:c5:8a:2c:9d:76:06:71:b7:73:e2:f4:fb:
da:ca:d4:d8:c0:42:f8:7c:b3:86:09:ba:66:87:04:3d:bf:3a:
e9:00:26:fd:dc:55:f2:14:e7:bc:9b:b1:e9:25:4f:15:d0:4b:
01:0f:3e:49:ef:fa:89:86:47:4e:13:1f:43:2e:35:df:df:12:
dc:b3:8b:8e:97:42:91:f7:3b:d9:41:ec:da:84:e9:07:7e:da:
32:e6:84:f7:a3:bb:8a:89:8d:54:d8:ca:0d:3a:54:c6:d7:4a:
a6:85:3d:fe:4c:b8:93:6c:25:4d:5b:b9:f3:88:a9:f0:3c:20:
27:ff:28:41:c0:f6:a7:6e:2d:16:16:79:0a:e1:f6:1d:a0:8b:
6f:e5:99:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:15 2026 by rpki-client