Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
File: 20bM9fil_kT0v9m6ZrpRJG2osYQ.mft (raw, json)
Hash identifier: 8tZtQRWCmJfknOno83F0mXigZT3/NW/uJp/DN563IsM=
Subject key identifier: 2D:4B:E2:48:C0:07:D9:4C:5C:A1:85:59:09:A8:BD:09:3E:B5:30:8D
Authority key identifier: DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
Certificate issuer: /CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Certificate serial: 019E3004FCCF3417DBEADEA09B5FC922824A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
Manifest number: 16D4
Signing time: Sat 16 May 2026 09:01:33 +0000
Manifest this update: Sat 16 May 2026 09:01:33 +0000
Manifest next update: Sun 17 May 2026 09:01:33 +0000
Files and hashes: 1: 20bM9fil_kT0v9m6ZrpRJG2osYQ.crl (hash: OCljce+wQWg0NO0uXO5URyazH7TaUCcgEt2SafziSOw=)
2: 7kzK7-E42Pa8w63nDviF_cLjzRw.roa (hash: UZPrhRmZER1+q3579qQlJmn/mR5/oV526WWY7+wNVgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:fc:cf:34:17:db:ea:de:a0:9b:5f:c9:22:82:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db46ccf5f8a5fe44f4bfd9ba66ba51246da8b184
Validity
Not Before: May 16 09:01:33 2026 GMT
Not After : May 17 09:01:33 2026 GMT
Subject: CN=2d4be248c007d94c5ca1855909a8bd093eb5308d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e5:b6:0d:1c:41:d2:37:0c:ab:7c:0e:9c:5f:
7c:a5:f5:18:65:d0:cd:fd:4b:bd:fb:b5:18:dc:e5:
67:01:e5:1f:e8:58:32:ac:8f:9e:42:92:d0:52:aa:
d3:a9:9b:e4:4c:6b:52:91:a4:c3:cd:cf:f8:f5:69:
2a:3c:dd:4e:30:97:e2:b7:57:3f:f7:6b:82:0b:26:
eb:39:f4:14:4a:96:a0:79:bd:84:b8:7d:6e:b8:fb:
74:7d:1c:4b:b9:78:a0:29:aa:cd:e4:54:cb:e4:64:
ac:b8:1f:7d:82:3e:79:38:68:8d:03:c0:c3:4e:01:
30:d6:94:a7:e7:c2:8d:ff:f4:32:41:ef:4b:98:49:
f6:37:f8:35:70:2c:4a:e0:e1:f9:a1:cc:6a:f1:a2:
f6:4d:b9:e1:c2:26:2d:93:12:8c:61:3e:76:f8:02:
e2:13:a3:c6:47:33:b6:25:00:44:36:95:e8:e0:91:
a4:d3:22:a3:5f:df:e9:21:1a:5e:d5:0d:b0:af:c9:
77:05:fa:ae:d9:f2:01:8a:1b:71:00:82:56:e1:3e:
2c:fa:b6:40:7f:29:6e:c5:7d:fc:9d:85:d7:62:39:
e0:42:e4:f4:08:cc:ff:42:ca:6e:fb:b2:42:0c:e9:
59:e0:34:8b:cf:79:fc:c3:1f:78:aa:51:d7:9c:f4:
92:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4B:E2:48:C0:07:D9:4C:5C:A1:85:59:09:A8:BD:09:3E:B5:30:8D
X509v3 Authority Key Identifier:
keyid:DB:46:CC:F5:F8:A5:FE:44:F4:BF:D9:BA:66:BA:51:24:6D:A8:B1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20bM9fil_kT0v9m6ZrpRJG2osYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f72a1e-6adb-4302-a0e8-d42a81b81e23/1/20bM9fil_kT0v9m6ZrpRJG2osYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:94:c9:70:f9:df:72:59:82:cd:a0:ef:35:40:07:ec:a1:4e:
1b:51:cd:07:b5:28:95:c5:27:ad:95:c3:35:b5:a2:8a:b0:1e:
85:d7:63:2e:0a:54:e8:d9:ac:cd:bc:c9:12:16:0a:da:a9:32:
2e:c2:6b:3c:c7:16:37:6c:03:20:78:78:23:a7:bb:a9:5e:91:
9c:7a:1e:ab:65:be:10:3b:66:dc:fc:07:80:e1:bc:f1:c1:f3:
32:1c:ee:28:ec:36:d7:08:02:bf:57:2f:fc:7a:bf:76:64:86:
4e:7d:8c:5a:9c:b3:be:5e:96:f8:3f:d4:f4:5b:d7:ff:0b:a5:
bf:1d:aa:fa:4b:7f:c6:74:88:ae:e7:2e:da:2b:f8:c1:c6:eb:
1f:19:e5:1f:57:53:c8:a0:d1:e4:0f:2a:27:30:7f:70:fc:6f:
b6:a1:90:ff:a5:9e:76:fd:a3:cc:6e:43:56:d3:0e:bb:e9:a6:
61:09:e1:6d:9f:9a:3e:4d:f0:22:5a:9c:fc:dc:db:76:60:34:
da:f9:ad:0a:e1:17:5e:0f:f0:41:e0:83:8a:d5:3f:5f:89:68:
4b:73:7a:4b:01:bc:d5:3e:db:4f:56:8c:aa:44:20:e3:1a:32:
71:64:c3:59:84:57:1d:70:e9:f2:67:0e:dd:44:e2:26:db:d3:
2d:54:29:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBPzPNBfb6t6gm1/JIoJKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDZjY2Y1ZjhhNWZlNDRmNGJmZDliYTY2YmE1MTI0NmRh
OGIxODQwHhcNMjYwNTE2MDkwMTMzWhcNMjYwNTE3MDkwMTMzWjAzMTEwLwYDVQQD
EygyZDRiZTI0OGMwMDdkOTRjNWNhMTg1NTkwOWE4YmQwOTNlYjUzMDhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOW2DRxB0jcMq3wOnF98pfUYZdDN
/Uu9+7UY3OVnAeUf6FgyrI+eQpLQUqrTqZvkTGtSkaTDzc/49WkqPN1OMJfit1c/
92uCCybrOfQUSpageb2EuH1uuPt0fRxLuXigKarN5FTL5GSsuB99gj55OGiNA8DD
TgEw1pSn58KN//QyQe9LmEn2N/g1cCxK4OH5ocxq8aL2TbnhwiYtkxKMYT52+ALi
E6PGRzO2JQBENpXo4JGk0yKjX9/pIRpe1Q2wr8l3Bfqu2fIBihtxAIJW4T4s+rZA
fyluxX38nYXXYjngQuT0CMz/Qspu+7JCDOlZ4DSLz3n8wx94qlHXnPSS5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1L4kjAB9lMXKGFWQmovQk+tTCNMB8GA1UdIwQY
MBaAFNtGzPX4pf5E9L/Zuma6USRtqLGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9mNzJhMWUtNmFkYi00MzAyLWEwZTgt
ZDQyYTgxYjgxZTIzLzEvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9mNzJhMWUtNmFkYi00MzAyLWEwZTgtZDQyYTgxYjgxZTIz
LzEvMjBiTTlmaWxfa1QwdjltNlpycFJKRzJvc1lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASZTJcPnf
clmCzaDvNUAH7KFOG1HNB7UolcUnrZXDNbWiirAehddjLgpU6NmszbzJEhYK2qky
LsJrPMcWN2wDIHh4I6e7qV6RnHoeq2W+EDtm3PwHgOG88cHzMhzuKOw21wgCv1cv
/Hq/dmSGTn2MWpyzvl6W+D/U9FvX/wulvx2q+kt/xnSIrucu2iv4wcbrHxnlH1dT
yKDR5A8qJzB/cPxvtqGQ/6Wedv2jzG5DVtMOu+mmYQnhbZ+aPk3wIlqc/NzbdmA0
2vmtCuEXXg/wQeCDitU/X4loS3N6SwG81T7bT1aMqkQg4xoycWTDWYRXHXDp8mcO
3UTiJtvTLVQpwQ==
-----END CERTIFICATE-----
Generated at Sat May 16 15:39:45 2026 by rpki-client