Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: iHUMek3SGlA3dRhNrfXlP1CZI2z0CdTk3kh0YzaPR6c=
Subject key identifier: 02:B7:90:D1:F3:1C:BC:85:EB:5F:3F:D5:6D:79:2E:95:CA:28:3A:A8
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 019E3004FA158BC84FF1C4D195466278C255
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 0C0C
Signing time: Sat 16 May 2026 09:01:32 +0000
Manifest this update: Sat 16 May 2026 09:01:32 +0000
Manifest next update: Sun 17 May 2026 09:01:32 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: uZPMViRvRceoKu3W4wRNv9YRpcorng4eTfuikjHkXPs=)
2: K_G3q1oHoFkLaOnMyEVLIcn7Qmw.roa (hash: /NaxyStNTlcpIpTarZjjR+9kQ6m4FlTTRFr5N6+rcrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:fa:15:8b:c8:4f:f1:c4:d1:95:46:62:78:c2:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: May 16 09:01:32 2026 GMT
Not After : May 17 09:01:32 2026 GMT
Subject: CN=02b790d1f31cbc85eb5f3fd56d792e95ca283aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:39:b8:18:87:e6:e6:80:d4:e3:b2:5d:b9:ff:
73:af:4d:65:cb:d1:a9:b7:45:40:d1:64:a1:48:67:
2b:a8:b8:ce:ce:90:6d:d6:aa:68:e2:7d:29:b8:0d:
b9:79:97:36:41:7e:16:91:89:69:c6:d4:8a:1e:ca:
25:ba:f1:4b:fe:97:63:30:bb:52:27:68:fb:42:7a:
68:ea:73:13:e9:f5:aa:70:dc:8b:81:13:f7:2c:4e:
ef:fa:22:af:e5:a4:63:e5:ce:c3:d5:ac:6a:83:fb:
6c:d9:cf:ff:8e:06:eb:b8:1f:93:61:02:f8:0e:cb:
3e:8e:0f:a6:70:1a:a3:ca:42:5d:69:65:4e:65:40:
14:25:1a:fc:a5:4b:b3:4a:d7:e5:99:08:73:14:63:
31:34:84:68:5a:96:b9:e6:83:83:cc:94:f4:f8:c7:
70:2c:43:54:1d:89:79:6b:a3:ba:a4:cd:c6:4d:43:
da:df:e9:72:b9:be:a6:cf:06:73:f6:61:a7:f5:f0:
e5:db:70:96:eb:2e:f9:5b:47:ea:b8:a5:71:ff:bf:
4e:a6:f4:94:43:9b:da:4a:81:ec:5e:00:70:2a:db:
49:37:3f:46:eb:ec:f8:00:69:f4:be:aa:16:33:61:
8e:d6:9d:0a:aa:18:7b:f8:1a:57:90:84:b9:92:94:
2a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:B7:90:D1:F3:1C:BC:85:EB:5F:3F:D5:6D:79:2E:95:CA:28:3A:A8
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:2a:70:f7:8f:75:5c:ef:14:f5:9f:42:da:7c:7b:7e:3b:17:
f2:25:a7:80:3d:16:d2:94:c7:cf:fd:78:78:99:ef:18:e7:87:
04:82:3f:2b:44:80:8e:bc:07:dd:71:2d:37:a9:e1:2e:35:58:
78:6f:c9:ea:76:34:4f:26:d5:ab:4c:b4:ac:30:90:d9:0f:2b:
57:65:82:82:f3:e8:5b:0c:9f:21:48:59:89:64:ce:ab:2b:29:
be:ae:41:cd:f9:7b:10:d4:6c:3f:4d:7a:ea:57:c0:a5:8d:95:
98:a0:0b:9f:09:ed:69:47:7e:90:92:c6:2c:90:7c:7e:81:89:
9b:36:74:cf:a4:0c:f7:94:12:d5:1a:c8:5d:b2:1f:52:1a:82:
1b:dc:60:f4:ea:86:d0:d6:57:d9:e0:42:ef:7b:8e:ea:ba:45:
83:d9:d3:70:b3:9f:ba:59:4b:3e:ce:4e:f8:cf:28:3f:e4:56:
d6:6b:18:b7:5f:b5:c8:99:80:2f:72:ef:97:a2:ff:ec:90:da:
3f:81:6a:71:ad:87:6c:1a:00:d8:06:cc:63:75:ac:de:3d:9f:
d0:d3:cd:80:09:de:23:36:bf:39:00:71:c8:b4:98:4f:86:16:
0e:c4:ad:d7:ab:28:37:48:34:bb:aa:4e:03:63:bd:43:51:27:
ff:f6:c3:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:56:11 2026 by rpki-client