Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
File: 20iBY9r1DbZG3k3yTTTLrJk_RX8.mft (raw, json)
Hash identifier: QCks3Ux16nCU+K1K4p79PUtPJe8Mun36+M3vOEnJf6A=
Subject key identifier: 2A:60:EF:24:4C:44:0B:3B:18:8B:9A:7D:E7:F5:39:F3:16:A1:41:33
Authority key identifier: DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F
Certificate issuer: /CN=db488163daf50db646de4df24d34cbac993f457f
Certificate serial: 019E30E043E96239E1498641CEC28BCB3276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
Manifest number: 190E
Signing time: Sat 16 May 2026 13:01:04 +0000
Manifest this update: Sat 16 May 2026 13:01:04 +0000
Manifest next update: Sun 17 May 2026 13:01:04 +0000
Files and hashes: 1: 20iBY9r1DbZG3k3yTTTLrJk_RX8.crl (hash: sWzKhTyrP19ffUjgDLjpvvixys3seLWywJ7Wyd3Eqmk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:43:e9:62:39:e1:49:86:41:ce:c2:8b:cb:32:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db488163daf50db646de4df24d34cbac993f457f
Validity
Not Before: May 16 13:01:04 2026 GMT
Not After : May 17 13:01:04 2026 GMT
Subject: CN=2a60ef244c440b3b188b9a7de7f539f316a14133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:29:bb:08:e0:d5:78:fe:70:03:52:0a:29:5e:
74:06:90:c1:b0:1d:48:44:19:2f:f0:b5:22:5e:ee:
83:35:36:f7:9c:14:db:47:c2:c1:af:7d:87:d8:41:
d7:64:10:31:14:cb:f9:a6:24:7f:1c:ee:63:9c:73:
09:12:f5:57:2f:7f:f3:fd:b3:c4:22:39:19:d4:12:
f7:b3:1e:92:23:01:52:45:55:00:7d:79:bc:8f:35:
d2:61:47:8a:a9:fa:c3:fe:5b:c3:2f:5e:e8:5f:99:
a2:1d:f1:77:0a:1c:7e:43:41:18:b9:11:3e:c0:3c:
57:ba:ab:66:63:c0:22:3c:e3:a1:6a:e3:09:3d:8e:
74:7a:d2:77:29:ea:03:2a:ca:0e:67:c8:b9:49:fa:
28:11:fb:44:ca:62:a5:9d:e0:5c:a0:cf:e4:05:1f:
45:fb:cc:9b:23:c7:42:a7:19:a3:74:95:40:81:d5:
83:63:57:77:d2:b9:76:3f:d5:d0:ff:75:36:a8:d6:
55:eb:48:60:53:14:d6:b2:0f:99:f0:14:b4:4a:0c:
3d:ae:b6:ea:7c:60:d9:30:a0:09:31:cd:06:6f:44:
66:f0:01:45:7e:ac:ad:82:0e:d9:da:48:c3:e0:b8:
c0:e2:6c:47:9b:33:e1:2e:21:ea:a6:3f:5d:eb:a2:
f6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:60:EF:24:4C:44:0B:3B:18:8B:9A:7D:E7:F5:39:F3:16:A1:41:33
X509v3 Authority Key Identifier:
keyid:DB:48:81:63:DA:F5:0D:B6:46:DE:4D:F2:4D:34:CB:AC:99:3F:45:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20iBY9r1DbZG3k3yTTTLrJk_RX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4e5c10-71ed-4deb-b4e0-19d57ff1fbd9/1/20iBY9r1DbZG3k3yTTTLrJk_RX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:97:52:9d:39:2c:19:90:c8:2d:61:79:f3:71:ae:21:83:16:
2b:00:7f:fd:7b:a3:ed:6e:2e:8d:e0:7a:b7:31:f6:ad:d4:6e:
91:90:b8:e8:c8:d4:bd:49:ae:f7:cd:fc:8f:c7:a2:92:b9:64:
aa:3f:13:cf:9d:b5:20:31:64:ff:31:99:f1:66:9c:db:f9:a4:
68:f2:96:0e:8e:8a:16:66:89:4c:29:e6:a0:00:f6:14:ac:84:
3c:7d:27:a3:ae:a3:87:47:8b:ea:35:04:63:f3:d8:61:18:08:
97:2c:cf:e7:e5:5d:a5:ba:bd:97:6e:9d:57:ba:cf:cb:a7:2c:
83:24:86:96:23:48:69:02:d3:29:3b:7f:c1:2d:c0:88:46:8c:
96:b3:a9:66:a7:90:ee:66:57:09:e8:7a:c5:c3:dd:d1:9b:a1:
f9:bb:b5:81:20:59:83:a0:78:ec:22:af:08:d0:ff:61:c4:ff:
62:d3:32:5e:06:f4:cf:01:f8:6f:b9:56:06:81:2b:c1:1a:51:
d3:c2:9e:e8:62:85:21:3c:e6:a5:6b:22:18:29:7d:48:d9:1d:
60:68:eb:c0:94:43:45:bc:71:85:05:02:d4:63:03:44:2c:24:
45:32:2c:52:7c:ab:86:ee:70:77:42:7a:42:9a:c3:a3:81:a6:
73:96:03:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:24:37 2026 by rpki-client