Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: XrTv5d9kfqx+1Ubsa9ogzbkKzoyegbrMi9FkDF1eRqY=
Subject key identifier: 8C:A6:EB:70:AA:1C:B3:69:26:A1:8F:F4:BF:5C:D1:15:57:1C:C8:CD
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 019D27A8AF1F9201D74E00772DB506726032
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 1882
Signing time: Thu 26 Mar 2026 01:00:59 +0000
Manifest this update: Thu 26 Mar 2026 01:00:59 +0000
Manifest next update: Fri 27 Mar 2026 01:00:59 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: zCl9My8nciDmh6kGmxoYu5zp2cfEE4YvbGSJlJqW8ls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:af:1f:92:01:d7:4e:00:77:2d:b5:06:72:60:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: Mar 26 01:00:59 2026 GMT
Not After : Mar 27 01:00:59 2026 GMT
Subject: CN=8ca6eb70aa1cb36926a18ff4bf5cd115571cc8cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:51:60:c5:74:87:bc:38:e0:60:2e:42:e8:2b:
b2:07:8a:1b:ef:ba:b7:15:59:c1:1d:10:7e:2e:ef:
d7:a0:79:3f:c7:cb:1f:45:64:4c:e8:ec:fd:ac:03:
65:79:5b:04:84:f4:1f:c4:59:58:40:0e:9b:59:e7:
59:14:d4:b0:f4:7c:99:b4:1c:dd:1a:7f:6c:a3:80:
8b:2c:8f:66:55:4f:3e:93:ea:36:2b:5a:42:c3:93:
15:0a:83:47:d9:72:45:59:3d:fa:1b:23:35:63:b5:
6a:f1:24:60:2c:ef:4b:c3:ec:bc:8a:a7:6e:a7:ca:
8d:b5:24:de:4f:d9:26:74:9d:d3:8c:ab:cb:79:e4:
f8:14:51:ef:91:00:d2:8b:95:e7:3d:c9:2e:2a:96:
23:d2:be:73:e1:fc:a1:47:65:99:e8:4f:68:5d:45:
25:e9:d8:f2:be:e1:66:26:34:21:f8:bd:1b:c9:fd:
7a:43:05:15:f9:1b:83:88:00:3d:c0:c9:40:2f:49:
cc:a8:26:86:0d:a4:cc:44:71:7b:4b:f9:01:d7:d5:
be:71:74:a9:b7:e0:12:bc:8a:8c:eb:96:73:8e:54:
98:ab:c9:94:93:04:4c:85:40:32:c1:5c:93:d5:ed:
a0:42:e1:62:36:c8:d7:4f:de:35:a6:e0:68:d2:b5:
84:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A6:EB:70:AA:1C:B3:69:26:A1:8F:F4:BF:5C:D1:15:57:1C:C8:CD
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:4f:bd:df:4c:ee:e4:79:4e:0c:22:86:05:d7:d9:d5:81:6e:
f8:05:30:fd:3d:0d:d1:91:c0:19:85:82:fb:da:7c:ec:af:96:
b8:9a:b1:83:20:68:2c:bf:0c:dc:89:e7:88:90:83:cf:bf:e4:
88:a8:e7:e2:c9:2e:30:c8:1e:e0:b7:1d:fa:6d:bb:97:d6:4d:
f8:dd:e3:5a:51:77:b3:00:2d:ba:c1:2a:68:16:55:36:4b:68:
a7:cf:9e:dc:ae:20:f0:fd:2f:e4:72:0d:d6:38:51:c2:33:d8:
5b:03:7b:5b:51:ad:d5:4d:30:89:7e:28:55:62:bc:91:dc:0d:
fa:c5:d2:8a:e9:25:f4:96:7c:28:13:2c:9c:89:56:54:1b:ef:
41:ea:85:6e:c3:3c:0f:d3:85:98:0a:00:42:6c:69:e1:dc:cf:
5f:94:e7:e1:e7:33:1c:f8:e4:90:9f:bd:e4:f5:7f:fc:18:79:
83:bb:41:de:08:17:d8:e9:05:54:63:5b:6f:4e:be:1a:dd:22:
86:8a:da:a0:41:28:55:d1:b2:a3:1c:a9:ac:15:6c:0b:69:23:
3e:c2:7f:67:85:59:ea:e5:bd:eb:72:8d:4b:d2:11:17:58:dc:
bc:8f:fa:e5:1e:da:a2:f8:00:8b:48:47:d8:39:8c:13:ec:f7:
94:5b:22:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:00:11 2026 by rpki-client