Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: 7qIzvIGFEF329Fh+41orlOreP7F3lDJlSuCfyNTBnhc=
Subject key identifier: CA:59:4D:72:01:69:7E:CA:A8:3B:0A:0D:C9:B5:63:36:AA:A0:94:8C
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 0198D515A13079935CED6610B256CF72BEDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 1645
Signing time: Sat 23 Aug 2025 04:00:21 +0000
Manifest this update: Sat 23 Aug 2025 04:00:21 +0000
Manifest next update: Sun 24 Aug 2025 04:00:21 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: IMqkhkHy4TcieUuQhf/xRbP2tG4xu7VyOekXLvyuD8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:a1:30:79:93:5c:ed:66:10:b2:56:cf:72:be:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: Aug 23 04:00:21 2025 GMT
Not After : Aug 24 04:00:21 2025 GMT
Subject: CN=ca594d7201697ecaa83b0a0dc9b56336aaa0948c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c7:25:7e:34:4d:74:39:a0:2f:14:7c:14:ec:
f0:8a:a2:58:61:e6:5f:10:86:32:c9:5e:4e:41:73:
af:33:82:a6:2b:94:ef:c3:e5:33:57:4d:3d:94:89:
19:6d:d0:65:0d:a8:6f:6a:33:bd:93:61:c5:41:3b:
8e:49:7c:b3:03:07:a8:6d:fc:c0:69:94:7c:1e:8b:
99:7b:8a:ec:e3:52:54:48:4d:7c:2c:02:09:56:00:
0f:c5:c5:60:7a:e2:52:da:7a:1b:b2:74:70:90:2c:
a3:ca:40:86:66:89:cb:8e:4f:c6:38:f8:b0:d4:97:
3c:6c:db:bc:16:12:97:68:ef:19:e9:3c:f8:d4:a1:
03:3c:a0:a6:cb:e6:24:20:6c:70:9a:7a:ac:85:c3:
1e:bf:55:5b:2c:f1:1d:5b:eb:9d:ed:bd:95:fb:da:
e5:11:a6:c2:64:62:25:a0:b5:c5:ff:6a:07:7f:dd:
6f:b8:dd:62:9b:eb:d9:58:35:18:ef:b7:15:ea:c5:
02:9f:a6:f4:f8:01:56:79:95:b7:b5:c3:d5:be:17:
b9:64:ca:36:f4:87:a0:6e:a7:f3:9a:45:2e:33:06:
ad:96:8e:da:a4:ed:a1:07:a1:0f:cb:cf:ea:72:25:
8e:98:58:f0:cf:e0:7d:33:43:81:b3:ec:9d:29:78:
ec:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:59:4D:72:01:69:7E:CA:A8:3B:0A:0D:C9:B5:63:36:AA:A0:94:8C
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:ac:bf:db:44:bd:fe:36:7d:a7:3c:80:dd:f7:22:91:4c:3e:
f8:c2:a1:a3:df:6f:ee:85:1b:e5:4d:0e:94:ad:f1:35:79:17:
54:18:3e:f6:23:e2:c9:71:f8:ae:4e:7f:16:2b:24:fa:54:d8:
87:64:fc:13:8d:db:84:d5:19:81:43:0d:ac:ae:ae:1c:e8:82:
aa:58:bf:9b:84:f6:cb:22:49:76:4f:a1:19:72:76:c0:8d:a2:
49:8d:18:91:9e:7a:dc:2f:a4:78:62:d8:70:09:25:69:8b:07:
18:9f:47:d6:f7:ef:73:cd:4e:94:62:4b:a0:a7:4f:e8:2b:9b:
bd:a2:2f:c6:b1:ee:95:c2:01:3e:9a:e4:35:0b:01:a5:d7:cd:
15:4d:34:27:15:b6:43:ad:f2:10:53:27:64:7e:3b:c8:8c:64:
02:47:02:c8:c1:81:14:d5:90:8c:ca:08:2f:98:df:8e:3e:df:
8a:3e:8c:ba:8a:1e:79:99:46:4a:8c:79:e7:39:6e:9c:92:9f:
01:bf:77:61:1c:f4:f2:95:72:db:7c:26:55:af:ec:9e:87:d4:
76:bf:48:eb:79:1e:59:80:d3:e9:39:a8:50:90:7b:a3:9f:ba:
2e:73:37:fb:03:44:1b:9f:79:d6:ad:f4:8d:65:f5:2f:8d:97:
2f:fa:41:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFaEweZNc7WYQslbPcr7fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiNDYwZDIwMTc5NWE2YTk5MmVkNGFjMThiYjdjNTJjMTA4
Yjc4NTIwHhcNMjUwODIzMDQwMDIxWhcNMjUwODI0MDQwMDIxWjAzMTEwLwYDVQQD
EyhjYTU5NGQ3MjAxNjk3ZWNhYTgzYjBhMGRjOWI1NjMzNmFhYTA5NDhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0sclfjRNdDmgLxR8FOzwiqJYYeZf
EIYyyV5OQXOvM4KmK5Tvw+UzV009lIkZbdBlDahvajO9k2HFQTuOSXyzAweobfzA
aZR8HouZe4rs41JUSE18LAIJVgAPxcVgeuJS2nobsnRwkCyjykCGZonLjk/GOPiw
1Jc8bNu8FhKXaO8Z6Tz41KEDPKCmy+YkIGxwmnqshcMev1VbLPEdW+ud7b2V+9rl
EabCZGIloLXF/2oHf91vuN1im+vZWDUY77cV6sUCn6b0+AFWeZW3tcPVvhe5ZMo2
9IegbqfzmkUuMwatlo7apO2hB6EPy8/qciWOmFjwz+B9M0OBs+ydKXjsWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpZTXIBaX7KqDsKDcm1YzaqoJSMMB8GA1UdIwQY
MBaAFNtGDSAXlaapku1KwYu3xSwQi3hSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2Ut
ZTgyZWQzZDc2YTg3LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8xZjM0NmEtYTg3ZC00OTU3LWE0Y2UtZTgyZWQzZDc2YTg3
LzEvMjBZTklCZVZwcW1TN1VyQmk3ZkZMQkNMZUZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcqy/20S9
/jZ9pzyA3fcikUw++MKho99v7oUb5U0OlK3xNXkXVBg+9iPiyXH4rk5/Fisk+lTY
h2T8E43bhNUZgUMNrK6uHOiCqli/m4T2yyJJdk+hGXJ2wI2iSY0YkZ563C+keGLY
cAklaYsHGJ9H1vfvc81OlGJLoKdP6CubvaIvxrHulcIBPprkNQsBpdfNFU00JxW2
Q63yEFMnZH47yIxkAkcCyMGBFNWQjMoIL5jfjj7fij6MuooeeZlGSox55zlunJKf
Ab93YRz08pVy23wmVa/snofUdr9I63keWYDT6TmoUJB7o5+6LnM3+wNEG5951q30
jWX1L42XL/pB5g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:41 2025 by rpki-client