Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: oTY/THfJM1DLKeuILkoxfJCjbL2H79vqWbvZxPBnnVg=
Subject key identifier: 11:6E:40:A1:D4:0B:86:77:8F:3B:7E:6B:D8:B5:79:B8:A6:2E:F6:DA
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 019E1CEBAB27113BFA4CCBCB4D5AAAC48975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 1901
Signing time: Tue 12 May 2026 16:01:07 +0000
Manifest this update: Tue 12 May 2026 16:01:07 +0000
Manifest next update: Wed 13 May 2026 16:01:07 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: T0Qhvcl6ALw+y5EwiiNl1I7PuqCD1VsQacqpvbiYXKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:ab:27:11:3b:fa:4c:cb:cb:4d:5a:aa:c4:89:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: May 12 16:01:07 2026 GMT
Not After : May 13 16:01:07 2026 GMT
Subject: CN=116e40a1d40b86778f3b7e6bd8b579b8a62ef6da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7e:78:45:99:b1:a2:4c:b7:88:f5:34:5c:b8:
bd:e6:23:62:de:96:f0:86:65:0e:f5:75:1e:44:96:
8b:d2:1c:08:ef:52:a5:da:87:40:87:5a:54:28:a6:
58:86:41:b7:aa:aa:0f:71:60:2d:3b:69:3b:0a:71:
82:b9:9a:ab:a9:94:bd:9b:75:b7:ae:cb:aa:15:b9:
ef:9e:b3:c7:74:1f:d2:6e:2e:15:71:8f:b1:13:4c:
46:b3:fe:0a:4b:d9:ee:3d:e3:03:dc:a6:16:fe:b9:
8d:81:26:e7:a0:1d:85:d8:c8:7d:f6:43:96:57:c1:
45:a2:9a:64:bd:d0:30:12:c8:99:0d:61:27:b1:e9:
86:f5:3e:cc:01:7b:8d:25:1c:61:44:23:9e:6c:ef:
71:b8:64:9f:5d:6d:3f:6c:02:51:72:49:fb:41:1e:
2c:6b:01:0e:b5:06:65:05:76:2e:84:eb:53:8b:ef:
03:3b:e0:1f:72:e6:b7:e9:8b:5b:f0:56:9b:0c:6d:
67:5b:83:46:89:b8:6e:c2:ab:ab:be:9a:8d:bf:36:
e4:19:33:fb:97:da:38:7c:38:d2:7a:77:11:a8:97:
48:3c:bd:eb:a7:c3:ab:5c:3b:99:48:07:d8:4c:63:
d4:ad:b6:ce:bd:99:77:58:3d:70:41:10:5f:6a:63:
7a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:6E:40:A1:D4:0B:86:77:8F:3B:7E:6B:D8:B5:79:B8:A6:2E:F6:DA
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:3e:11:f9:bb:f0:aa:6a:74:0c:76:6c:0a:bb:4b:de:ca:8b:
b9:0d:3c:28:b3:b2:eb:08:7d:59:93:b3:b2:99:32:79:7f:6e:
ad:be:f1:2d:8a:8a:8a:16:d5:9d:de:73:9f:46:80:56:7b:79:
49:34:35:12:f4:03:20:c1:63:20:79:d0:fd:0d:a7:db:10:70:
24:21:79:42:36:72:72:b0:ea:04:42:65:a1:fa:f6:6c:a8:3c:
7f:73:88:ce:e9:61:d7:a5:08:66:fd:40:bc:fb:52:2f:3b:40:
b1:5d:35:a0:ed:09:60:42:7c:53:e4:0b:0a:a4:05:60:2c:ea:
29:44:1e:f7:33:ec:04:af:d1:3d:8e:9b:14:59:f7:ea:84:35:
6c:b4:28:0e:4d:e5:cf:27:d1:1a:73:de:c6:0c:f8:de:7c:41:
83:f9:92:c5:80:c5:33:e3:01:71:eb:8a:c5:47:20:22:4b:66:
73:c5:71:e0:b3:fa:57:b4:26:1a:e7:77:2b:ad:21:db:59:f6:
35:16:5d:bd:9f:a4:87:fa:2e:d2:87:59:01:08:7d:c9:f5:4f:
84:2c:46:53:6e:3e:02:2a:e4:ce:04:e3:63:86:97:23:a4:23:
e0:64:d7:fa:bc:e7:4f:31:ea:c6:ac:87:de:b7:17:9a:d7:52:
f4:15:b1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:26:23 2026 by rpki-client