Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
File: 20YNIBeVpqmS7UrBi7fFLBCLeFI.mft (raw, json)
Hash identifier: qOn2zWIrirGXJv89bmeOwNEZmCLqxyU3cOYDt0N91gM=
Subject key identifier: 32:D4:F6:B4:C0:00:8F:A9:E6:C0:49:3E:43:78:BC:4E:D0:84:CB:47
Authority key identifier: DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
Certificate issuer: /CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Certificate serial: 019A006C02BBF570B3D46EEB2C9A3A27FF6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
Manifest number: 16E0
Signing time: Mon 20 Oct 2025 07:01:09 +0000
Manifest this update: Mon 20 Oct 2025 07:01:09 +0000
Manifest next update: Tue 21 Oct 2025 07:01:09 +0000
Files and hashes: 1: 20YNIBeVpqmS7UrBi7fFLBCLeFI.crl (hash: h4X87J/0jul//awH4lYS/rjvkpQaYj6iaHyT6SkNk/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:02:bb:f5:70:b3:d4:6e:eb:2c:9a:3a:27:ff:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db460d201795a6a992ed4ac18bb7c52c108b7852
Validity
Not Before: Oct 20 07:01:09 2025 GMT
Not After : Oct 21 07:01:09 2025 GMT
Subject: CN=32d4f6b4c0008fa9e6c0493e4378bc4ed084cb47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:72:29:55:37:c9:9b:aa:ce:28:37:c7:b3:9f:
f2:e3:9d:c5:4b:4d:85:fc:38:98:cf:b7:79:a7:7d:
0e:48:36:f3:a7:dd:6b:8d:a3:25:3d:4e:51:69:96:
68:a5:8c:75:89:32:e0:e0:a9:a7:14:d5:85:c3:a9:
99:e0:b4:1b:47:89:e6:63:87:2a:00:7a:72:fd:82:
c0:b9:0c:79:12:52:26:e3:58:47:f5:1f:e0:15:6c:
22:60:6a:f9:88:cc:b2:c8:79:c1:37:cc:6a:0d:6e:
4b:5c:64:be:83:4d:98:14:ea:52:47:95:16:2b:bc:
28:71:55:ce:41:af:9e:08:89:e4:29:60:a5:f7:d8:
2e:c3:23:e6:4c:28:21:ae:19:cd:da:06:fe:c3:d2:
20:99:11:aa:b2:d5:ce:ff:d2:b2:26:40:a1:42:7b:
63:63:ca:eb:a2:d1:b6:0d:fc:9e:ca:41:2f:07:7c:
cd:ed:d5:46:32:4a:9c:d6:e7:12:24:a0:15:da:97:
38:02:34:f5:7f:3c:5f:24:60:f0:66:de:f7:82:4d:
06:e1:4d:9b:15:aa:44:fa:c5:50:aa:ee:d7:53:ca:
ff:e7:a9:86:3f:21:e9:bf:0c:14:a8:f0:05:85:2f:
28:d1:ee:32:58:b9:b9:3d:ad:fb:52:c5:f3:3f:79:
94:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D4:F6:B4:C0:00:8F:A9:E6:C0:49:3E:43:78:BC:4E:D0:84:CB:47
X509v3 Authority Key Identifier:
keyid:DB:46:0D:20:17:95:A6:A9:92:ED:4A:C1:8B:B7:C5:2C:10:8B:78:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20YNIBeVpqmS7UrBi7fFLBCLeFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/1f346a-a87d-4957-a4ce-e82ed3d76a87/1/20YNIBeVpqmS7UrBi7fFLBCLeFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:d9:12:2b:01:a9:49:dd:97:5f:64:e5:40:cc:0c:ad:84:0a:
9c:35:da:4a:27:74:c7:ae:d2:db:8c:67:b7:23:3b:b9:14:b8:
9b:a3:a7:08:6e:01:d8:4f:1c:ed:7f:8e:5b:63:84:36:89:38:
70:ed:ad:ed:ae:4d:50:47:2e:9f:40:fa:ba:59:4d:57:60:4b:
7b:c7:9e:d8:31:1e:22:2b:b1:8f:2e:3e:f2:f7:e2:8c:43:50:
75:85:b8:e1:c5:01:c6:09:32:df:29:9d:2e:bc:60:93:af:9f:
39:bb:4b:cb:1d:20:b8:5f:ca:62:07:ea:81:d2:30:24:00:9b:
c9:de:0b:9b:6d:52:e4:64:54:43:2c:99:92:19:38:e0:12:75:
5e:ad:c9:40:34:11:57:d9:c7:5e:fd:d9:d5:ce:ec:4c:b0:2b:
b8:58:2e:49:f3:36:be:58:ee:b2:51:23:66:90:59:d8:2f:7d:
e8:02:d0:e4:65:2b:91:83:d9:ce:a0:9c:4b:1d:bf:23:da:fe:
99:05:ce:a6:9d:55:17:a6:7e:24:29:24:ef:32:64:2a:43:72:
23:e0:a9:02:aa:14:b1:9a:5c:d3:b7:73:d7:bc:55:83:7a:65:
ae:4c:0c:ed:1e:90:15:69:5e:9a:b5:53:1c:60:d3:28:47:40:
bf:3b:2b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:01:08 2025 by rpki-client