Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: e6w+EFUTSKKDFt5hSebBtAL+lUkRcWuB2QHVf2trFj8=
Subject key identifier: 93:FA:F1:9C:3F:92:37:6E:1F:CF:3B:B7:1A:15:F8:E3:D1:38:05:EE
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 019E1EA3269560C6DBD66F0926AA2AE94471
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 0C03
Signing time: Wed 13 May 2026 00:01:09 +0000
Manifest this update: Wed 13 May 2026 00:01:09 +0000
Manifest next update: Thu 14 May 2026 00:01:09 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: l1FgV1fv6Z5jnpVGVXS/hoMPn+HcKgvjzfX4pmgSJGw=)
2: K_G3q1oHoFkLaOnMyEVLIcn7Qmw.roa (hash: /NaxyStNTlcpIpTarZjjR+9kQ6m4FlTTRFr5N6+rcrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:26:95:60:c6:db:d6:6f:09:26:aa:2a:e9:44:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: May 13 00:01:09 2026 GMT
Not After : May 14 00:01:09 2026 GMT
Subject: CN=93faf19c3f92376e1fcf3bb71a15f8e3d13805ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a8:ea:fa:7e:9a:e2:bc:ef:b3:66:b8:4b:bf:
8e:25:03:09:df:d4:7e:f3:09:39:32:45:2b:65:00:
49:ef:46:7e:d8:08:cb:aa:ba:3e:c6:39:56:e5:3f:
fc:e5:b2:38:b4:46:79:72:86:4b:c8:d3:80:29:99:
be:6c:fa:85:5d:c2:56:17:a4:0a:30:c2:7e:f3:4d:
f7:07:87:22:91:93:b4:41:30:64:3e:39:29:b5:3e:
97:3d:2f:ec:5c:ce:44:c9:e6:67:15:1b:a1:ca:62:
0d:30:e6:56:4d:a8:39:23:60:bb:3a:bb:7b:41:24:
5b:95:3c:e9:fe:fb:9f:c3:28:4d:a5:cf:d8:3b:1e:
f4:08:f5:8b:0e:6a:ca:b3:54:af:cb:01:f6:e3:27:
41:d1:70:93:18:d5:2d:a9:40:08:82:d3:ae:51:da:
82:91:11:1c:fe:cd:a5:81:5c:f3:12:68:70:c9:07:
09:0b:f0:7c:a6:20:e4:37:29:59:a1:e5:28:e8:86:
14:5a:61:44:f9:8c:ff:93:de:68:13:4b:15:0e:23:
42:c4:ac:37:cc:19:17:86:64:4e:7f:50:41:b9:ec:
47:18:b7:3b:a1:45:c3:75:a5:b4:b1:fd:c4:99:1a:
65:2c:a8:a6:18:a0:69:3e:b0:c5:1f:35:c6:bf:33:
8b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FA:F1:9C:3F:92:37:6E:1F:CF:3B:B7:1A:15:F8:E3:D1:38:05:EE
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:4f:5e:07:2d:66:84:ca:ea:49:64:1b:58:75:24:fd:72:2e:
ce:6b:84:4b:6b:0a:20:07:d7:51:b1:ca:a8:18:75:bb:93:68:
66:9e:9b:03:90:b5:20:77:fd:0a:fa:5e:b9:51:19:8c:5b:d5:
07:cb:05:3e:13:9e:04:0b:5b:2d:de:cc:4c:75:7e:18:10:72:
cb:81:56:c5:73:a0:96:52:31:04:5e:d5:96:59:d4:f9:9d:6a:
f6:a2:d2:b2:00:4a:67:e3:64:00:e4:c2:f0:15:e5:61:c8:a8:
ad:70:46:65:51:f0:9f:44:1e:86:a8:79:9c:fe:94:6b:5b:dc:
69:59:8d:92:84:90:2b:eb:c6:4d:92:6b:f3:c8:60:0d:1d:48:
af:de:71:6f:91:4d:47:4a:4b:70:d7:e8:44:8b:ec:d6:a4:2e:
a3:ff:4c:80:3c:29:01:85:42:19:27:ea:c4:a0:e1:ef:9d:98:
e3:4d:29:0a:18:20:63:7b:18:fe:d9:26:cd:15:6d:05:3f:1a:
f9:84:a8:e9:47:1b:77:0a:ad:ec:96:71:60:7e:ca:ac:94:a1:
fa:e1:a4:ac:61:f6:4b:f9:0c:01:c0:00:bf:f8:3e:78:cb:e4:
f2:90:c0:34:32:ba:35:0c:18:1b:09:9b:23:f5:3c:47:4c:f8:
7d:e3:ca:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:17:35 2026 by rpki-client