Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: bLAWPsvYp30XaWQ9uGNY6xanJozSdfNMsLshgI7bAck=
Subject key identifier: 88:73:67:68:A0:0E:03:8C:44:5D:26:FF:44:A1:8D:18:D0:09:CA:AB
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 019D277260D55075607CD8327B26514C0435
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 0B83
Signing time: Thu 26 Mar 2026 00:01:40 +0000
Manifest this update: Thu 26 Mar 2026 00:01:40 +0000
Manifest next update: Fri 27 Mar 2026 00:01:40 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: MrJKtTPlxXoO7oMOKrzHUOQqAPtfzj+X7LnR/D+hmSY=)
2: K_G3q1oHoFkLaOnMyEVLIcn7Qmw.roa (hash: /NaxyStNTlcpIpTarZjjR+9kQ6m4FlTTRFr5N6+rcrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:60:d5:50:75:60:7c:d8:32:7b:26:51:4c:04:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: Mar 26 00:01:40 2026 GMT
Not After : Mar 27 00:01:40 2026 GMT
Subject: CN=88736768a00e038c445d26ff44a18d18d009caab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:a7:6d:9e:10:2d:8b:19:98:07:c0:a1:48:
63:b0:90:2f:c2:fb:53:27:2a:88:d3:d2:5c:fd:ad:
a2:cf:38:dc:19:7e:35:78:b8:c5:c5:04:76:41:ff:
a5:28:cf:cf:05:da:10:1a:3e:b3:21:ad:36:9a:34:
8e:7b:c7:e9:d0:e3:b9:ae:93:40:74:20:ea:d5:56:
79:f9:9d:89:20:a3:fd:96:c6:08:3a:e6:be:10:df:
20:cc:67:92:56:9b:89:76:71:66:2b:fd:ec:db:c0:
d4:66:f4:e0:fe:21:4e:4e:d1:ad:af:65:d0:21:07:
e2:33:85:af:a0:69:cb:32:4a:a2:8b:55:07:c1:a0:
48:82:fe:9a:5e:3d:7d:71:a9:e5:11:be:da:f6:40:
14:65:62:26:34:59:3b:68:3f:06:0e:26:73:f8:07:
c4:56:f8:fb:8e:79:45:84:44:e4:43:e4:1f:31:64:
f1:94:36:11:a8:c3:50:ef:2e:14:6f:1e:cb:07:6f:
be:3c:69:b8:4e:db:cf:56:74:a6:09:a7:af:55:7c:
dd:b2:e3:81:53:bb:48:a9:33:e5:1b:e3:d2:1d:f4:
fe:9b:68:94:f1:22:ec:ff:cc:f2:8c:a6:07:7d:78:
d5:47:4b:28:a0:98:3d:83:99:0e:b5:8e:08:55:1c:
dc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:73:67:68:A0:0E:03:8C:44:5D:26:FF:44:A1:8D:18:D0:09:CA:AB
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:94:d4:4b:d0:82:38:a8:71:39:0a:30:2f:47:56:6e:e4:58:
9a:91:77:6c:97:0b:88:21:b3:31:fb:d4:56:87:4d:ba:b6:01:
d5:ad:c2:29:b4:59:96:8c:23:20:b3:b6:40:7e:b6:45:ba:38:
7d:f6:3b:3d:f1:e5:5c:e5:b7:54:54:a3:9e:75:ed:2f:0e:e6:
9f:30:47:2f:b0:08:6c:ef:13:c5:1e:c4:2e:88:a9:f5:b0:8d:
82:15:0e:9e:89:46:47:ec:5e:94:46:9d:ca:26:f7:ad:60:38:
7e:10:6a:04:67:bf:57:e7:66:51:7a:3d:5a:9f:3f:06:99:ac:
d9:79:40:57:e8:77:70:72:0c:58:26:0b:f5:08:ed:7c:a5:b8:
b1:ec:df:e0:f5:d5:11:22:83:eb:8c:09:30:8f:42:5a:74:f5:
fc:0d:16:63:92:21:6a:52:f5:67:89:d5:3c:cd:81:b8:a7:8d:
25:3b:9d:7f:51:b5:ec:98:d1:48:2e:11:d8:3a:10:e8:13:68:
00:25:e1:f5:f9:64:c9:fb:5d:74:46:f1:6f:65:14:0d:33:a5:
07:cb:59:25:ad:43:6a:9b:b3:2c:43:6c:22:c7:ff:8a:0a:37:
b6:c1:db:3c:f6:80:89:e4:d1:96:b1:bd:a6:1b:64:64:77:2f:
7e:e4:95:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:24:29 2026 by rpki-client