Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
File: EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft (raw, json)
Hash identifier: uKJO2Bf+U9KFrhVY2MEIq9Od7E8wCdkb9RcaMkD9dSw=
Subject key identifier: E8:12:5E:A1:E5:0B:22:E3:68:C4:2E:12:8A:7D:1E:09:3F:ED:01:F1
Authority key identifier: 11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
Certificate issuer: /CN=1170356135adf47ed9708cb0a13680894c2339ea
Certificate serial: 019D2A04F422BD7A018D84555840E8082DA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
Manifest number: 181A
Signing time: Thu 26 Mar 2026 12:01:00 +0000
Manifest this update: Thu 26 Mar 2026 12:01:00 +0000
Manifest next update: Fri 27 Mar 2026 12:01:00 +0000
Files and hashes: 1: E1_qOVvH8nrOWTOLw8OYuG7I7l4.roa (hash: pIFcjaUirrK025T2zVEMwQTVwHipFJl67DIxSrVxIxo=)
2: EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl (hash: 9hsfmgNdLr6uVej24Xdail7Dg0ZI8yXELI3QpBK8+y8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:f4:22:bd:7a:01:8d:84:55:58:40:e8:08:2d:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1170356135adf47ed9708cb0a13680894c2339ea
Validity
Not Before: Mar 26 12:01:00 2026 GMT
Not After : Mar 27 12:01:00 2026 GMT
Subject: CN=e8125ea1e50b22e368c42e128a7d1e093fed01f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:29:c1:a6:ea:86:ab:34:76:2d:74:43:12:01:
0a:0d:25:49:0e:2a:39:21:53:47:a0:28:fd:bd:96:
e4:a8:2a:3a:23:20:45:49:3b:e6:d2:a3:7c:55:8c:
96:75:bd:c7:d7:37:86:bc:e8:18:8e:9e:18:e5:31:
0b:a2:8d:ad:6c:c2:36:47:6e:f9:f0:54:79:59:fa:
c2:b5:cc:b3:09:6e:e6:ba:6f:0f:ed:92:eb:2c:63:
17:3e:e7:7a:28:2f:7d:ff:01:9e:19:32:90:67:60:
60:ba:f7:f7:0c:96:69:a4:b0:75:db:e0:5e:7e:ba:
55:5d:d4:0a:db:46:73:43:9e:29:a7:dd:de:3c:39:
a1:7a:c0:c5:8f:e8:5c:84:b3:95:66:52:4d:68:7e:
13:ec:3b:ca:e2:1a:98:43:c0:1a:90:fb:87:df:ea:
ff:b6:f9:00:d2:ca:f0:fc:cb:13:03:bf:1f:cc:63:
ef:01:8a:ad:cd:93:30:e5:22:c0:6d:23:9c:60:b7:
cb:64:2c:91:21:5a:f0:f3:e5:fe:fd:3b:01:99:df:
e8:44:28:3c:06:c3:07:b3:7e:e5:d1:55:2e:f8:0c:
ec:11:75:03:07:f5:45:21:c3:15:5c:1b:91:0d:80:
41:72:fc:a3:bd:24:87:6a:b0:f5:05:20:b5:f4:32:
81:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:12:5E:A1:E5:0B:22:E3:68:C4:2E:12:8A:7D:1E:09:3F:ED:01:F1
X509v3 Authority Key Identifier:
keyid:11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
df:75:90:39:65:8b:f6:6a:b4:20:45:b6:90:26:95:4e:3b:45:
36:7d:71:a8:1d:af:14:1f:b0:ad:4f:5b:32:84:9d:9b:e5:0a:
70:cc:a8:c1:21:9f:05:83:c4:66:6f:f4:13:4d:2f:a9:1a:49:
9e:60:a2:b0:f6:fd:4e:22:9b:67:80:f8:9c:45:1b:cc:3a:08:
90:f9:1a:fe:56:6e:00:80:a3:7e:f4:78:e1:bd:0d:b0:58:ed:
8d:6b:61:a3:38:01:95:01:33:43:bb:97:26:a2:cc:7c:48:6b:
b7:99:b4:29:df:b2:e1:31:fa:8f:39:32:4e:5d:a8:3d:cc:4f:
45:f1:17:28:d7:8d:92:bc:cb:0d:3b:5c:5a:35:97:d9:aa:da:
0e:02:0d:99:a6:f6:05:d4:58:37:c5:a8:64:47:a6:69:48:dc:
08:7d:91:81:6f:d3:af:a6:f6:38:14:65:50:8a:5c:a1:50:f8:
2f:7b:85:6e:75:1d:4c:8f:ab:54:0f:78:cf:8f:71:87:ba:02:
74:81:43:15:b0:52:c0:bc:7c:29:75:02:0d:ae:66:56:9e:28:
46:dc:25:e3:39:75:36:d9:70:d5:1c:dd:93:77:10:9f:bf:02:
fe:b3:f8:43:77:1d:f6:f3:79:66:5a:d6:dd:fc:4b:74:85:27:
1d:0f:ac:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:04:18 2026 by rpki-client