Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
File: EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft (raw, json)
Hash identifier: xek6xfeePmL/s0X+HahLo3FoYkpUpOhM6pFLLvnrZvw=
Subject key identifier: 0A:08:A6:6F:0A:B8:F4:69:85:79:A9:E1:83:ED:10:E2:B1:F5:77:48
Authority key identifier: 11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
Certificate issuer: /CN=1170356135adf47ed9708cb0a13680894c2339ea
Certificate serial: 019E1F47E084412660461BFFBB5B7E243E19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
Manifest number: 1899
Signing time: Wed 13 May 2026 03:01:04 +0000
Manifest this update: Wed 13 May 2026 03:01:04 +0000
Manifest next update: Thu 14 May 2026 03:01:04 +0000
Files and hashes: 1: E1_qOVvH8nrOWTOLw8OYuG7I7l4.roa (hash: pIFcjaUirrK025T2zVEMwQTVwHipFJl67DIxSrVxIxo=)
2: EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl (hash: phOD9OjqYreEk/f/MZoDs7mNxuv9N0WWOJtaM6NCZLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:e0:84:41:26:60:46:1b:ff:bb:5b:7e:24:3e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1170356135adf47ed9708cb0a13680894c2339ea
Validity
Not Before: May 13 03:01:04 2026 GMT
Not After : May 14 03:01:04 2026 GMT
Subject: CN=0a08a66f0ab8f4698579a9e183ed10e2b1f57748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a3:4e:c8:0f:00:72:7e:3e:b6:ee:84:2e:da:
cb:47:88:dd:04:1f:09:cb:78:91:7a:72:e9:15:97:
81:b5:47:da:5f:12:b8:b0:f0:6e:b0:49:ce:ec:09:
9e:40:e5:1b:0a:97:13:0b:69:a2:93:f0:ef:62:12:
a3:c1:66:47:d4:0b:af:02:50:91:cb:79:21:ec:e3:
8c:80:b4:02:b7:74:52:b2:8c:c6:0c:7f:52:4e:6e:
51:69:ef:de:e6:35:71:5f:7f:c5:92:b0:50:44:da:
ae:c2:85:21:5a:e1:11:c5:7e:92:7d:1f:7b:d5:c4:
ea:60:d0:d5:ef:33:46:ff:0d:bb:70:92:10:0b:bc:
b1:4f:f8:4f:b7:0f:b3:b9:68:c1:a2:18:61:0e:d3:
f9:b3:fa:ff:ef:73:a1:17:15:1a:2b:5e:e8:86:a0:
ca:21:cf:b9:bb:67:42:18:68:b4:4e:1e:1c:f1:6d:
87:81:e0:cd:8a:15:de:ca:48:c7:64:85:85:80:53:
3d:db:d3:0d:30:37:eb:81:56:3b:26:40:c5:81:81:
84:f6:46:2c:0c:06:59:4f:dd:c7:1b:fb:a2:41:d5:
7c:ac:09:b9:d6:72:eb:37:ae:25:47:96:ab:bd:60:
75:c8:dc:57:e8:a2:ad:75:3a:d6:0e:99:11:8d:b5:
a7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:08:A6:6F:0A:B8:F4:69:85:79:A9:E1:83:ED:10:E2:B1:F5:77:48
X509v3 Authority Key Identifier:
keyid:11:70:35:61:35:AD:F4:7E:D9:70:8C:B0:A1:36:80:89:4C:23:39:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXA1YTWt9H7ZcIywoTaAiUwjOeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c8b40c-2c0b-47ff-b921-e631463b123b/1/EXA1YTWt9H7ZcIywoTaAiUwjOeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:8e:1b:aa:66:a9:b1:30:eb:58:d9:0b:85:52:20:9a:0a:c1:
cf:f0:4d:fb:f9:6d:21:cc:b5:0b:62:74:48:de:6c:19:8d:d7:
d1:19:5d:0a:cb:30:fc:6d:f0:f8:ba:52:b2:00:1e:04:ff:2e:
d7:63:7e:1c:a7:64:d9:53:e1:c6:d1:16:cd:dc:13:ff:50:60:
06:be:de:0e:d5:01:ff:cd:2f:86:b6:a5:c1:d8:c7:b7:32:be:
27:bb:92:01:56:e8:71:4e:bc:c1:86:ea:8d:4b:74:92:56:66:
20:29:13:c1:f2:b4:f7:03:f0:42:c9:49:97:78:70:05:16:35:
0d:1e:29:57:3a:98:4b:9d:3e:00:02:ad:bc:74:b3:05:62:6d:
63:b8:e9:e8:1b:b2:37:7f:dc:35:a3:76:86:55:b8:f6:5d:9e:
5c:ee:49:38:79:0f:78:70:8b:45:36:e4:67:3f:f9:3b:be:e3:
af:bb:26:4a:66:50:c7:87:c1:99:ff:17:ef:d2:0c:8f:30:dc:
d3:52:c5:5b:b8:68:69:91:55:f0:8f:80:10:06:7f:89:14:65:
09:84:8b:7a:be:18:71:b1:4a:83:21:2a:91:af:0e:f3:53:3a:
e8:27:ba:9b:5e:8a:23:0d:7f:59:15:c2:af:64:50:76:34:63:
71:8d:06:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:07:28 2026 by rpki-client