Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json)
Hash identifier: utzkWR6mygC9yrAb2cd1E2yi9YPeVvKevhfX9ok8Q+w=
Subject key identifier: 1A:42:B5:74:27:5E:2C:0F:EB:40:84:24:13:C1:B1:18:88:19:CB:F1
Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb
Certificate serial: 019E1EA32FD6DC38E673F5A7C6A4B155D629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
Manifest number: 17D8
Signing time: Wed 13 May 2026 00:01:11 +0000
Manifest this update: Wed 13 May 2026 00:01:11 +0000
Manifest next update: Thu 14 May 2026 00:01:11 +0000
Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: lexarzWBVvloxp6IH6eBvaOymv8pM2v8NLHnQjHBaV4=)
2: g3yb9GvnR-4yvkFxTiRQRjASrNM.roa (hash: IRUvAUHV7ruHaa7xmQq2ksFvesViZHulW4HJ9YDCukA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:2f:d6:dc:38:e6:73:f5:a7:c6:a4:b1:55:d6:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1171641f157cb57b532626359e71582742c2dccb
Validity
Not Before: May 13 00:01:11 2026 GMT
Not After : May 14 00:01:11 2026 GMT
Subject: CN=1a42b574275e2c0feb40842413c1b1188819cbf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b5:67:17:4f:2a:ac:56:21:83:19:6a:1c:4b:
93:21:2f:24:b0:0a:40:46:03:fe:65:b7:14:14:0f:
71:a9:29:bb:ff:54:24:ec:df:d8:62:ad:f0:bf:ba:
f6:0b:da:ca:00:ba:e3:3d:77:54:38:8e:71:0e:0f:
ef:5d:1f:c1:9b:d0:48:60:3f:3b:7d:2d:e3:20:34:
8a:2b:e6:3a:e7:11:37:63:67:be:66:bc:54:a9:a2:
bf:54:12:61:5b:53:b0:a9:90:80:15:04:0f:4b:0c:
81:df:c6:d7:20:af:ad:1d:aa:2a:29:cd:9f:f3:f9:
c5:49:6d:e7:2e:64:b6:70:0b:03:23:ec:14:fb:07:
2c:89:1c:f0:e9:74:75:67:75:03:44:e0:3c:1b:24:
0d:a7:00:c2:45:81:e7:bd:81:7b:89:be:47:37:c4:
87:ad:94:d5:fc:6d:4c:65:0b:ff:68:5a:7f:b6:36:
00:4a:c8:b3:96:8b:40:ec:03:89:b4:33:da:b2:0b:
83:b1:e8:a9:f7:8e:03:ca:32:fb:95:28:26:f7:37:
24:e0:cd:4c:18:13:75:54:ed:83:e7:ba:54:44:0e:
28:d5:5b:ab:5d:1a:40:6a:c1:ca:a5:fc:1b:8c:66:
ec:09:c7:42:7c:02:66:0b:30:0c:88:cd:9d:16:f1:
fa:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:42:B5:74:27:5E:2C:0F:EB:40:84:24:13:C1:B1:18:88:19:CB:F1
X509v3 Authority Key Identifier:
keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:55:68:16:5b:6f:ce:d7:f7:46:63:af:18:32:43:fa:87:2f:
3b:05:ff:e1:5a:d3:7b:c6:e9:c2:f9:f6:5e:87:c1:0f:f7:9f:
8e:aa:62:a5:85:9d:c3:13:fe:7d:52:9a:18:51:87:a9:e4:7a:
5b:f3:1c:4d:04:c6:9a:cc:3c:5d:78:e3:67:eb:5f:49:e1:ef:
29:43:c0:bf:9e:64:fc:36:8a:7d:f4:a4:e3:12:7a:7f:b9:ce:
b9:5a:08:f9:96:e1:e2:eb:ed:3a:a4:81:c7:f8:9f:f8:c9:89:
88:93:b2:32:b6:d8:2b:4c:45:04:ad:84:8f:5e:32:bd:0d:5a:
35:1f:76:08:03:e5:8d:f1:6c:d6:bf:72:e3:5b:18:06:78:04:
3b:34:3d:1d:99:d9:ef:82:4f:20:b5:3f:3c:6a:10:fa:da:30:
5a:a3:4c:9b:78:4f:47:34:d8:bf:d7:79:a2:78:69:5e:9d:7d:
ac:a3:27:26:27:3f:61:24:e9:25:ff:7a:9c:8d:0c:50:1c:57:
59:d7:ef:77:c7:48:35:8f:7c:5a:18:cb:bb:35:29:46:51:e5:
86:dd:23:e0:72:e6:5b:e7:92:17:39:e2:30:45:22:de:2a:af:
37:b3:9c:89:13:79:11:5f:a3:10:af:e3:62:42:69:77:c2:7b:
71:ef:33:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:26:42 2026 by rpki-client