Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json)
Hash identifier: I86Nivq1S21cjyQAjH8bdsqR7dFfv+OaiXaODpJUz9c=
Subject key identifier: A0:4C:20:5B:F2:8E:12:66:86:2F:BC:D6:98:50:74:B0:62:48:58:C3
Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb
Certificate serial: 0199FB0F049DEE8B2B7D61A85C2A563BADED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
Manifest number: 15B3
Signing time: Sun 19 Oct 2025 06:01:29 +0000
Manifest this update: Sun 19 Oct 2025 06:01:29 +0000
Manifest next update: Mon 20 Oct 2025 06:01:29 +0000
Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: AZ4LLU3chFcpqP5eEtPf0MkMFabFAZTIxs15axdB8WY=)
2: kJ6ZzA1fcsMngPwnFcWmPQ2TpJY.roa (hash: spn1/mEz9B8AiCWdxXSLx/VFzig4ReQEdpbCrXX5I3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:04:9d:ee:8b:2b:7d:61:a8:5c:2a:56:3b:ad:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1171641f157cb57b532626359e71582742c2dccb
Validity
Not Before: Oct 19 06:01:29 2025 GMT
Not After : Oct 20 06:01:29 2025 GMT
Subject: CN=a04c205bf28e1266862fbcd6985074b0624858c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0b:34:c0:25:92:02:b3:ba:ff:49:e3:be:a1:
c0:77:c8:a3:2f:57:26:c3:d3:8d:d5:8e:e6:07:45:
f7:25:25:d3:40:f6:7d:2f:48:25:3a:ad:8a:ba:66:
3b:73:db:3f:db:fb:b9:2c:1e:93:53:56:66:2f:b4:
fa:d5:44:3a:9c:72:b7:ab:96:ca:c6:ef:98:aa:1b:
f6:6e:1e:ac:68:f4:cc:22:4b:1f:5b:dc:6b:6c:95:
2c:5b:54:5a:4e:51:c9:3e:d3:04:93:05:00:1a:ce:
09:32:50:ea:fe:3b:50:b9:40:49:c3:ba:6e:9c:83:
0f:35:15:f4:89:49:49:bb:42:6d:c8:e9:dd:56:18:
11:ec:90:58:2f:09:83:a7:6f:cd:7f:a6:66:78:69:
1a:72:2c:74:48:38:58:bc:d9:68:07:e8:86:82:6c:
47:b3:0f:4c:68:c1:70:30:57:e5:e1:d0:d0:01:04:
72:75:aa:27:a6:ec:62:2b:45:04:37:33:ad:68:06:
ea:50:0d:06:f0:e4:4f:68:fd:e6:03:aa:49:c2:b6:
fb:50:72:33:e3:8f:29:b6:68:5d:cd:77:60:90:94:
50:45:9f:aa:bb:85:af:e5:d7:ec:19:d1:78:54:9d:
c3:51:86:c4:84:03:90:3b:ad:0d:ed:02:0d:53:aa:
40:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:4C:20:5B:F2:8E:12:66:86:2F:BC:D6:98:50:74:B0:62:48:58:C3
X509v3 Authority Key Identifier:
keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ed:37:40:68:4f:c9:d1:55:1c:1f:b0:f9:57:53:37:9d:3c:
a2:93:e8:81:4f:69:90:6e:41:1f:45:91:85:d8:6e:a7:0f:35:
e5:7c:55:8f:8a:f0:54:42:3e:29:f9:f8:5e:ca:e4:30:1c:66:
26:1e:3a:03:82:f8:b7:5b:ae:61:79:de:a9:80:35:7d:eb:af:
9f:65:28:17:17:b8:bd:f4:0b:fc:74:3e:a3:99:d7:51:15:57:
83:46:ee:df:82:8f:1b:ca:c4:49:9a:1e:34:bd:5c:33:2c:ad:
d0:df:8c:b2:bb:c9:34:03:20:8c:6f:d2:4a:6e:12:e9:aa:6b:
5c:df:1c:86:ab:45:c5:85:94:3a:8a:b5:a5:25:e3:f6:a7:f8:
ed:6e:f9:a2:ca:51:82:70:62:c8:d7:23:39:fd:c6:e4:54:d9:
6c:f4:86:d7:4d:64:fd:95:46:af:f6:f3:5c:b3:df:2d:c6:a0:
e6:67:4f:80:ae:73:c5:1a:4a:5d:bd:4d:a1:56:81:65:d7:17:
e1:89:33:9b:d2:77:42:cf:9a:ec:f6:ff:6b:73:2e:6d:f5:79:
94:54:04:1c:9b:09:23:76:d1:25:ba:ab:56:43:71:9f:63:d3:
4d:96:02:ad:43:1c:aa:86:c9:e1:15:06:3d:e2:12:b3:53:8e:
f8:b8:ad:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:30:53 2025 by rpki-client