Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json)
Hash identifier: 1WsHYWU4SjQbGofNAfd2GWxhqKQ6Id9x6EJP97SFXEU=
Subject key identifier: 2A:FA:9F:3E:EC:B7:5E:BE:4B:34:38:5B:C3:0B:C2:CA:53:58:F7:0B
Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb
Certificate serial: 019D27728EB822C38DA8EF5B34E597D36D52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
Manifest number: 1758
Signing time: Thu 26 Mar 2026 00:01:52 +0000
Manifest this update: Thu 26 Mar 2026 00:01:52 +0000
Manifest next update: Fri 27 Mar 2026 00:01:52 +0000
Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: Kn48IKtn86HTU/NkFpyoWB6hF7datEnx1KDRI0g6nQ4=)
2: g3yb9GvnR-4yvkFxTiRQRjASrNM.roa (hash: IRUvAUHV7ruHaa7xmQq2ksFvesViZHulW4HJ9YDCukA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:8e:b8:22:c3:8d:a8:ef:5b:34:e5:97:d3:6d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1171641f157cb57b532626359e71582742c2dccb
Validity
Not Before: Mar 26 00:01:52 2026 GMT
Not After : Mar 27 00:01:52 2026 GMT
Subject: CN=2afa9f3eecb75ebe4b34385bc30bc2ca5358f70b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:71:f5:7b:2f:a5:f1:c7:c4:bf:b7:7a:e1:98:
cd:a0:66:7c:8e:e9:64:91:c9:84:ed:34:c7:cc:a3:
a5:a2:3b:bd:0d:42:8d:e7:2b:05:62:6c:0e:3e:f0:
3b:4e:94:1c:82:71:fe:0e:42:54:88:95:c0:b6:c0:
1d:39:c2:e3:51:4d:d1:3d:a5:50:52:5b:72:41:7a:
64:ec:17:5f:19:ad:64:ad:32:99:0c:2f:b6:3b:97:
63:33:55:c0:69:e0:33:e7:e5:05:53:5c:51:79:24:
9f:08:54:be:0d:e1:b6:9f:4e:d0:c6:46:a3:0b:f7:
a1:cf:51:c6:ac:d1:c2:37:05:27:02:30:22:ae:a9:
67:af:9f:61:b3:8c:3a:70:99:bb:bd:3e:25:9d:02:
f7:27:c3:14:37:75:c3:2d:8d:06:c2:1b:d6:bc:52:
94:ae:62:b4:ba:e0:a6:a4:ba:b0:6a:7b:11:34:12:
a4:51:96:64:52:5f:51:87:79:9d:08:07:ba:78:0f:
47:a0:3d:28:7a:12:0a:6e:e3:fe:44:19:92:17:2e:
8b:21:a8:87:d2:1d:2e:4a:9e:6f:ab:ab:40:f0:5d:
19:2b:7f:46:b7:48:c9:7d:d3:85:5a:a1:23:cb:4d:
ce:20:ae:a1:0b:f3:66:6f:7b:45:8b:ef:48:ae:ba:
35:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FA:9F:3E:EC:B7:5E:BE:4B:34:38:5B:C3:0B:C2:CA:53:58:F7:0B
X509v3 Authority Key Identifier:
keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:19:a4:21:aa:28:08:78:23:bf:80:8f:2f:0f:0b:29:be:d3:
8a:b7:54:f1:69:92:58:60:5d:b2:de:74:b9:97:d3:4b:54:db:
d6:13:b8:64:56:f7:53:41:d2:e0:00:6e:04:56:db:cc:8d:b9:
72:97:1b:c6:29:c4:6d:65:f7:98:5e:54:6b:6c:86:d1:5c:73:
10:47:90:1b:eb:ef:b2:45:bd:a1:cd:3b:24:fd:8a:10:29:0d:
54:18:1b:b0:2e:bc:fc:6b:13:a3:39:4e:f4:4d:bb:d4:bd:24:
a7:53:e1:3e:09:8b:d5:ce:ff:dd:eb:c0:80:45:bc:e6:8c:59:
4e:e1:31:f3:53:05:25:62:f1:0e:d2:7d:e6:34:ef:4d:13:1d:
61:3d:2d:2e:43:35:61:b3:05:2f:89:73:8d:fe:29:b6:5f:b1:
38:7c:03:23:a5:65:69:43:e4:80:6e:c7:e2:63:ec:51:91:6f:
5d:dd:93:19:bc:6c:24:34:19:c2:54:e3:8b:68:03:a4:b5:89:
1b:da:76:44:a6:10:6d:9e:cb:87:16:d2:b1:e6:78:02:06:bb:
35:fc:ea:80:60:f7:7e:7f:b7:c9:2c:37:31:e6:4c:d6:b2:1b:
d4:75:4d:d5:b5:3f:b2:11:3f:dc:9b:c3:c3:bd:cb:12:0f:67:
af:a4:03:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:01:15 2026 by rpki-client