Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json)
Hash identifier: XfPkoRi3md7hOv7CaTbuPgPzlEa+ZJGD4gTqhT4TJ8o=
Subject key identifier: 23:ED:09:5F:7F:D3:A0:95:D4:B0:8D:55:2B:57:6D:3E:CF:2F:0E:91
Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb
Certificate serial: 019A51F5A06D1D5083AE2C40A991E610E2E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
Manifest number: 15E0
Signing time: Wed 05 Nov 2025 03:00:43 +0000
Manifest this update: Wed 05 Nov 2025 03:00:43 +0000
Manifest next update: Thu 06 Nov 2025 03:00:43 +0000
Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: dMSFxQNlyQIVyj+f2kwE625RRs9/0yAE2WCC0Afp+3Y=)
2: kJ6ZzA1fcsMngPwnFcWmPQ2TpJY.roa (hash: spn1/mEz9B8AiCWdxXSLx/VFzig4ReQEdpbCrXX5I3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:a0:6d:1d:50:83:ae:2c:40:a9:91:e6:10:e2:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1171641f157cb57b532626359e71582742c2dccb
Validity
Not Before: Nov 5 03:00:43 2025 GMT
Not After : Nov 6 03:00:43 2025 GMT
Subject: CN=23ed095f7fd3a095d4b08d552b576d3ecf2f0e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8c:e7:71:b7:1f:48:1d:95:3e:37:80:77:25:
74:70:0e:80:7c:12:cd:9a:93:ee:07:ab:e5:03:14:
41:2e:cd:1d:f6:56:44:13:d2:e8:34:54:77:31:e2:
89:f3:52:d0:f1:41:e0:49:19:7e:ab:f6:75:bf:e5:
1e:a8:27:cd:f4:7d:d1:83:d4:75:d8:39:c3:41:e2:
18:8a:5f:c6:c9:79:91:58:6b:65:8d:26:60:a5:27:
c2:a2:e8:dc:82:c0:3a:3e:85:97:62:e0:c6:a2:3b:
66:08:82:fd:04:f9:1d:e7:94:05:a3:8a:57:0a:fa:
2f:11:57:00:9e:e8:27:43:d8:40:bb:c9:72:f9:00:
bb:c9:08:2d:5a:a0:08:9b:79:63:c1:57:c2:f2:36:
12:1f:34:cb:f8:45:20:47:26:46:71:2d:9f:1d:a0:
ab:6d:e3:69:a5:2f:2a:33:19:54:f5:5a:1c:93:3e:
fb:43:1f:1c:97:18:80:e0:d7:02:05:04:69:a7:05:
b8:d9:2c:fe:5b:c6:74:8b:a0:29:b8:e4:77:4c:dc:
57:f3:f2:c0:2c:d4:3b:d5:57:c9:86:86:bb:6d:16:
85:26:ea:a5:13:9f:e4:f5:c6:cd:fb:46:3a:fe:af:
5d:46:9d:ca:62:f0:86:bb:43:e1:6f:83:b2:86:eb:
32:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:ED:09:5F:7F:D3:A0:95:D4:B0:8D:55:2B:57:6D:3E:CF:2F:0E:91
X509v3 Authority Key Identifier:
keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:77:25:82:fc:a3:79:8f:72:43:05:17:2a:83:ac:2d:93:d9:
47:87:0a:67:63:d0:43:93:f5:1f:03:71:0b:5f:4b:82:cc:2e:
4f:0f:0a:f0:5b:27:85:af:17:6f:f0:19:2f:e3:3f:07:eb:e8:
6c:ed:f3:05:e5:89:a0:a7:0f:35:14:9a:60:93:54:f0:3a:9f:
f8:6b:f4:6a:32:71:53:c1:86:b4:81:68:2a:f1:bc:01:94:aa:
6b:11:7f:fd:c2:99:d1:75:12:a6:97:e1:b6:f6:c0:48:a4:4c:
23:7b:60:31:2e:a6:63:2d:30:a5:06:2a:d9:c0:ca:91:b1:84:
c8:ab:fa:c1:c1:e2:49:1d:2d:d0:0b:22:96:98:49:66:25:6d:
14:e2:35:f3:bd:55:34:17:8c:3a:29:6d:d0:af:13:a5:5a:cf:
66:bd:e6:7d:43:ef:16:3d:f7:27:83:40:95:7c:58:7b:11:a0:
ce:8a:23:ca:8a:b1:b1:74:68:eb:36:c0:e7:75:1e:c9:6b:94:
9a:b4:7c:df:cc:37:74:06:1d:55:33:01:40:a7:20:54:76:6c:
11:9d:e5:49:3b:16:6b:be:4b:a4:bc:33:31:74:2f:32:01:3a:
55:3d:08:d5:e9:72:65:01:28:89:bf:c2:d4:82:1c:c6:b4:be:
37:f4:e4:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:59:00 2025 by rpki-client