Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json)
Hash identifier: JSQs0hWsm/6CH4tHdgYa+e+AN7IgRuKwDSjNaN9OKoE=
Subject key identifier: 70:23:25:64:6A:97:7A:78:26:09:87:11:BF:A8:AD:D9:7E:F8:7D:C1
Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb
Certificate serial: 019D9961FB6A50106846C3EB3174D16E283C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
Manifest number: 1793
Signing time: Fri 17 Apr 2026 03:00:28 +0000
Manifest this update: Fri 17 Apr 2026 03:00:28 +0000
Manifest next update: Sat 18 Apr 2026 03:00:28 +0000
Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: ITCxhr/eGjDQeR+oHQRNaec8hOIHR6GWmqDNCfjyr00=)
2: g3yb9GvnR-4yvkFxTiRQRjASrNM.roa (hash: IRUvAUHV7ruHaa7xmQq2ksFvesViZHulW4HJ9YDCukA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:61:fb:6a:50:10:68:46:c3:eb:31:74:d1:6e:28:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1171641f157cb57b532626359e71582742c2dccb
Validity
Not Before: Apr 17 03:00:28 2026 GMT
Not After : Apr 18 03:00:28 2026 GMT
Subject: CN=702325646a977a7826098711bfa8add97ef87dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ab:f4:be:ca:b2:82:20:7e:0e:3f:b3:d1:0f:
f0:5d:96:87:89:73:a5:c2:c4:8d:24:dd:1c:2d:34:
9f:57:25:0e:0c:ee:42:2e:d6:87:67:03:20:f5:09:
0f:32:9a:32:e7:31:b0:8c:ba:6d:4b:ae:9c:60:00:
6f:d2:d2:11:9c:0c:a5:28:84:b6:83:0f:20:3d:f7:
b4:a7:b8:58:9a:9c:3d:69:9b:79:e4:48:0b:da:4f:
14:63:4a:9f:d6:18:b3:b9:e5:70:7b:ac:89:16:be:
dd:e1:c3:8a:1b:78:92:d5:9e:ca:cf:7f:b4:97:e8:
84:d7:4e:ab:88:61:72:bf:21:da:a2:9a:8e:3e:78:
4d:0a:ee:14:d1:81:91:28:7f:b2:a8:a4:69:e0:ed:
49:f2:b2:1f:77:73:56:5e:e4:8d:b4:d4:d9:7c:26:
58:0b:eb:b6:45:83:35:9f:40:08:22:3a:80:55:33:
2e:4b:29:9c:79:8d:31:3c:30:e8:74:48:de:0a:f8:
e3:22:99:be:74:a4:b9:cf:b5:3a:53:dd:dc:d8:ee:
f8:47:44:32:93:64:79:19:ed:ab:04:a4:0a:8a:82:
92:3d:4b:30:a2:4c:cb:52:75:c0:ff:90:88:0a:ca:
ae:d4:3a:6e:b4:42:4e:f6:83:15:a6:27:6c:f8:1e:
c3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:23:25:64:6A:97:7A:78:26:09:87:11:BF:A8:AD:D9:7E:F8:7D:C1
X509v3 Authority Key Identifier:
keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:4c:f6:f1:71:98:6b:c7:5f:34:33:72:5d:33:96:4f:6d:a0:
f8:53:fe:23:1d:8e:5b:08:92:8b:6f:36:e6:6f:43:e3:7d:88:
59:66:b9:3f:1e:a4:82:64:22:44:5e:eb:24:c6:ba:b6:7a:67:
60:79:5f:f1:19:10:cc:87:f1:6c:21:18:31:a7:3a:75:8a:33:
95:c6:0e:a0:28:ea:8a:d5:4d:0f:c5:e3:b0:59:8f:80:4c:85:
e1:a8:2f:bf:f8:19:61:36:fc:13:36:fb:46:85:25:60:63:a9:
4b:6f:7d:5e:11:59:13:b8:b9:b0:58:d4:93:c2:b9:1c:d0:07:
b7:28:b4:07:4c:60:34:5b:d6:12:4f:84:1e:03:32:e2:a9:d9:
0b:90:0b:75:f4:1d:17:3d:9a:38:d2:e2:ad:2b:9c:25:4c:3b:
21:f0:bb:06:7b:ac:21:cc:9a:6b:15:b7:14:f4:f5:fb:12:3b:
3a:32:cb:83:8b:68:dc:79:e7:fd:dc:17:1f:a3:dd:43:31:49:
9d:e1:82:c4:db:bc:8a:12:94:8d:bc:95:b3:c6:96:52:9a:d5:
3f:92:83:55:15:36:d5:3c:66:eb:2f:90:e2:57:e9:81:96:54:
34:c0:43:57:4f:e6:b1:38:06:46:75:b2:ea:07:af:80:ec:08:
a0:67:37:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:38:58 2026 by rpki-client