Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json)
Hash identifier: oH8hhsy3t6vHIjpaJ9iBj3kzkDcoHTOg7XI28QMGiz4=
Subject key identifier: 76:4E:52:AF:1A:ED:7D:E2:B4:5E:EB:8B:0D:15:C5:3A:05:F0:80:85
Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb
Certificate serial: 019CABD8F5E3CD3BA69A818912484E8223E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
Manifest number: 1718
Signing time: Mon 02 Mar 2026 00:00:48 +0000
Manifest this update: Mon 02 Mar 2026 00:00:48 +0000
Manifest next update: Tue 03 Mar 2026 00:00:48 +0000
Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: cN96Y+nyBMmPuTA9yBJx/TEbSJt4xVUB/AUD3a7vkRc=)
2: g3yb9GvnR-4yvkFxTiRQRjASrNM.roa (hash: IRUvAUHV7ruHaa7xmQq2ksFvesViZHulW4HJ9YDCukA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:f5:e3:cd:3b:a6:9a:81:89:12:48:4e:82:23:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1171641f157cb57b532626359e71582742c2dccb
Validity
Not Before: Mar 2 00:00:48 2026 GMT
Not After : Mar 3 00:00:48 2026 GMT
Subject: CN=764e52af1aed7de2b45eeb8b0d15c53a05f08085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:44:98:a2:fb:f5:b0:a5:21:bc:92:7f:ba:01:
04:d2:57:4a:0e:93:59:fd:3b:e9:43:6d:bd:03:c3:
e0:bb:87:33:80:14:c3:4c:17:ba:47:51:ea:93:de:
73:d5:a9:a1:34:b2:23:b1:07:6d:d7:14:49:d9:5e:
a2:96:1f:f6:0d:e1:7d:48:49:21:0d:ff:6e:07:6d:
2f:69:61:10:25:29:00:34:af:81:64:aa:e7:9a:ee:
77:60:34:2c:44:4e:d8:1b:74:e5:9e:ab:97:0a:7e:
16:d0:99:57:c7:c8:65:97:fd:5a:ad:3c:31:ff:49:
5b:51:4c:d5:ea:08:34:46:a5:c0:ea:84:be:e5:80:
7d:b5:af:da:38:57:83:57:d4:26:8d:ae:0c:50:f4:
a9:c5:59:98:bd:c4:20:6b:c5:e6:53:55:27:91:ae:
11:ff:5b:24:8c:34:27:ec:4a:aa:ba:71:42:7d:ec:
15:7d:ec:72:2f:6a:d8:fa:bf:3e:1a:95:c7:20:2c:
99:b2:4d:e4:ac:5e:0a:8a:de:08:17:ce:4e:26:f3:
d3:1a:97:27:fa:71:33:99:46:36:34:5b:ef:32:6b:
06:9a:1c:eb:ac:be:36:1c:9b:3f:40:19:f9:3a:1a:
bc:af:63:64:c4:54:03:4b:6a:b4:f1:48:da:f3:55:
79:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4E:52:AF:1A:ED:7D:E2:B4:5E:EB:8B:0D:15:C5:3A:05:F0:80:85
X509v3 Authority Key Identifier:
keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:8b:b8:0a:a3:a2:b8:2f:36:1e:cc:30:57:f6:c4:e0:d0:a1:
0e:fe:2b:15:31:11:e7:1f:f1:57:33:4c:0f:49:fe:b6:75:58:
ec:25:8b:75:e3:0d:02:82:ff:d0:1a:ae:ff:da:a4:ba:6b:1e:
c0:35:1f:b6:0f:77:63:34:69:38:90:3b:0b:e0:7f:36:24:5c:
69:ea:89:2e:7c:f1:18:93:50:15:40:c0:91:c0:5c:9a:6d:5d:
24:5d:1b:b8:0b:c9:86:1a:33:92:ea:99:af:b5:1f:f0:0b:89:
b2:03:6a:1f:ec:e2:60:16:ec:53:bc:8a:d5:62:de:38:3b:2d:
5b:48:af:e9:fe:5c:42:73:22:29:5f:88:01:79:22:ff:24:9e:
95:97:c5:5a:50:ca:30:1a:9f:92:c6:6e:ec:13:fd:be:83:55:
9f:bf:18:55:3a:bc:0d:6d:1d:46:e9:1e:f7:94:9f:fa:b1:17:
30:74:f5:54:5f:d2:1d:45:ec:90:81:e9:99:ca:e2:36:d1:03:
9b:bd:76:88:37:49:ed:70:a4:ff:bd:db:c0:39:81:1d:d1:3a:
a1:ad:0c:c2:77:49:fa:2c:00:1b:eb:d6:29:ba:98:d3:94:63:
c1:71:36:f9:8e:50:9a:86:bc:f3:7d:4c:3d:9b:60:4e:13:e8:
c8:f4:93:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:00:58 2026 by rpki-client