Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: WelLHYzUdErldsufa6JwU2T0+Rp9ztwRtpEgMz9b6HY=
Subject key identifier: E2:9F:86:E4:60:08:C0:C6:DD:68:8F:D4:9C:23:72:78:8E:94:EB:03
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019D9998DF0AD20ED0F85E56576C876D161D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 05C1
Signing time: Fri 17 Apr 2026 04:00:25 +0000
Manifest this update: Fri 17 Apr 2026 04:00:25 +0000
Manifest next update: Sat 18 Apr 2026 04:00:25 +0000
Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: bR+Tp35OONIx8+7ZNvJMQn8XV9N52nferlTE3WwqPTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:df:0a:d2:0e:d0:f8:5e:56:57:6c:87:6d:16:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Apr 17 04:00:25 2026 GMT
Not After : Apr 18 04:00:25 2026 GMT
Subject: CN=e29f86e46008c0c6dd688fd49c2372788e94eb03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9c:66:25:4c:7d:d2:45:ec:c9:cf:a9:10:69:
b5:2a:0a:31:34:6b:3f:38:26:ea:5c:32:da:49:da:
b7:af:fa:54:6f:0c:e5:f5:80:10:a0:96:28:cc:19:
b9:34:c6:4e:f8:c7:6f:fc:86:e0:30:c2:a9:e0:2d:
37:a7:80:80:a1:59:6a:11:90:e2:26:ae:08:6b:e2:
c6:b0:59:32:23:c3:87:ce:50:b3:cb:3f:2c:ac:50:
02:33:b0:78:90:91:6e:42:0f:77:59:d6:d4:1b:0b:
fd:29:a7:aa:3c:76:d4:f1:88:f8:d0:d1:a9:95:42:
2b:56:3f:8b:7b:d9:77:85:83:a2:00:d4:4a:1d:b8:
f1:b1:98:2e:1f:11:1a:8c:ba:00:43:a1:b8:da:64:
1b:ae:21:ea:50:6b:bc:12:f1:a6:1f:e5:66:f7:7e:
f5:fe:3f:d5:27:20:ff:ca:23:9c:7f:98:5b:7b:fd:
48:35:f5:be:90:c4:32:a6:c8:f8:ae:93:54:21:18:
1f:08:03:01:f4:ff:60:36:8c:22:f6:8e:e2:e6:ae:
c0:2a:f3:7b:38:46:17:8b:8c:b2:d0:57:31:5c:88:
7a:78:67:b4:99:e7:0a:2a:fc:b4:73:f3:af:fc:ab:
93:ae:a1:3d:98:f3:e0:e1:4b:5c:74:81:7c:a3:d8:
ba:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:9F:86:E4:60:08:C0:C6:DD:68:8F:D4:9C:23:72:78:8E:94:EB:03
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:d1:49:2c:90:ff:5f:d1:cd:96:2b:66:79:7b:e5:eb:50:97:
3e:70:bc:1f:84:68:18:83:a8:44:30:f4:b9:f2:9f:2e:a9:f3:
96:f1:2b:74:d2:b2:7f:ec:a2:ef:ef:2d:3f:0d:3f:db:34:08:
53:fd:f6:73:1c:2d:ea:7d:86:74:07:cd:85:53:f0:82:7f:6e:
f4:a8:79:8a:a6:c3:d2:6f:a6:ee:5b:3b:e1:93:d5:45:e5:0e:
40:83:0f:21:19:04:71:78:d9:a1:1a:66:a1:ed:6b:76:29:c1:
58:d0:fe:44:8d:2c:cf:4f:43:93:ac:d1:c9:63:74:42:c3:7d:
5c:8c:a4:f8:c8:04:10:ec:4f:93:04:58:e5:9a:1f:5a:ef:fb:
21:74:14:51:f2:f4:c1:52:11:7e:49:ee:ed:9d:f4:e5:5c:27:
40:61:75:d9:b8:78:b5:2b:93:74:fc:36:e6:02:c1:65:23:cb:
cb:ba:21:5b:61:04:90:c9:3a:0b:e3:bd:4f:38:cb:fb:90:de:
11:1f:21:f2:90:15:15:b5:67:ab:e0:69:54:c9:2c:55:2c:b0:
c3:18:08:92:b6:6c:58:fe:73:0c:3d:3e:de:c4:49:83:26:4b:
97:fb:6b:75:ea:9d:5c:6f:41:cf:72:89:ed:28:5f:0e:0a:93:
7d:a5:45:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:08:32 2026 by rpki-client