Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: F3vHLTzDeryaS5xWHkZy2U8xIIC9hy6FZd/EF/CU7CQ=
Subject key identifier: 50:B3:01:07:8E:0E:0B:28:06:19:3E:7C:0D:7A:17:EA:B3:82:0C:CC
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019CAA21B2694E7E48AAF87C8F3A45AE6785
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0545
Signing time: Sun 01 Mar 2026 16:01:00 +0000
Manifest this update: Sun 01 Mar 2026 16:01:00 +0000
Manifest next update: Mon 02 Mar 2026 16:01:00 +0000
Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: pFkOOpkPIf5p7qXeL+85BO/b+MvRtJ1tzRS/vPEsH5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:b2:69:4e:7e:48:aa:f8:7c:8f:3a:45:ae:67:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Mar 1 16:01:00 2026 GMT
Not After : Mar 2 16:01:00 2026 GMT
Subject: CN=50b301078e0e0b2806193e7c0d7a17eab3820ccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bc:87:9a:bd:a1:f7:4e:0c:5e:2e:4c:48:44:
5e:9a:ef:c3:5a:a3:21:47:8b:5d:6f:ec:08:53:f5:
f3:67:12:9a:12:d4:a3:dd:cd:26:42:50:1c:a1:72:
b7:5a:8c:fc:01:a4:7b:28:cf:6a:1d:66:95:70:03:
59:d7:6a:05:b7:d2:be:25:d5:a5:f4:91:50:a3:22:
b9:41:94:cc:34:c8:76:d7:fd:13:d7:0c:e6:73:4b:
78:bd:f7:91:e2:a9:33:02:40:bc:4b:38:a9:c3:ec:
0f:9a:ee:0c:2d:bc:57:22:92:05:eb:e3:1f:b5:3d:
04:25:ad:1f:f2:66:e7:7b:02:d6:58:4c:e0:9c:90:
0d:23:50:67:89:b9:ae:45:92:8b:cc:35:85:fb:bd:
e2:86:38:af:48:f3:9d:57:4c:53:fb:22:b4:4b:b2:
e6:14:19:df:8c:c8:4c:aa:9d:be:ad:69:d6:82:1d:
60:08:34:d8:54:01:62:6b:c8:b6:54:54:96:28:fd:
b3:6d:68:e5:b1:08:3f:13:eb:f4:bc:59:81:2a:c2:
37:7c:7b:43:04:d5:2d:b2:58:59:67:a7:44:a7:e5:
82:68:6e:e1:44:2d:a1:07:9d:3b:f5:54:ee:da:39:
1e:60:70:63:b6:ad:0c:dc:cc:25:bd:1e:98:ab:69:
79:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:B3:01:07:8E:0E:0B:28:06:19:3E:7C:0D:7A:17:EA:B3:82:0C:CC
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:47:85:26:5d:57:95:f9:73:6e:da:13:d5:8c:71:18:e9:34:
1b:f1:ea:e1:9a:34:9c:35:a0:58:e6:e8:35:4d:7a:7a:c3:49:
17:21:9a:9f:5b:c8:54:84:f5:de:e6:2b:3f:07:2e:f4:5a:fe:
3f:f6:33:67:df:fd:b2:84:d8:50:f6:d2:ff:94:32:83:12:77:
2d:01:25:36:e7:5a:69:63:0b:41:e3:18:d5:1f:9d:a6:61:3a:
ab:88:ea:6c:81:58:1e:87:58:30:d7:52:a8:49:d4:1e:07:fa:
26:1d:1c:1b:0a:7b:b9:56:1d:1f:a3:94:13:11:80:ea:95:ea:
ad:2d:95:f3:f8:d1:0c:02:60:9c:d8:32:1d:e1:8c:6d:4f:f8:
08:5d:5f:1d:10:1b:45:00:f8:e1:71:1f:7e:20:d0:a2:49:ea:
d4:dd:aa:b0:a2:0e:2b:1e:c6:92:63:1f:f6:30:11:f2:0e:63:
9c:f2:83:55:e7:0f:f8:2c:69:41:30:fc:fd:09:f8:32:3e:3c:
13:71:bc:bf:d9:37:61:18:f4:66:d5:bc:96:8b:b4:f9:67:e3:
85:90:a0:a6:a9:55:61:63:a8:c8:63:a5:93:61:65:0b:4b:1d:
86:95:d3:e3:99:ff:dc:4a:5f:9a:7b:98:08:c2:fc:0b:0a:4f:
d5:f0:fa:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:30:05 2026 by rpki-client