Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: wiVfIZICnva0+yHpogSEQNQwiHle/03sDgRwGbT86pg=
Subject key identifier: 44:AE:11:06:A6:8E:38:1E:6B:2C:7A:7B:B4:F5:89:82:09:5A:E8:11
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019DA71D936FC289ECA472CF68C2C37711C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 05C8
Signing time: Sun 19 Apr 2026 19:00:26 +0000
Manifest this update: Sun 19 Apr 2026 19:00:26 +0000
Manifest next update: Mon 20 Apr 2026 19:00:26 +0000
Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: yU2Nv26/ZIi3D0VM/U3YVrZ0q5mYp2v/lC11PIDEV7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 19:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a7:1d:93:6f:c2:89:ec:a4:72:cf:68:c2:c3:77:11:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Apr 19 19:00:26 2026 GMT
Not After : Apr 20 19:00:26 2026 GMT
Subject: CN=44ae1106a68e381e6b2c7a7bb4f58982095ae811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:c9:1e:14:ee:b2:73:f4:b7:e6:e4:32:34:
42:5b:b6:86:ff:fa:6b:dc:43:f2:45:86:c6:4e:ca:
15:10:fd:16:61:c3:ec:94:ba:91:68:e7:ae:7b:29:
2a:e5:27:6c:80:9b:18:73:bd:b5:31:4f:2a:56:c4:
c7:cd:97:08:d4:02:84:f8:7c:11:1d:f3:13:fc:7c:
ad:62:2d:f2:70:e2:8e:51:62:17:98:18:22:06:1b:
58:81:09:bc:47:b4:c5:28:45:50:9e:73:dc:cf:08:
60:7c:d6:ac:c2:58:d5:f2:6a:1f:ca:37:a4:84:42:
14:cc:19:fc:9d:86:75:fe:71:c7:bc:d7:b5:27:90:
23:ca:ce:10:44:97:df:f0:7b:1e:41:5b:c7:64:ba:
27:1d:88:29:05:48:76:28:d1:f8:f2:f2:dd:21:df:
6c:c3:30:f9:75:0f:6e:a4:5e:ff:1d:67:e3:69:a1:
f6:71:d9:2b:40:83:4d:5e:ab:fc:85:24:39:90:66:
32:70:ce:ad:d6:bd:0e:db:39:56:a3:99:c2:88:04:
3c:77:b0:c2:bb:08:ba:7e:30:b9:cc:4b:d8:b4:4b:
90:53:e2:c1:87:a6:f3:29:9a:c1:80:47:e3:c3:63:
6b:90:84:c2:53:67:c6:c4:94:9b:45:fc:b7:5a:3a:
13:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AE:11:06:A6:8E:38:1E:6B:2C:7A:7B:B4:F5:89:82:09:5A:E8:11
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:48:81:28:0b:76:2b:52:29:3f:0f:4f:a3:5b:11:9b:4f:d5:
7d:ee:a8:7b:95:9b:13:7e:e4:9b:0d:8e:50:44:e4:fe:59:eb:
67:f1:79:20:df:bc:4c:c7:12:72:4c:42:d6:01:cb:e0:0a:4f:
a3:72:53:8a:33:74:d6:f0:90:d7:68:cc:a0:9d:00:d4:78:7b:
af:e3:cf:60:ba:b1:3e:b8:67:13:fe:3f:54:f5:6c:cd:21:3c:
1d:1e:c8:53:84:aa:bb:1d:bf:44:ef:68:56:88:32:24:39:24:
3c:66:80:81:39:5a:25:7c:53:e5:c3:35:c8:57:e0:25:f0:8e:
b2:57:21:ed:45:8c:1f:fa:72:15:80:70:ed:1c:aa:34:13:7c:
b9:5d:13:18:94:3e:bd:43:f9:f3:a5:2a:6e:39:eb:35:91:14:
a0:03:91:54:a3:54:92:14:81:8c:b6:bc:ae:92:15:b4:50:8f:
b0:88:4b:3c:05:16:1f:9d:7a:7c:51:ca:c0:34:87:74:a4:9e:
d6:3e:17:2a:25:50:f6:53:02:c1:32:32:7d:dd:59:03:3f:cb:
fd:eb:a5:ba:66:54:63:b7:dd:66:35:a8:fe:64:9d:45:73:9f:
70:19:71:fa:3d:89:dc:29:6a:e8:bc:9d:78:c1:0f:7d:f9:fb:
b3:eb:2a:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2nHZNvwonspHLPaMLDdxHGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1
ZDA3ZjMwHhcNMjYwNDE5MTkwMDI2WhcNMjYwNDIwMTkwMDI2WjAzMTEwLwYDVQQD
Eyg0NGFlMTEwNmE2OGUzODFlNmIyYzdhN2JiNGY1ODk4MjA5NWFlODExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskfJHhTusnP0t+bkMjRCW7aG//pr
3EPyRYbGTsoVEP0WYcPslLqRaOeueykq5SdsgJsYc721MU8qVsTHzZcI1AKE+HwR
HfMT/HytYi3ycOKOUWIXmBgiBhtYgQm8R7TFKEVQnnPczwhgfNaswljV8mofyjek
hEIUzBn8nYZ1/nHHvNe1J5Ajys4QRJff8HseQVvHZLonHYgpBUh2KNH48vLdId9s
wzD5dQ9upF7/HWfjaaH2cdkrQINNXqv8hSQ5kGYycM6t1r0O2zlWo5nCiAQ8d7DC
uwi6fjC5zEvYtEuQU+LBh6bzKZrBgEfjw2NrkITCU2fGxJSbRfy3WjoTqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFESuEQamjjgeayx6e7T1iYIJWugRMB8GA1UdIwQY
MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt
ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5
LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFEiBKAt2
K1IpPw9Po1sRm0/Vfe6oe5WbE37kmw2OUETk/lnrZ/F5IN+8TMcSckxC1gHL4ApP
o3JTijN01vCQ12jMoJ0A1Hh7r+PPYLqxPrhnE/4/VPVszSE8HR7IU4Squx2/RO9o
VogyJDkkPGaAgTlaJXxT5cM1yFfgJfCOslch7UWMH/pyFYBw7RyqNBN8uV0TGJQ+
vUP586UqbjnrNZEUoAORVKNUkhSBjLa8rpIVtFCPsIhLPAUWH516fFHKwDSHdKSe
1j4XKiVQ9lMCwTIyfd1ZAz/L/eulumZUY7fdZjWo/mSdRXOfcBlx+j2J3Clq6Lyd
eMEPffn7s+sqfw==
-----END CERTIFICATE-----
Generated at Mon Apr 20 04:55:55 2026 by rpki-client