Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: R6teV6vTjvvvBrOyWmjoI6vB8tjz0vGBKCUc2rSO4P0=
Subject key identifier: E0:80:DB:DA:FB:5F:AE:66:F1:8F:67:B2:0B:ED:00:C5:41:38:4D:63
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019CBF5FD734D64E34450D84935D4CF9E634
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0550
Signing time: Thu 05 Mar 2026 19:00:55 +0000
Manifest this update: Thu 05 Mar 2026 19:00:55 +0000
Manifest next update: Fri 06 Mar 2026 19:00:55 +0000
Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: 7DctMZCR9S5jq12ZIhdwP+oN0hSr/fBWKtQwYFKgp40=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 16:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bf:5f:d7:34:d6:4e:34:45:0d:84:93:5d:4c:f9:e6:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Mar 5 19:00:55 2026 GMT
Not After : Mar 6 19:00:55 2026 GMT
Subject: CN=e080dbdafb5fae66f18f67b20bed00c541384d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c1:5d:34:26:73:f4:a6:0c:e4:23:1b:58:06:
0c:ad:86:64:50:e4:ef:8f:a5:07:93:3c:12:5d:a7:
47:9b:b9:6f:88:8e:28:ff:22:3a:d3:96:14:9f:4d:
13:d0:5d:c3:6a:4c:46:0f:f8:49:44:d8:00:af:0d:
ac:c2:66:bb:eb:b7:75:3b:69:25:1e:a4:cf:f6:33:
cb:3d:00:2c:2f:37:66:b1:12:f4:72:c4:24:9d:a5:
2e:49:62:8a:b2:dc:b1:7e:2c:a3:58:3b:c8:ca:05:
fc:ae:58:55:2a:09:ad:27:29:f8:f5:91:0c:d3:b6:
89:ad:1a:00:b2:5a:7d:1d:01:1c:24:af:72:d1:b1:
c8:5f:fb:6f:1b:83:dd:23:76:93:06:56:4a:32:5a:
4e:15:39:94:f1:36:04:b1:d9:cf:71:92:7c:14:6a:
aa:e9:90:3a:19:83:81:02:04:a3:89:54:ad:c3:e1:
23:b7:85:58:95:b7:0a:56:2a:16:9e:25:34:c1:e2:
34:73:7b:e6:3a:58:7a:e6:46:e4:3b:4a:f9:7f:c3:
b5:92:36:da:00:c9:1a:53:f7:b7:d9:5a:56:2f:81:
52:67:db:75:6a:37:9e:25:5a:d7:ce:88:2b:0b:28:
28:c9:b0:5b:88:ba:b5:dd:ef:9d:66:35:d0:01:01:
66:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:80:DB:DA:FB:5F:AE:66:F1:8F:67:B2:0B:ED:00:C5:41:38:4D:63
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:9f:d5:ea:e1:92:ba:76:fb:a1:85:47:9a:77:01:a3:45:e3:
84:c9:84:f0:aa:e0:b6:dd:e2:6b:b3:f8:23:a2:3a:06:b1:8c:
6c:27:00:c7:62:ac:28:2c:cc:2b:35:e7:39:70:22:e9:17:cb:
86:d4:b2:77:d6:be:a4:1b:a6:17:09:b3:25:fe:8e:74:e8:32:
32:57:af:00:87:b5:6e:5c:84:bb:b2:cc:ec:b5:3e:14:62:2d:
80:4f:e1:2a:2a:40:20:df:21:d0:98:08:af:5c:d9:29:ed:99:
26:ef:69:d3:cf:c6:8b:9b:ce:cc:d3:62:a0:c0:06:83:02:63:
2d:eb:de:c9:d3:22:4e:6c:ed:80:e9:54:80:56:3d:f8:e6:98:
80:34:8c:be:bf:51:6b:fc:db:a0:65:9a:f6:73:79:2e:65:3a:
d6:05:d2:78:ea:62:67:a9:9f:af:f1:3b:18:ef:b0:87:00:8a:
56:3b:b7:82:41:e4:74:d1:1f:1e:4c:59:5e:c7:59:9e:98:96:
f0:ff:8c:63:70:59:fc:39:23:9c:b8:b0:8e:e2:4f:62:f1:bf:
85:b4:38:dd:69:5b:0d:52:2a:f3:6d:c3:1e:97:e8:bf:00:b4:
35:7d:a9:a1:01:35:b6:e5:00:d3:a8:8b:85:ba:87:7e:e0:05:
1a:6a:27:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 22:06:25 2026 by rpki-client