Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: 4cL3g3W6n/+QrLNTmODqcEnT4UapDPhi3OGbbddQwxg=
Subject key identifier: D3:E3:55:5C:3E:D5:F3:A7:41:2C:EF:F7:53:28:93:B7:5B:F5:E8:E3
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019DA90BF50A643DD124944FB6CB1C62E9F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 05C9
Signing time: Mon 20 Apr 2026 04:00:26 +0000
Manifest this update: Mon 20 Apr 2026 04:00:26 +0000
Manifest next update: Tue 21 Apr 2026 04:00:26 +0000
Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: pe0ttoTCEvrj9gDq+Igt05IsGfhCEqHWtb2dhQW+Dw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 21:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a9:0b:f5:0a:64:3d:d1:24:94:4f:b6:cb:1c:62:e9:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Apr 20 04:00:26 2026 GMT
Not After : Apr 21 04:00:26 2026 GMT
Subject: CN=d3e3555c3ed5f3a7412ceff7532893b75bf5e8e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:58:84:0b:1a:27:87:0c:a2:74:6d:bd:4b:f1:
c9:4a:47:92:e1:bf:c7:af:37:27:76:98:92:b9:57:
76:7f:3a:3f:1a:27:19:91:89:84:e5:d3:e6:be:2c:
87:03:63:b0:5e:73:e3:6a:9d:50:95:17:2f:87:01:
65:26:63:4c:f1:29:d1:ec:53:71:11:d6:c8:00:1b:
b9:53:b9:42:bb:a6:58:e9:ac:77:c4:37:6a:4e:e6:
47:a6:3e:af:67:d3:74:e8:0c:67:21:3e:a7:7a:8b:
ed:4e:81:4d:da:e1:29:84:fc:ec:a1:6c:60:19:01:
47:3b:71:dd:ae:62:d5:03:8d:9f:b5:2d:49:f0:ac:
4c:4e:ae:b5:42:55:c6:dc:2d:b4:55:ba:35:84:22:
39:ce:a9:83:ee:33:ee:4f:50:9e:1f:05:09:92:ad:
46:c4:72:23:87:45:66:f8:f7:34:f9:49:af:d1:61:
5e:64:1f:80:d5:56:eb:c2:95:6d:a5:bd:bd:e3:be:
4b:5d:30:ab:cb:2a:9e:99:35:2d:d1:2c:6d:df:6b:
64:35:55:fd:16:0e:71:00:a4:d6:a3:c8:54:ae:9c:
78:4e:d0:b1:f0:45:04:78:c9:5c:c6:36:10:51:68:
12:68:b5:df:54:b6:14:a6:44:03:68:58:a7:16:22:
0b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E3:55:5C:3E:D5:F3:A7:41:2C:EF:F7:53:28:93:B7:5B:F5:E8:E3
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:09:6e:3d:ce:4c:6d:d5:21:05:49:06:11:8f:22:cd:24:59:
bf:54:97:0c:75:5f:3b:c5:58:c0:d6:a7:55:d5:6f:95:a4:37:
5d:07:5a:a1:ad:01:6c:c7:c8:dc:88:5b:9e:1b:cc:1f:80:99:
05:b3:1a:57:51:29:49:e5:70:69:6e:93:1d:2e:f4:b6:0e:a0:
fd:24:6e:95:98:9b:e9:80:6b:0e:da:c2:dc:13:aa:25:ff:d0:
fa:55:38:ed:f2:95:b5:3d:fa:50:ce:7e:25:67:80:79:08:52:
61:f2:e3:74:60:b7:d7:14:54:c1:df:17:a4:c5:83:c5:44:a4:
fd:63:1d:b7:58:f7:83:02:e9:6d:d7:04:03:3e:7d:e7:9d:4e:
26:32:89:8f:09:e4:f9:07:3c:36:06:63:c8:d3:19:15:e8:b9:
6e:5e:11:0d:e3:d7:80:dd:76:75:3e:d8:30:1e:07:76:e0:bb:
33:1e:a7:42:81:11:56:9f:00:8d:61:9d:b7:4f:ec:39:dc:08:
7c:00:1b:05:69:8c:0f:ec:97:8c:31:e1:4c:a3:d4:9f:1a:44:
58:9e:19:95:43:44:db:fd:c3:f2:63:09:19:da:61:96:58:f4:
aa:4e:62:1f:a8:66:42:e2:1f:79:54:0e:db:88:34:eb:8f:c8:
ec:f8:f4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 20 06:17:50 2026 by rpki-client