Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: HdJZTcFMDVvdf9kGR0Q6zcr8YdqdfE3YfgruuHLGyOE=
Subject key identifier: EF:28:02:2F:B5:43:58:07:AD:83:D9:B9:9E:67:18:63:76:09:8F:38
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019E1EDA0C2E172F9EFD5038824FC30F1BF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0606
Signing time: Wed 13 May 2026 01:01:06 +0000
Manifest this update: Wed 13 May 2026 01:01:06 +0000
Manifest next update: Thu 14 May 2026 01:01:06 +0000
Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: T+NA2jypgESX0idfSp3JJjsRYGPstNafQ2JTS4Iz4Y0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:0c:2e:17:2f:9e:fd:50:38:82:4f:c3:0f:1b:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: May 13 01:01:06 2026 GMT
Not After : May 14 01:01:06 2026 GMT
Subject: CN=ef28022fb5435807ad83d9b99e67186376098f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:86:4c:f4:60:f7:36:8d:1e:23:9d:f0:a7:5e:
b7:fd:c1:7f:da:10:85:19:89:97:42:c3:ac:5c:42:
f1:60:37:02:cf:ea:e1:b8:26:db:ff:4e:5f:da:39:
1a:60:1d:3c:d8:41:ac:65:a1:18:ed:8d:ee:2c:7b:
06:92:6b:71:1b:96:ed:e3:a4:06:1e:a9:6c:b3:3d:
5a:6f:c5:67:42:e6:97:51:77:9a:47:3f:87:0c:66:
a3:5a:52:b2:38:a4:9c:31:0a:59:2b:cd:3d:e1:ce:
82:dd:36:2b:a3:ae:a0:a8:a4:32:a7:4b:68:24:6c:
81:73:cd:18:52:05:c8:a8:70:51:9b:2e:7f:55:af:
5a:8b:35:47:a7:a0:47:40:73:71:e8:20:7a:34:77:
03:d2:df:66:29:66:7d:d9:65:5a:ae:53:12:d8:82:
4a:4a:6f:5c:e1:55:0a:67:2e:d3:68:e4:7d:c9:88:
ca:49:7f:bf:22:c4:c3:b8:2a:09:42:a4:8e:d2:f9:
dd:07:40:40:87:e6:bf:16:56:45:29:ec:3d:85:db:
8c:60:2e:19:54:26:f2:60:6e:0e:3f:88:71:78:30:
09:42:0a:6a:af:28:cc:ef:c0:92:56:1d:ca:cb:6f:
b4:62:9a:eb:89:e9:eb:ff:ea:70:d3:8c:95:8e:ef:
38:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:28:02:2F:B5:43:58:07:AD:83:D9:B9:9E:67:18:63:76:09:8F:38
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:fe:0a:10:a2:45:13:97:f9:5c:b1:51:d8:6b:77:86:f5:58:
a5:7a:94:6d:0f:d7:53:25:c1:48:ce:59:33:c2:75:65:d9:0c:
2c:41:de:a8:b1:61:7c:24:d5:35:53:7a:21:b8:f6:40:04:ca:
0a:2c:c0:e2:41:ec:62:aa:bd:16:98:4b:23:73:e1:d6:29:e6:
8c:c9:ec:bd:2b:84:01:9e:72:4d:9a:67:4e:ac:91:2d:6d:dc:
c6:61:05:8b:d1:dd:f0:44:17:f9:51:ca:74:2c:08:98:41:80:
fb:c2:66:cc:c8:39:0a:e1:cf:c6:29:93:5a:de:be:13:ab:e7:
2b:46:11:4f:7b:ee:f5:97:7d:a4:80:d2:79:2a:20:38:ae:2f:
d2:a1:8d:5e:b6:fd:9c:43:21:a4:5c:3b:9c:e1:6e:7c:b1:ba:
54:93:04:ac:19:8b:f7:a3:7f:18:80:b0:5d:8c:f2:6d:06:d8:
45:89:3b:d7:61:51:2d:9e:48:f5:2a:63:72:b1:31:e6:c3:ca:
1a:9c:25:04:d9:e2:6a:4e:b9:64:cf:f8:6e:e5:6c:e5:4b:bc:
8a:34:8f:b5:d8:fe:a6:4c:67:d4:94:1d:d3:0b:56:a7:bf:0f:
bb:96:16:76:7c:55:58:e0:a4:08:05:1f:1e:d5:9c:2e:25:cc:
d6:f2:a0:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:02:07 2026 by rpki-client