Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: miYHkMvFEPJDdFNHoMEmNDOU9CygV9MLP22A4wdmnaI=
Subject key identifier: C2:63:61:92:10:D3:C0:75:38:59:6C:32:A4:A8:1F:5B:99:0C:B2:0E
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019D29974E4C6B2841F4EE82F1850106DA49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0587
Signing time: Thu 26 Mar 2026 10:01:14 +0000
Manifest this update: Thu 26 Mar 2026 10:01:14 +0000
Manifest next update: Fri 27 Mar 2026 10:01:14 +0000
Files and hashes: 1: H8UNN8H7VPAPeU8HfY2pZ9baom8.roa (hash: aa3mwH6a5yy6jaHkG9FnSEuRMRDZi+0YDMCMC7O4/3M=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: 6MrlTDscUsxI6gyg5CwiuHUvLnXqny0AKNnDcuYKaQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:4e:4c:6b:28:41:f4:ee:82:f1:85:01:06:da:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Mar 26 10:01:14 2026 GMT
Not After : Mar 27 10:01:14 2026 GMT
Subject: CN=c263619210d3c07538596c32a4a81f5b990cb20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:9a:5c:a2:03:70:51:59:81:ad:7a:a3:a2:75:
46:e3:c4:d6:d0:98:e6:25:49:cc:61:c4:d7:14:5f:
28:52:1e:19:cb:51:46:6e:b0:c7:5e:4a:8f:49:30:
5d:52:1a:75:7c:b7:40:47:a3:50:8f:c5:fc:aa:96:
e2:0e:1f:df:3b:05:50:7c:f2:69:33:e4:ab:db:c4:
e0:74:85:f9:a1:c2:fd:be:56:6f:a1:68:53:2e:c9:
90:a7:52:6f:e8:09:b2:c2:ea:41:1a:b7:a9:fd:e8:
37:bb:aa:af:ed:b4:c0:d3:ba:4c:5a:a9:7b:2e:ac:
45:9a:b8:67:9c:57:eb:5d:00:d9:98:dd:c8:5f:06:
a4:d0:e6:ab:88:7a:85:74:3d:61:48:21:4e:2c:1d:
fe:2e:d3:6c:0c:49:c4:9c:f6:bf:9b:da:02:6d:e6:
3b:6e:9b:2e:b6:9b:c7:ef:51:c2:79:75:54:94:7e:
21:4b:4b:50:cc:d7:60:ef:9b:c7:09:ae:41:8f:c9:
27:e5:6c:f3:ef:8c:9e:5c:60:d7:e3:6c:4c:59:d7:
28:c6:5d:ec:74:30:fa:9c:18:2c:43:f0:02:09:4b:
e4:89:8f:34:82:69:ba:63:60:c8:92:8a:c6:a6:78:
59:97:13:72:8a:c9:49:6c:ea:6f:60:76:7c:dd:c1:
c0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:63:61:92:10:D3:C0:75:38:59:6C:32:A4:A8:1F:5B:99:0C:B2:0E
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:d0:38:4b:2c:aa:c1:3f:fd:25:a8:61:bf:a0:93:42:c7:42:
6e:a6:7d:5e:28:87:50:9e:1a:26:65:70:59:45:df:42:ba:cf:
0e:cc:7c:9a:7d:24:08:2f:66:7b:aa:91:b1:0f:a2:a8:97:bb:
fd:cf:2f:db:57:65:95:3e:fd:49:79:79:84:b1:21:bd:9f:30:
8d:90:6e:a5:2b:35:c3:79:b3:82:5c:65:e1:ab:68:d1:45:f2:
6b:bc:03:b2:2c:34:94:e5:85:d5:b8:3e:9d:b5:52:60:56:30:
bc:6f:44:57:2b:9f:a2:5d:e4:99:18:d1:21:2f:f0:76:0b:ca:
4c:83:ad:fc:f9:09:32:79:fa:27:28:91:2d:eb:be:26:66:cb:
7f:1e:d7:e2:3f:50:e4:6d:f7:6e:cc:ef:6b:b9:b4:2f:e3:fa:
0a:02:68:44:5c:2b:f4:03:63:74:00:15:63:2a:d2:d5:7e:93:
20:2b:8b:70:b1:48:8c:37:b7:49:b0:b9:af:c9:41:1c:92:06:
2a:33:1a:dc:ec:88:62:34:54:77:6f:63:9c:38:82:bc:20:db:
1a:62:35:96:cf:49:5e:67:7c:cf:34:0c:34:4e:89:6b:7e:1a:
98:fd:5e:61:41:34:97:08:bf:69:81:20:33:43:ef:59:13:1c:
ea:20:9b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:02:39 2026 by rpki-client