Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: lGrIIhStgASvolPKDm2ws9kSPeiouq9TmWQ8EK4mU04=
Subject key identifier: C1:95:26:45:97:A0:14:82:22:11:5B:20:BA:FF:AA:92:C8:35:3D:5E
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019777534AF90572A897F5993CC26CB7AECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0293
Signing time: Mon 16 Jun 2025 06:00:36 +0000
Manifest this update: Mon 16 Jun 2025 06:00:36 +0000
Manifest next update: Tue 17 Jun 2025 06:00:36 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: hKDTbicF7YamurDUw7EjT0jveJBQjp+ITH0OpXXCb9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 06:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:53:4a:f9:05:72:a8:97:f5:99:3c:c2:6c:b7:ae:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Jun 16 06:00:36 2025 GMT
Not After : Jun 17 06:00:36 2025 GMT
Subject: CN=c195264597a0148222115b20baffaa92c8353d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8d:72:53:28:a6:e6:be:c9:e5:29:d3:50:51:
80:f4:ce:5c:ab:a5:d9:b0:77:26:42:af:91:0b:92:
b2:75:dd:7f:ec:7f:c2:55:f3:30:1e:54:13:08:87:
05:4b:87:d4:db:ae:2d:47:b7:55:a6:cb:d4:b5:f8:
47:06:42:54:49:8a:5f:34:cc:f2:55:9a:fd:7e:35:
eb:5a:95:5e:11:3b:a5:29:e8:f5:ba:4a:70:9a:a5:
b6:d0:55:ff:ef:a9:5a:76:76:e4:93:86:53:a1:db:
de:7a:8d:36:a4:71:a2:01:69:f2:e1:38:03:57:84:
99:42:87:a0:e8:41:8a:fb:1c:fc:aa:2e:7e:cc:44:
0e:c8:19:e2:c6:23:cf:22:94:d6:89:f6:c0:28:eb:
90:5b:8f:9e:d5:65:96:b0:cf:39:2f:a3:f9:d7:75:
d7:49:df:10:99:00:21:05:73:d7:66:6a:49:23:15:
46:82:0f:40:34:c8:fa:c2:66:d9:d4:42:ef:d3:c2:
d3:04:63:e1:74:92:13:3d:d3:13:7b:4c:da:86:37:
bb:b8:9c:d4:0d:87:fe:8e:bf:0b:f8:e6:73:5d:21:
b5:35:8a:b6:87:c5:96:7e:db:b9:66:2b:92:89:80:
bb:d8:13:c3:28:6a:aa:cf:0d:ca:9e:9c:83:86:5f:
10:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:95:26:45:97:A0:14:82:22:11:5B:20:BA:FF:AA:92:C8:35:3D:5E
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:cf:81:3b:14:6f:f6:09:47:45:c0:95:24:1a:6f:e1:ca:51:
70:38:44:c8:b9:56:d0:37:77:ff:e8:1e:a1:4f:c6:6c:1c:42:
fe:5d:28:f4:af:c0:19:dc:dd:2b:cd:2a:79:9b:f0:97:09:9d:
3b:79:98:77:57:05:e2:e5:e1:22:02:6d:30:98:f9:e4:2e:99:
3e:42:39:b0:5a:eb:5d:7b:a4:87:b7:59:70:72:d6:bc:dd:d2:
76:f2:7b:b8:6e:c1:7f:3b:5b:6a:86:07:be:01:a1:e6:db:7e:
11:60:ba:6d:90:4e:80:11:b9:73:17:98:41:65:1d:ef:d2:37:
b0:0f:86:4e:cd:d4:86:a0:0a:bf:67:f6:ea:e2:5a:19:b2:b3:
99:2a:b2:c3:56:f4:20:62:bb:2e:b8:05:f7:df:ec:dc:19:85:
54:f9:a8:0a:ce:d9:6e:b1:ed:f6:dc:b8:86:16:fc:b1:0c:20:
51:5b:97:c8:e1:65:4a:a9:92:ba:02:a6:f2:93:27:22:e5:b9:
38:0d:68:7b:c6:40:77:1f:29:af:e5:ee:34:a9:25:60:7c:81:
b1:2b:5c:5a:dc:28:88:82:cf:56:37:2a:fd:3d:99:c5:60:06:
8e:41:91:9f:1b:7c:36:4b:32:92:98:20:90:e3:58:6a:2e:67:
d4:ae:a9:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 12:21:04 2025 by rpki-client