Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: qFUJrnmPjVh6xbwdDCgR60SX+Ov/mIkP8tZWl4vZnSM=
Subject key identifier: 92:D5:D1:B4:94:CD:75:F0:6C:53:E1:91:6A:F6:A6:01:11:90:65:CC
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019874505CBFCFD60E511C088B75282A9E6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0316
Signing time: Mon 04 Aug 2025 09:01:20 +0000
Manifest this update: Mon 04 Aug 2025 09:01:20 +0000
Manifest next update: Tue 05 Aug 2025 09:01:20 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: ouvptiT3ouHrpTsTKHEiBB1iCaSaBkwj2Dmc+ClekPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:5c:bf:cf:d6:0e:51:1c:08:8b:75:28:2a:9e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Aug 4 09:01:20 2025 GMT
Not After : Aug 5 09:01:20 2025 GMT
Subject: CN=92d5d1b494cd75f06c53e1916af6a601119065cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:22:55:18:30:99:08:8f:b3:ab:2d:c7:0e:c4:
01:62:81:ef:bc:40:c0:3b:1b:87:d4:0e:16:b8:92:
2a:a8:89:f5:23:a5:3c:9c:02:45:cd:ea:c4:a8:62:
67:1b:c1:e7:74:34:50:d0:c2:b5:a0:08:ea:0e:07:
3f:56:78:82:ae:bc:ec:46:eb:46:79:db:11:a4:40:
3c:a5:59:a6:2f:86:1a:cc:7f:aa:d9:42:28:0f:25:
b5:70:54:39:92:5b:be:38:26:87:6e:b4:45:4a:79:
f8:64:f1:7e:53:d6:2a:20:e8:1d:f2:48:82:9d:d6:
f8:45:ca:0e:2a:21:9b:5f:b1:e4:fa:6a:94:1e:b8:
16:73:1c:dd:04:42:89:99:00:a2:cb:e7:d3:c0:58:
d0:03:b9:3c:17:5c:84:31:3f:b9:8d:1f:1a:e0:be:
b5:a9:c5:a9:58:bd:01:d3:74:a6:b5:88:be:9f:f5:
ec:fe:38:dc:a0:97:26:c9:de:7e:23:cc:b3:58:5c:
91:90:8b:6b:82:c4:39:7f:87:43:90:30:83:fb:cc:
20:d6:9b:df:07:b5:1b:86:44:41:83:4d:68:14:fc:
77:c2:f1:65:4a:d4:00:ef:08:40:81:71:80:6f:0f:
2b:ed:ad:40:92:a8:b3:b0:d6:29:37:a5:dc:9f:7f:
f5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D5:D1:B4:94:CD:75:F0:6C:53:E1:91:6A:F6:A6:01:11:90:65:CC
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:9a:5a:4d:ca:89:f8:5d:29:6d:49:ec:70:61:6f:69:1d:71:
42:6f:66:21:5a:d7:66:ed:88:15:d9:62:1a:e9:00:47:63:4e:
13:bc:43:ef:bd:a7:f3:06:57:66:95:72:99:34:3e:50:d0:c0:
00:28:7e:dd:f5:8b:44:b6:36:39:9c:a6:3f:28:b4:25:b2:97:
a4:2f:11:5b:95:9c:0c:41:0a:b4:5f:4b:74:ca:02:80:a5:6a:
53:1b:0c:e0:7f:de:98:b5:4d:5c:84:88:61:b5:a1:5d:55:75:
a2:18:a4:71:ff:0f:1c:d7:d5:13:3f:83:a4:21:eb:a4:84:c5:
05:45:61:1b:85:2f:23:ac:74:13:ba:ff:be:37:dc:ce:8f:a2:
33:36:51:ae:eb:b3:78:24:f0:02:d9:0b:a2:3d:99:2c:fd:03:
82:40:83:01:55:6b:96:3b:a8:43:b8:aa:a9:a2:45:58:5c:99:
96:b2:28:e4:e0:2b:cc:bb:c3:10:7d:0d:d0:92:b3:13:e2:4b:
0d:38:fc:ca:58:88:20:65:3f:13:06:89:21:99:85:3d:59:5e:
11:18:a9:5b:4d:f7:45:f5:4f:11:6f:60:0d:fc:fd:ad:a1:87:
de:84:ce:5b:dc:3a:f4:40:74:f4:86:8a:05:fa:5f:ae:79:77:
5e:d7:c9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:12:22 2025 by rpki-client