Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: zNRWPMhgXskJtBXl3Cfi2QVg6ko/0OL0Hwge5KgwAmo=
Subject key identifier: C3:A3:93:3B:A2:68:F0:7E:54:3F:18:7E:4F:7B:48:4D:DD:76:49:74
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 0196A4D3DBEC907AD6DEE1D2684169B86220
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0226
Signing time: Tue 06 May 2025 09:01:09 +0000
Manifest this update: Tue 06 May 2025 09:01:09 +0000
Manifest next update: Wed 07 May 2025 09:01:09 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: M9PKkjB0MHcpNZyF48zBJ5ppF4V2e9HYsfQFAcQAtyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 09:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:d3:db:ec:90:7a:d6:de:e1:d2:68:41:69:b8:62:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: May 6 09:01:09 2025 GMT
Not After : May 7 09:01:09 2025 GMT
Subject: CN=c3a3933ba268f07e543f187e4f7b484ddd764974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:df:98:c6:8a:3e:93:e4:50:f2:a2:96:db:61:
48:0b:eb:91:15:aa:8f:e6:5e:62:89:b2:3e:1e:40:
60:47:4c:55:7c:04:44:0c:21:9c:17:1a:25:9b:7b:
ae:6b:38:4d:fd:28:02:02:f7:eb:71:d6:63:24:d9:
54:55:52:13:7f:db:e0:a6:d7:68:87:f7:1e:4e:14:
f0:3e:24:5c:ca:ee:e3:16:a0:9e:b8:45:d0:ed:99:
4e:09:b1:d4:86:6a:2c:98:d7:d2:a3:5e:45:72:4e:
2a:f0:5b:b5:3f:d3:ae:a3:61:13:ed:5f:ae:97:57:
31:b2:40:c6:dc:8d:84:3c:d2:d6:f6:c0:4b:07:b9:
03:6c:e3:1e:06:43:06:b0:bd:06:bb:62:a7:07:d6:
56:c3:70:47:6c:d8:19:d0:ba:75:e3:65:04:0c:ca:
ec:cc:a0:af:a4:98:6c:09:b3:7d:26:56:a6:bb:0d:
44:b2:8c:84:38:67:cb:35:8f:51:27:74:87:cc:e1:
14:ff:e3:ae:5d:b0:7a:98:3b:01:f4:a4:64:99:04:
2f:7a:97:49:d6:8e:c8:26:8d:a7:81:19:0f:d4:63:
3d:9c:8b:ae:cd:df:02:5a:9c:5a:59:dd:d3:ea:92:
1f:f7:a9:6f:d6:0a:61:c0:44:df:dc:ce:73:35:3e:
b3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A3:93:3B:A2:68:F0:7E:54:3F:18:7E:4F:7B:48:4D:DD:76:49:74
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:45:43:f5:00:f6:89:65:15:19:52:71:27:74:67:c8:14:99:
05:b6:3d:34:4c:f3:23:71:de:a4:03:34:38:37:2b:09:32:53:
73:e4:98:13:9e:2f:ad:b1:ad:af:95:11:4a:fb:5e:83:2f:2e:
15:9e:d1:16:73:0f:35:3a:77:aa:72:9d:ba:a3:7e:a1:8c:de:
40:27:5b:eb:46:b8:b5:3c:8a:16:28:73:6b:97:83:3a:6a:e2:
32:af:ca:b6:19:ed:15:47:c0:20:a7:55:2f:f4:28:72:97:f0:
09:a0:91:5a:00:88:fd:f3:54:d4:4f:d1:15:ec:df:5d:25:c9:
a8:90:7b:7f:78:98:e6:e8:78:35:f8:64:e9:9d:be:8a:17:ed:
42:d0:7a:00:85:3c:0e:0c:a2:06:fd:72:2f:5c:58:89:cc:81:
f8:7d:d1:f2:51:16:a8:44:b2:32:91:1b:c3:40:ae:6d:95:df:
91:c2:e2:e0:68:5e:97:3d:c5:ab:ea:04:ae:be:97:19:be:48:
b8:5a:b8:43:69:3b:ed:f9:2a:fd:ac:56:41:f4:23:cd:63:78:
2b:50:a7:98:58:4d:69:89:ce:b2:b0:58:4d:5c:0d:e1:ab:e2:
5e:f2:e4:f8:a7:41:db:fb:2c:1c:98:01:91:39:ed:bd:5d:e7:
7e:df:6b:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZak09vskHrW3uHSaEFpuGIgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1
ZDA3ZjMwHhcNMjUwNTA2MDkwMTA5WhcNMjUwNTA3MDkwMTA5WjAzMTEwLwYDVQQD
EyhjM2EzOTMzYmEyNjhmMDdlNTQzZjE4N2U0ZjdiNDg0ZGRkNzY0OTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnd+Yxoo+k+RQ8qKW22FIC+uRFaqP
5l5iibI+HkBgR0xVfAREDCGcFxolm3uuazhN/SgCAvfrcdZjJNlUVVITf9vgptdo
h/ceThTwPiRcyu7jFqCeuEXQ7ZlOCbHUhmosmNfSo15Fck4q8Fu1P9Ouo2ET7V+u
l1cxskDG3I2EPNLW9sBLB7kDbOMeBkMGsL0Gu2KnB9ZWw3BHbNgZ0Lp142UEDMrs
zKCvpJhsCbN9Jlamuw1EsoyEOGfLNY9RJ3SHzOEU/+OuXbB6mDsB9KRkmQQvepdJ
1o7IJo2ngRkP1GM9nIuuzd8CWpxaWd3T6pIf96lv1gphwETf3M5zNT6z2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMOjkzuiaPB+VD8Yfk97SE3ddkl0MB8GA1UdIwQY
MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt
ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5
LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIkVD9QD2
iWUVGVJxJ3RnyBSZBbY9NEzzI3HepAM0ODcrCTJTc+SYE54vrbGtr5URSvtegy8u
FZ7RFnMPNTp3qnKduqN+oYzeQCdb60a4tTyKFihza5eDOmriMq/KthntFUfAIKdV
L/QocpfwCaCRWgCI/fNU1E/RFezfXSXJqJB7f3iY5uh4Nfhk6Z2+ihftQtB6AIU8
DgyiBv1yL1xYicyB+H3R8lEWqESyMpEbw0CubZXfkcLi4Ghelz3Fq+oErr6XGb5I
uFq4Q2k77fkq/axWQfQjzWN4K1CnmFhNaYnOsrBYTVwN4aviXvLk+KdB2/ssHJgB
kTntvV3nft9rBw==
-----END CERTIFICATE-----
Generated at Tue May 6 15:11:50 2025 by rpki-client