Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: UegZBzDUdagNJ2rVKAMu/b55qiufhxQbunQfFBmJeuA=
Subject key identifier: 62:90:51:EA:0D:33:F9:17:D1:DE:54:C1:C3:3F:D8:6B:6C:8D:F8:50
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 0198D6CDD961E3B9641832DC301ABE46C7B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0349
Signing time: Sat 23 Aug 2025 12:01:11 +0000
Manifest this update: Sat 23 Aug 2025 12:01:11 +0000
Manifest next update: Sun 24 Aug 2025 12:01:11 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: zRZVwTOKom6PQvFh1bt5/qfMGmL49GCOsBK4t168+HI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:d9:61:e3:b9:64:18:32:dc:30:1a:be:46:c7:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Aug 23 12:01:11 2025 GMT
Not After : Aug 24 12:01:11 2025 GMT
Subject: CN=629051ea0d33f917d1de54c1c33fd86b6c8df850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:df:b6:97:41:1d:5d:24:13:d2:fe:57:d5:e7:
37:b5:7e:2e:d8:2d:e2:cb:2b:29:65:ed:5c:cd:59:
e4:0b:d8:df:89:3a:7e:2e:e2:b7:3a:d3:38:87:0b:
7f:52:24:eb:45:b5:c6:43:c0:ef:ad:a6:78:dd:2b:
92:30:21:ea:93:39:53:ed:29:c4:49:c9:3a:7e:5f:
c2:15:0e:9d:9b:0d:6e:29:0a:5c:f9:79:05:4b:96:
a4:d9:cf:ff:06:75:44:54:28:82:c2:c0:6a:bb:87:
7d:4d:8f:29:25:be:42:27:9e:d8:9a:e9:60:51:3f:
15:da:f4:80:82:06:a1:2f:85:53:b0:60:00:26:8e:
5d:f2:bc:3b:dd:9f:ab:46:74:b5:4d:e8:52:b8:11:
31:f0:3e:30:5d:e6:65:b3:29:ba:f4:0c:de:13:b0:
72:1d:c3:07:47:0a:f5:ed:f4:86:eb:c0:8c:9a:c0:
ce:dc:9a:0c:8b:f0:7e:db:be:c2:d5:7b:10:71:e9:
4c:34:8a:a6:57:09:ba:69:b4:e0:75:a0:43:d3:ff:
74:c9:02:81:8f:93:3a:b2:9e:ea:59:49:2d:20:11:
9f:1f:8f:aa:92:aa:c2:5f:cb:fd:31:28:cd:5d:bc:
11:3d:29:e3:46:91:0f:29:1e:c8:0d:85:59:25:a7:
8a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:90:51:EA:0D:33:F9:17:D1:DE:54:C1:C3:3F:D8:6B:6C:8D:F8:50
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:34:fc:17:74:8a:39:46:22:21:c3:a6:7e:b0:5b:b5:f2:1b:
6b:19:3d:9b:e2:dd:21:e5:c0:97:e2:08:6f:47:bd:09:eb:15:
1d:cf:a1:ba:75:17:46:61:db:46:98:d2:e2:35:c1:db:d4:7c:
54:e5:43:ba:f9:0c:bf:9c:d3:03:12:9d:a3:b1:b6:f2:33:a0:
24:f4:ae:cb:da:71:fa:87:aa:6b:5a:70:0b:33:5b:d9:d9:8b:
f9:b1:0a:82:67:e3:e6:dd:34:b4:6f:c3:b8:6f:dc:52:36:68:
4a:61:20:3c:89:5f:09:4f:81:dc:87:76:33:74:92:b7:8c:cf:
03:87:09:27:b3:25:a6:72:df:93:d5:d7:98:40:67:1d:2e:28:
59:98:bb:39:4a:fb:75:c1:7a:33:2f:22:b7:dc:10:7d:25:12:
17:ae:b0:4d:20:01:ed:20:8a:ed:4f:4b:5f:5b:90:13:f7:c5:
d8:fd:3c:a9:31:01:1d:09:5e:68:0c:7c:e0:75:ef:7b:f0:a7:
38:18:46:32:75:df:d1:35:db:9f:45:54:98:86:22:ea:a3:82:
6d:3c:89:24:c7:50:58:35:0d:99:bb:fb:d1:e7:74:25:81:83:
82:ea:41:c5:d6:07:a2:f4:69:9e:a5:59:c6:a7:fa:7b:a5:60:
f8:6e:ca:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:40:48 2025 by rpki-client