Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: SRUKc37i+ZqskXic/j79GA/1GnizibTp0u0mYHns1uQ=
Subject key identifier: FE:81:15:18:A6:90:F9:86:FA:EE:87:07:34:EF:CF:1C:D5:C2:86:13
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 0197B70EBC92025A40AAE92898504A3F6AD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 02B4
Signing time: Sat 28 Jun 2025 15:01:25 +0000
Manifest this update: Sat 28 Jun 2025 15:01:25 +0000
Manifest next update: Sun 29 Jun 2025 15:01:25 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: KPshbiycNDUFZnhvU7txtJv+HHOLmKwu7OxqjiXVQRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:bc:92:02:5a:40:aa:e9:28:98:50:4a:3f:6a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Jun 28 15:01:25 2025 GMT
Not After : Jun 29 15:01:25 2025 GMT
Subject: CN=fe811518a690f986faee870734efcf1cd5c28613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:80:af:fa:01:df:15:cf:4d:29:38:58:47:76:
f7:89:3d:0e:0e:4e:4c:cb:4f:f2:58:95:ed:5f:18:
d2:49:8b:7c:db:cb:91:00:45:ec:da:93:85:c9:64:
e5:e0:96:f3:73:c9:28:ed:39:45:42:c2:4d:14:f8:
15:25:05:60:1f:d6:1f:f8:16:b2:0a:50:7c:ff:92:
4b:40:bb:39:89:36:d9:8b:40:9b:b8:32:c2:8e:43:
7f:7d:1f:a5:b6:52:a8:99:97:c0:a9:bd:21:2e:dd:
9d:9f:34:8c:75:8e:c5:a2:2d:3f:5b:42:71:ee:b8:
48:e8:5d:46:fb:34:ce:b4:a3:c5:af:b6:45:d8:5a:
2b:6f:5e:bd:cc:f1:b9:7a:90:ff:52:ed:eb:6e:26:
ac:b5:8b:91:40:a2:19:2a:17:8b:da:4d:47:6f:43:
c5:05:34:96:45:62:cf:dc:ce:ed:88:50:02:cd:91:
a9:e3:dc:34:1b:b2:47:c9:a0:ca:f6:e8:1a:06:f5:
c4:08:9d:97:e0:e0:2b:f3:dd:31:5d:c9:71:33:76:
23:48:44:a8:ea:dd:cb:a6:e7:10:0c:0c:e1:43:d4:
e1:e0:b4:a0:1d:65:25:1b:63:41:e6:80:b2:ab:5f:
e2:45:05:f3:0a:cc:02:47:2c:c3:77:4f:9c:3c:a1:
76:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:81:15:18:A6:90:F9:86:FA:EE:87:07:34:EF:CF:1C:D5:C2:86:13
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:56:94:74:de:2e:86:67:23:c5:75:4e:d2:44:8d:05:46:b0:
8a:81:d3:d5:d7:45:64:b1:a5:17:68:df:78:b3:e1:50:9e:de:
7f:71:1c:f8:6c:67:8e:fe:82:19:f0:36:3c:2f:df:ac:9e:69:
96:e1:d4:a6:c7:aa:dc:74:f6:1a:74:e2:36:62:e8:1a:88:de:
8e:2a:d0:37:ce:1f:ff:a3:03:d3:d9:5d:d0:11:be:32:75:91:
1d:07:5c:9c:f5:df:96:31:e7:5c:0a:97:04:cc:e8:fb:77:64:
16:81:ba:c0:0c:47:e6:de:f7:f2:22:07:f7:6d:26:b3:75:4c:
25:15:45:48:8a:67:73:e2:eb:ac:1a:9b:d0:a4:15:7b:bf:73:
b1:cf:bd:67:29:7d:82:47:c5:e4:6d:87:0f:6c:f8:62:d2:40:
f4:9b:3a:b9:ef:a3:46:6b:74:da:04:31:38:ed:4d:46:f2:ad:
1d:66:65:3a:d9:3f:98:c2:dc:51:85:4a:c0:09:48:c1:21:03:
63:0e:2d:f3:36:47:48:40:48:05:79:1b:42:48:dc:5e:8e:7c:
f3:95:86:62:10:c0:7b:f4:fe:91:38:d5:8c:3f:75:a9:40:fe:
d6:f0:7b:17:ad:ed:ba:ef:27:2d:b1:da:b0:97:fc:d4:08:f5:
e4:c9:e2:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DrySAlpAqukomFBKP2rXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1
ZDA3ZjMwHhcNMjUwNjI4MTUwMTI1WhcNMjUwNjI5MTUwMTI1WjAzMTEwLwYDVQQD
EyhmZTgxMTUxOGE2OTBmOTg2ZmFlZTg3MDczNGVmY2YxY2Q1YzI4NjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYCv+gHfFc9NKThYR3b3iT0ODk5M
y0/yWJXtXxjSSYt828uRAEXs2pOFyWTl4Jbzc8ko7TlFQsJNFPgVJQVgH9Yf+Bay
ClB8/5JLQLs5iTbZi0CbuDLCjkN/fR+ltlKomZfAqb0hLt2dnzSMdY7Foi0/W0Jx
7rhI6F1G+zTOtKPFr7ZF2Forb169zPG5epD/Uu3rbiastYuRQKIZKheL2k1Hb0PF
BTSWRWLP3M7tiFACzZGp49w0G7JHyaDK9ugaBvXECJ2X4OAr890xXclxM3YjSESo
6t3LpucQDAzhQ9Th4LSgHWUlG2NB5oCyq1/iRQXzCswCRyzDd0+cPKF2awIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP6BFRimkPmG+u6HBzTvzxzVwoYTMB8GA1UdIwQY
MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt
ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5
LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs1aUdN4u
hmcjxXVO0kSNBUawioHT1ddFZLGlF2jfeLPhUJ7ef3Ec+Gxnjv6CGfA2PC/frJ5p
luHUpseq3HT2GnTiNmLoGojejirQN84f/6MD09ld0BG+MnWRHQdcnPXfljHnXAqX
BMzo+3dkFoG6wAxH5t738iIH920ms3VMJRVFSIpnc+LrrBqb0KQVe79zsc+9Zyl9
gkfF5G2HD2z4YtJA9Js6ue+jRmt02gQxOO1NRvKtHWZlOtk/mMLcUYVKwAlIwSED
Yw4t8zZHSEBIBXkbQkjcXo5885WGYhDAe/T+kTjVjD91qUD+1vB7F63tuu8nLbHa
sJf81Aj15Mni8w==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:31:34 2025 by rpki-client