Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: 18XS5VSRpWFOdajBxhdhcU+VTC5cy72k45ogWledZE4=
Subject key identifier: C3:21:73:85:3C:AA:A5:93:A9:0A:D0:B3:3D:BF:60:17:4F:EE:A2:27
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 0199FE4755D3C1CCCBC7FA2241467CC4CCF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 03E2
Signing time: Sun 19 Oct 2025 21:01:51 +0000
Manifest this update: Sun 19 Oct 2025 21:01:51 +0000
Manifest next update: Mon 20 Oct 2025 21:01:51 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: Px41sVhrkzHlLsi2TvdxpyeNW2UaEhUXSpbZ2QladSg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:55:d3:c1:cc:cb:c7:fa:22:41:46:7c:c4:cc:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Oct 19 21:01:51 2025 GMT
Not After : Oct 20 21:01:51 2025 GMT
Subject: CN=c32173853caaa593a90ad0b33dbf60174feea227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:19:1f:d9:7b:63:c0:1a:94:d6:b9:b1:38:65:
40:5e:70:70:2a:26:69:2a:86:09:6a:84:20:cd:14:
ad:d2:33:1d:6c:fe:e6:ad:49:95:f6:aa:b9:3f:e9:
b4:9f:f2:94:79:cd:ed:91:f1:50:ef:0c:f5:f9:bd:
a6:7e:09:62:b0:27:ad:2e:2a:0a:49:7b:00:ed:a7:
7d:8c:f7:63:7c:85:7d:cc:0d:d7:42:6a:fa:50:d9:
cf:49:ec:f7:05:cf:4a:32:9d:36:2e:12:36:07:90:
e2:49:6f:ee:7f:9b:87:ff:f7:1f:0c:5b:0e:b0:83:
cc:6e:01:0b:a0:d5:b8:99:98:c9:09:66:d2:4f:30:
ba:d4:d0:6d:35:c6:dc:18:d9:81:7f:a5:0a:85:42:
97:8a:d7:80:b1:e2:98:43:18:6f:60:3c:ca:74:89:
4e:e3:3d:59:ce:73:92:64:58:6f:00:0a:8f:3f:64:
0e:89:9d:2c:f7:55:bc:73:38:13:a4:4a:9c:b6:2e:
d5:b4:b2:00:fc:35:13:07:b3:f7:4a:10:1d:31:f2:
88:f0:24:d8:18:6b:b2:d2:79:00:93:23:b9:66:84:
80:5f:f4:9a:9c:4b:5a:15:c9:03:f0:22:3c:6c:fe:
56:fd:dc:f5:33:b8:30:72:3a:00:a3:50:57:2a:77:
2d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:21:73:85:3C:AA:A5:93:A9:0A:D0:B3:3D:BF:60:17:4F:EE:A2:27
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:97:67:f8:57:d6:c4:eb:1d:61:1e:58:bc:be:49:70:12:e5:
fc:86:8b:f0:33:60:97:f6:c0:a3:56:db:8e:7c:b9:e4:07:a9:
f3:07:00:b2:c1:cd:18:88:06:49:e9:ea:f9:ff:a4:15:be:6b:
8f:1e:a9:e6:da:d5:7e:b3:aa:2d:6d:2b:17:bc:d0:93:87:a4:
6b:0d:44:3e:15:35:b4:dc:5a:cd:e1:df:70:ba:db:db:0b:47:
53:66:ae:b5:98:30:e4:0e:b9:63:5b:77:65:e0:ce:42:04:ce:
a6:a5:38:79:3d:8e:74:48:67:58:97:a2:ee:d2:63:86:8f:a5:
26:73:e1:e7:27:ad:ed:a6:7b:bc:a6:97:af:c4:bc:ce:f6:26:
29:2a:92:77:79:3c:62:be:38:4a:d0:f6:12:62:e9:67:61:40:
3e:42:30:2a:01:cb:03:39:c3:b0:5a:10:4c:f9:c3:7f:66:f7:
d1:b4:dc:e8:72:6f:4d:30:06:ac:dd:31:63:f3:b8:31:04:7e:
a2:97:1d:9c:1b:6c:db:e5:bc:7b:76:66:c4:0b:c9:cf:9f:9e:
72:63:1a:d6:44:0e:b6:9f:22:f2:f3:62:66:00:93:49:b2:fd:
9c:d8:f8:4d:33:d9:df:23:fa:7a:33:9e:e1:51:9d:f3:8f:19:
3e:e8:ae:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:12:28 2025 by rpki-client