Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: 5bkV1aFMLGzl0ydDML9euikjV7H9aKbEv7+HA/5rJfM=
Subject key identifier: C9:E1:64:66:75:02:D5:30:D9:51:59:F1:89:75:26:43:E1:CA:5C:DF
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 0197470C06FE02222A540FF602FFBA298380
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 027A
Signing time: Fri 06 Jun 2025 21:00:59 +0000
Manifest this update: Fri 06 Jun 2025 21:00:59 +0000
Manifest next update: Sat 07 Jun 2025 21:00:59 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: FryOvMnuUxJibIoug7WN2X9B9YAzxaGtvhIqjDQ2+Xk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:06:fe:02:22:2a:54:0f:f6:02:ff:ba:29:83:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Jun 6 21:00:59 2025 GMT
Not After : Jun 7 21:00:59 2025 GMT
Subject: CN=c9e164667502d530d95159f189752643e1ca5cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fa:db:5c:04:f2:7e:61:b0:56:b4:6e:ec:05:
cf:5e:7f:51:0f:78:43:f6:59:eb:17:8e:8d:f3:65:
0b:48:38:0f:b0:87:e2:33:f4:4c:2e:41:1d:5f:fe:
b9:ca:75:4a:78:a7:3c:d4:44:db:ab:34:e7:84:ac:
fb:e0:24:df:43:43:11:19:20:a0:52:f2:3b:9a:d3:
1b:ff:70:3e:c7:bc:27:74:25:de:38:34:ce:b7:c4:
bc:c9:56:7c:4d:fe:2b:2f:29:83:98:12:44:bd:7e:
6e:75:b3:c5:32:95:2a:f8:6f:1b:b3:b1:9f:64:62:
79:51:da:51:79:74:2a:c1:39:e2:e2:69:c0:f4:52:
54:3c:48:4d:10:a1:d1:b2:b8:3e:6a:b5:ae:0e:93:
aa:35:c1:20:5c:d5:4b:0c:84:48:8c:07:d4:25:67:
52:a8:63:09:f9:bf:f3:63:d2:a1:3e:4e:25:8d:0c:
56:1e:17:70:c3:04:24:39:15:0b:a2:38:2b:91:8c:
1c:70:c2:a2:95:5d:81:94:4c:7b:00:57:ab:79:03:
6b:1a:57:76:82:2b:5f:bc:e4:f5:5f:71:0f:5f:e5:
2d:19:a1:7f:8d:c5:7d:c2:e9:cf:91:aa:9e:e2:30:
97:6c:2e:5d:69:34:d6:7b:57:15:49:2a:a7:73:ca:
6c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E1:64:66:75:02:D5:30:D9:51:59:F1:89:75:26:43:E1:CA:5C:DF
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:2e:4e:93:4a:91:a2:52:ff:4d:86:00:2b:71:83:8f:28:6d:
30:7e:3b:e9:92:3d:80:5b:1d:8f:06:25:7b:a9:1e:86:1d:ef:
ff:50:20:51:eb:f0:62:60:43:c6:b9:2b:d1:7c:fb:f3:58:8b:
bf:ae:6d:21:64:40:40:71:b0:dd:ea:bf:7b:a6:3e:e8:3d:9b:
c4:8f:97:08:ba:32:d8:71:32:77:52:83:38:8a:74:61:2b:bc:
3c:96:1f:37:f4:22:ed:b7:5b:3e:5c:73:22:f2:4d:8f:08:18:
6e:14:a2:63:f3:61:95:fe:ce:fc:d8:26:e5:0d:9a:64:37:f2:
cd:2b:64:7d:71:d3:4d:c8:24:78:19:2f:60:38:9b:8e:10:c6:
e7:b4:1b:66:40:0c:8b:ef:ac:91:35:7a:d6:4a:fe:eb:35:8d:
97:54:9e:52:bb:47:67:c6:83:f0:cb:0f:c8:04:d2:b1:d1:e6:
4e:88:b6:b4:0f:af:fe:57:0b:8c:68:29:99:ce:c9:8b:c8:31:
8e:53:7b:33:73:58:24:45:40:6e:08:47:fa:01:7f:56:75:9d:
21:af:e0:e7:4b:a3:54:da:4a:84:d6:8b:3b:c6:fa:af:3d:b5:
b6:73:27:9b:d5:de:85:38:91:9f:d1:90:b9:e8:cd:03:ba:8c:
fc:fb:c0:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHDAb+AiIqVA/2Av+6KYOAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1
ZDA3ZjMwHhcNMjUwNjA2MjEwMDU5WhcNMjUwNjA3MjEwMDU5WjAzMTEwLwYDVQQD
EyhjOWUxNjQ2Njc1MDJkNTMwZDk1MTU5ZjE4OTc1MjY0M2UxY2E1Y2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PrbXATyfmGwVrRu7AXPXn9RD3hD
9lnrF46N82ULSDgPsIfiM/RMLkEdX/65ynVKeKc81ETbqzTnhKz74CTfQ0MRGSCg
UvI7mtMb/3A+x7wndCXeODTOt8S8yVZ8Tf4rLymDmBJEvX5udbPFMpUq+G8bs7Gf
ZGJ5UdpReXQqwTni4mnA9FJUPEhNEKHRsrg+arWuDpOqNcEgXNVLDIRIjAfUJWdS
qGMJ+b/zY9KhPk4ljQxWHhdwwwQkORULojgrkYwccMKilV2BlEx7AFereQNrGld2
gitfvOT1X3EPX+UtGaF/jcV9wunPkaqe4jCXbC5daTTWe1cVSSqnc8psjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMnhZGZ1AtUw2VFZ8Yl1JkPhylzfMB8GA1UdIwQY
MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt
ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5
LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjS5Ok0qR
olL/TYYAK3GDjyhtMH476ZI9gFsdjwYle6kehh3v/1AgUevwYmBDxrkr0Xz781iL
v65tIWRAQHGw3eq/e6Y+6D2bxI+XCLoy2HEyd1KDOIp0YSu8PJYfN/Qi7bdbPlxz
IvJNjwgYbhSiY/Nhlf7O/Ngm5Q2aZDfyzStkfXHTTcgkeBkvYDibjhDG57QbZkAM
i++skTV61kr+6zWNl1SeUrtHZ8aD8MsPyATSsdHmToi2tA+v/lcLjGgpmc7Ji8gx
jlN7M3NYJEVAbghH+gF/VnWdIa/g50ujVNpKhNaLO8b6rz21tnMnm9XehTiRn9GQ
uejNA7qM/PvAQQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 04:04:43 2025 by rpki-client