Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: zo/yPJ18Y9THXMFUOXXdcSszm5xtP12yA1we4CtfuE4=
Subject key identifier: 19:BE:C3:BF:91:04:A1:2F:B0:8A:AA:56:B5:27:E5:0F:54:85:B3:2A
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 019A72258FFD94532F656EEE666E670EBD81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 041E
Signing time: Tue 11 Nov 2025 09:00:55 +0000
Manifest this update: Tue 11 Nov 2025 09:00:55 +0000
Manifest next update: Wed 12 Nov 2025 09:00:55 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: P8ArMUhUWUFtc4kBSEy4FEV2zSUo5qP9zYqZuG2KO2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:8f:fd:94:53:2f:65:6e:ee:66:6e:67:0e:bd:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Nov 11 09:00:55 2025 GMT
Not After : Nov 12 09:00:55 2025 GMT
Subject: CN=19bec3bf9104a12fb08aaa56b527e50f5485b32a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:59:1e:0b:b1:c9:3c:d9:e8:c2:5d:d9:19:3a:
f9:73:9f:5c:22:da:77:60:ab:6b:c4:23:63:a8:33:
81:49:89:03:17:73:54:ba:d1:1e:6b:10:27:b8:77:
45:6d:73:e2:e7:f5:a9:af:c4:35:83:f7:19:26:8e:
b9:82:90:51:64:51:b9:0d:86:23:b1:a4:d6:47:d4:
6e:07:9a:e1:e2:ab:9b:4a:62:bf:75:87:75:e0:0d:
e1:fd:9c:50:be:45:b7:84:14:6d:d6:ee:28:b5:22:
85:a3:27:db:68:41:ca:2c:96:79:51:11:65:5a:64:
b8:1b:6d:3d:64:86:cd:86:31:04:3d:2a:0f:06:81:
ec:90:06:fc:64:5c:23:1b:37:77:30:b3:54:36:fc:
1f:83:0b:7f:17:2d:32:a3:1b:8e:60:3c:8c:1c:90:
60:89:e1:df:48:a7:94:df:a3:1e:7d:96:53:81:c6:
63:72:0a:ad:bf:ae:27:81:92:30:ff:61:41:b0:f3:
5f:b1:23:13:57:34:12:4f:a8:77:21:4a:f8:75:18:
02:0c:91:70:e5:85:79:50:37:08:01:a1:ec:2b:44:
e8:75:63:76:b2:93:fa:ed:38:e1:33:a1:9b:c5:62:
48:de:fe:b6:4b:75:67:b3:07:ad:a5:b9:1f:0c:b3:
7c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BE:C3:BF:91:04:A1:2F:B0:8A:AA:56:B5:27:E5:0F:54:85:B3:2A
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:51:fb:78:7b:c6:65:2f:78:97:7f:c3:d3:5e:e0:a0:1b:ec:
b9:eb:23:3c:f9:c3:33:0a:ab:1f:6c:3b:09:e3:80:f9:7b:5c:
2d:f7:f8:d2:1f:f1:d8:a3:84:da:ae:01:5a:41:8b:c5:80:1a:
c0:1c:99:48:fc:c6:a3:61:21:66:6e:77:56:a2:3f:8a:1a:bd:
f1:86:d6:30:07:3d:32:e5:65:68:03:73:60:45:1f:7c:b2:64:
64:f6:b1:71:8b:21:e1:cb:c3:f5:0a:d9:15:a9:cf:93:57:fe:
66:1b:a2:15:92:15:8e:e1:99:f4:4b:0a:9a:2d:d1:2d:e3:c5:
3f:8b:59:c4:22:6d:6c:b9:a7:00:1e:04:ac:25:78:2c:0c:41:
49:3f:43:b1:95:57:35:6a:50:da:ed:c9:82:77:a0:22:80:53:
34:94:8b:94:54:9a:c1:c3:c6:73:a8:62:a6:ab:e9:e4:e0:d6:
74:fb:66:b3:e8:cb:d8:e3:0b:4a:c7:07:1e:5f:86:a9:e1:d1:
ee:04:7d:0e:6c:d5:11:75:e6:e2:85:fd:97:bb:71:8b:81:cf:
64:b0:b1:2c:c8:5b:e1:59:48:56:4d:25:79:e5:a4:1c:d6:a5:
92:8b:b9:89:35:85:f6:da:24:85:6c:48:09:c1:d2:10:a6:78:
5f:12:c6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:22:15 2025 by rpki-client