Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: wTc9uegxmSo8wchKqe/+sDsDR1zhcnupdmBMmzSkHbE=
Subject key identifier: 41:08:38:2A:44:C1:6C:02:29:57:36:B6:7D:38:0D:7B:54:10:0C:75
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 0199240D5EC6A20D2726A17B58603BEB3EF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 0371
Signing time: Sun 07 Sep 2025 12:01:19 +0000
Manifest this update: Sun 07 Sep 2025 12:01:19 +0000
Manifest next update: Mon 08 Sep 2025 12:01:19 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: gA8MFg3Heie1Q85cW8RWLlBqeVwGUGR5NcsVESB9eAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:5e:c6:a2:0d:27:26:a1:7b:58:60:3b:eb:3e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Sep 7 12:01:19 2025 GMT
Not After : Sep 8 12:01:19 2025 GMT
Subject: CN=4108382a44c16c02295736b67d380d7b54100c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b9:cc:12:cd:52:30:cf:17:b2:81:1a:ec:de:
06:78:05:29:94:63:fd:39:42:62:d3:87:5c:34:61:
68:26:e7:f5:1f:e3:8d:57:48:e7:24:34:bf:f8:db:
b0:b1:83:30:e5:88:0b:38:e4:a6:5f:06:08:ba:1f:
90:a4:36:d3:07:49:e5:df:9b:00:ef:34:1c:16:62:
51:ef:65:2c:a0:97:a3:05:ba:ec:69:cd:cd:26:a1:
fc:d2:18:ab:18:d6:df:9e:b5:44:2a:9d:d9:b3:39:
b9:d9:46:04:82:76:75:6b:89:a3:cc:e4:20:48:aa:
32:13:4f:97:6b:11:2b:93:2e:ea:b3:be:e3:54:47:
aa:c8:92:a8:ce:db:8c:fc:b8:26:65:5e:08:10:f0:
ec:b3:bd:d5:98:8c:9b:7e:d3:c8:e7:d9:3c:b9:dd:
9c:02:e1:dc:fa:ce:bd:9d:7d:50:02:d0:5c:09:14:
db:74:3f:01:c7:09:09:3a:d5:93:0d:35:64:cf:59:
91:36:74:1b:cd:b5:24:c9:66:7a:14:18:c6:66:f1:
7d:6a:79:fd:e7:6f:44:3d:68:11:8a:56:67:d0:56:
92:46:10:cf:b2:a7:7f:62:17:81:f2:11:89:f6:fd:
d8:a3:3a:8a:cb:1c:42:2e:ae:fe:ec:cf:37:23:74:
98:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:08:38:2A:44:C1:6C:02:29:57:36:B6:7D:38:0D:7B:54:10:0C:75
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:13:c0:7e:a9:b9:b5:dc:d0:d7:8a:c1:b9:24:97:3c:85:b7:
36:82:9e:29:72:e8:95:56:4b:40:fb:f2:b7:2e:4b:04:6d:a8:
54:2c:50:c4:e1:55:a3:a5:57:a0:f8:85:8c:a9:94:35:a1:ae:
d4:7c:d7:e3:b5:b4:a6:20:d4:96:92:fb:d3:a4:12:c4:d6:f9:
9e:10:43:d3:02:cd:55:d5:e8:87:b3:c2:80:c0:df:29:b5:e2:
b1:e6:d1:80:00:43:e8:18:48:42:7c:f7:d4:e3:08:09:39:25:
95:75:95:54:df:2e:b9:d5:3d:12:1e:e0:92:fd:9a:86:ac:06:
8f:8d:58:84:0d:b9:1e:25:c0:44:cb:d1:be:92:12:7e:e7:27:
7c:b5:9a:9a:04:7b:9a:4c:59:6d:09:e9:16:c5:eb:fd:da:7f:
98:36:39:99:e5:84:69:49:59:84:ca:46:8f:aa:25:4a:01:98:
e9:99:43:77:5e:11:a1:ab:66:f3:e8:50:c2:a3:6a:ce:48:a3:
58:3a:dc:2a:5c:c2:a4:1b:9f:23:6d:4e:78:9c:ca:ad:30:b7:
2f:b2:01:a3:f1:47:18:0a:ab:1a:f5:76:26:af:cd:ae:d5:04:
f5:88:da:eb:7d:2f:fa:54:ce:2d:c2:56:08:bb:f7:dd:14:15:
7a:3a:aa:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkkDV7Gog0nJqF7WGA76z7wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1
ZDA3ZjMwHhcNMjUwOTA3MTIwMTE5WhcNMjUwOTA4MTIwMTE5WjAzMTEwLwYDVQQD
Eyg0MTA4MzgyYTQ0YzE2YzAyMjk1NzM2YjY3ZDM4MGQ3YjU0MTAwYzc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLnMEs1SMM8XsoEa7N4GeAUplGP9
OUJi04dcNGFoJuf1H+ONV0jnJDS/+NuwsYMw5YgLOOSmXwYIuh+QpDbTB0nl35sA
7zQcFmJR72UsoJejBbrsac3NJqH80hirGNbfnrVEKp3Zszm52UYEgnZ1a4mjzOQg
SKoyE0+XaxErky7qs77jVEeqyJKoztuM/LgmZV4IEPDss73VmIybftPI59k8ud2c
AuHc+s69nX1QAtBcCRTbdD8BxwkJOtWTDTVkz1mRNnQbzbUkyWZ6FBjGZvF9ann9
529EPWgRilZn0FaSRhDPsqd/YheB8hGJ9v3YozqKyxxCLq7+7M83I3SYtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEEIOCpEwWwCKVc2tn04DXtUEAx1MB8GA1UdIwQY
MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt
ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5
LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZxPAfqm5
tdzQ14rBuSSXPIW3NoKeKXLolVZLQPvyty5LBG2oVCxQxOFVo6VXoPiFjKmUNaGu
1HzX47W0piDUlpL706QSxNb5nhBD0wLNVdXoh7PCgMDfKbXisebRgABD6BhIQnz3
1OMICTkllXWVVN8uudU9Eh7gkv2ahqwGj41YhA25HiXARMvRvpISfucnfLWamgR7
mkxZbQnpFsXr/dp/mDY5meWEaUlZhMpGj6olSgGY6ZlDd14Roatm8+hQwqNqzkij
WDrcKlzCpBufI21OeJzKrTC3L7IBo/FHGAqrGvV2Jq/NrtUE9Yja630v+lTOLcJW
CLv33RQVejqqqQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:36:23 2025 by rpki-client