Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: A25iuqXyiCPJAHSv2AOkpvh6SSKyA/Rcwne/nVLJ/nQ=
Subject key identifier: 7D:45:69:63:11:F8:37:AE:F6:D4:52:B0:14:91:B8:9F:7B:D5:A2:70
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 0198D6605A866B72B7EF7C1DADABA6242306
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 08E4
Signing time: Sat 23 Aug 2025 10:01:35 +0000
Manifest this update: Sat 23 Aug 2025 10:01:35 +0000
Manifest next update: Sun 24 Aug 2025 10:01:35 +0000
Files and hashes: 1: JoFwTwAv-_c9ZLWMyBNEWDPvfas.roa (hash: ErYlkkNh49mz7B2O46c+uSN3yYpaocdKkRzHsCd2I3A=)
2: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: d9YBzD9gIk4P41hcaxNRGhFsuqtPbs3xcSjC6Z4xkPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:5a:86:6b:72:b7:ef:7c:1d:ad:ab:a6:24:23:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: Aug 23 10:01:35 2025 GMT
Not After : Aug 24 10:01:35 2025 GMT
Subject: CN=7d45696311f837aef6d452b01491b89f7bd5a270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0f:c5:03:fb:ea:22:0d:77:dc:fd:32:6f:b5:
5c:05:b8:b1:09:53:72:68:d8:09:2c:b5:6f:5d:19:
30:5f:c2:e5:42:dd:36:7a:23:14:3a:54:13:9b:00:
d0:1d:e0:8f:37:99:56:81:af:88:c9:e9:f5:68:6c:
cb:99:b3:f2:cb:42:7c:e1:90:6f:a8:1e:6f:84:21:
3e:1a:13:a1:9e:cb:11:98:57:b2:a6:8a:e8:c5:c4:
c1:43:1f:69:a2:0a:04:e2:2e:cf:cf:dd:2d:93:07:
2b:b0:ca:ed:9d:3c:a9:63:61:5b:a9:31:39:61:98:
b3:80:df:2d:cc:85:9d:58:a0:9f:d9:1c:7f:f1:1e:
d1:91:35:89:fb:c8:68:30:f8:2a:0f:99:bd:9e:c9:
42:17:2c:04:55:19:c5:42:1f:53:c7:9b:87:73:dc:
4a:e5:80:b9:b1:5b:db:62:c3:89:4b:25:17:f8:b3:
e0:98:5a:6f:8a:79:4a:53:2f:a4:08:a9:82:ad:94:
9e:b8:ef:f6:ea:b8:c9:90:11:76:79:4e:d4:be:a6:
24:e4:4c:e1:71:13:2a:da:aa:92:2a:f9:16:4e:5b:
51:e3:06:8b:8c:12:55:3f:27:c1:bc:2b:4e:95:5d:
3c:37:e7:ca:39:1f:3f:7b:fd:0e:20:e8:ea:bb:a3:
80:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:45:69:63:11:F8:37:AE:F6:D4:52:B0:14:91:B8:9F:7B:D5:A2:70
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:6f:2a:76:3e:77:34:17:cf:f2:08:c2:a4:c9:a0:59:a4:0e:
38:1f:95:27:c3:bd:59:45:40:9a:5f:ba:35:d1:b2:8b:1e:20:
15:c9:31:99:c7:14:d0:9a:9d:8f:2f:35:39:5e:e3:44:2c:b0:
08:b4:c4:d0:37:22:06:49:da:86:94:03:30:26:b6:ea:c9:db:
3a:07:42:db:1d:16:4e:46:8f:c9:6b:f4:e8:a3:c2:bf:14:68:
7f:5f:ec:bd:8e:70:a6:79:c8:c5:f6:12:81:22:1b:e2:7e:ba:
ce:ac:b0:57:b5:3a:3e:5b:99:b2:6c:b2:cf:53:dc:d5:36:e4:
bb:dd:e9:3c:29:2e:e6:aa:ff:e1:58:d4:39:d7:df:f6:bb:49:
7b:7d:d2:00:82:95:18:a9:f2:e2:ed:08:c9:d5:a5:9f:43:3c:
41:09:45:af:22:f5:a8:10:ea:b1:be:69:02:b6:3d:ff:9e:27:
bc:6d:4b:84:e3:e9:24:bf:10:9e:14:b2:46:46:b4:dd:36:b5:
a3:9a:97:2c:48:37:1e:74:23:d7:84:e1:a3:01:a8:67:2f:cd:
f4:b9:37:4e:18:ee:56:d2:14:24:85:80:24:cc:cc:f1:9e:5b:
4b:33:f8:b4:90:93:4b:62:d8:4b:71:cb:6b:b5:b0:24:c3:d3:
be:c2:eb:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:37:28 2025 by rpki-client