Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: rbzHFsj6uXJU1TAOr9r1CixaP1vpTHpBgSi1xTW9N+s=
Subject key identifier: 63:0D:01:41:B9:4F:AC:1F:8F:42:8C:56:A8:16:62:71:AA:64:B0:BB
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 0197B6A0F7E0BE4D21F938FE8F613501D979
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 084F
Signing time: Sat 28 Jun 2025 13:01:31 +0000
Manifest this update: Sat 28 Jun 2025 13:01:31 +0000
Manifest next update: Sun 29 Jun 2025 13:01:31 +0000
Files and hashes: 1: JoFwTwAv-_c9ZLWMyBNEWDPvfas.roa (hash: ErYlkkNh49mz7B2O46c+uSN3yYpaocdKkRzHsCd2I3A=)
2: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: fVQDSkHH3kATj7r2TF6JRp4i1+07Ne9sRQulbJWlIRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:f7:e0:be:4d:21:f9:38:fe:8f:61:35:01:d9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: Jun 28 13:01:31 2025 GMT
Not After : Jun 29 13:01:31 2025 GMT
Subject: CN=630d0141b94fac1f8f428c56a8166271aa64b0bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6b:96:e9:b3:04:48:47:43:70:4b:78:ce:36:
19:66:b9:31:26:9f:70:c0:cb:3d:ed:bc:ca:7b:2e:
35:42:20:75:72:9a:2f:4b:bf:6f:ce:e6:81:24:b1:
ef:40:33:12:bc:64:5e:17:37:4a:b5:46:ce:7c:c7:
85:bc:62:26:2b:77:bc:a5:64:44:de:1d:67:a5:e4:
28:aa:9d:48:3d:ca:55:da:9e:ba:ea:05:e7:cb:32:
f5:4b:7f:f1:2f:16:a6:73:b9:26:33:07:2c:d7:79:
f1:9a:44:bc:d8:28:1d:18:1e:6a:88:5b:84:d5:b9:
69:cb:a7:78:85:86:9a:a7:2c:7f:e8:55:2b:30:c7:
98:ad:ee:4e:7e:e2:20:10:df:b3:1f:b3:6e:7f:43:
0f:88:2f:bc:27:29:0e:88:3d:b4:31:27:ff:e4:66:
1d:db:6f:30:6b:17:d3:b0:20:99:99:d6:d4:7d:d2:
54:e4:bf:e2:44:d3:5a:3f:d1:3e:b1:eb:b9:cd:90:
ee:50:b7:09:ae:bb:8b:bf:66:74:54:be:94:62:b5:
88:44:8c:57:ce:2f:0a:03:f1:03:a4:e5:00:c0:42:
2f:d7:78:0c:ea:63:12:ff:bf:a5:9e:e3:7b:0f:e7:
33:dd:29:ae:0b:90:69:c2:00:50:28:56:25:73:da:
ce:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0D:01:41:B9:4F:AC:1F:8F:42:8C:56:A8:16:62:71:AA:64:B0:BB
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:d8:72:ea:d9:36:76:ad:f2:3b:c0:d9:d7:8c:c0:82:dc:14:
76:bc:f1:55:d3:6d:77:03:b3:6b:91:36:fa:6c:a0:41:57:35:
65:d7:23:0b:5f:1d:b3:7e:b0:33:69:9e:e3:0d:7b:b3:29:d1:
5c:62:95:b0:bd:f4:9d:cb:6a:fb:a6:e8:d9:2e:d6:83:0a:52:
7c:0f:f3:96:26:31:26:4e:14:53:d3:43:1b:50:4c:b0:7d:67:
98:d1:5d:00:43:08:6d:8f:12:99:6e:de:05:0c:8d:ed:dd:2f:
d7:1d:58:16:ed:62:f8:32:ca:5f:b6:da:c3:f5:45:10:b9:d1:
87:89:41:42:a3:c1:20:b5:40:70:aa:91:16:16:ce:71:8e:c2:
6c:9a:3a:d8:01:db:74:f8:a0:c1:c7:0f:21:15:e9:56:25:86:
58:ef:41:13:2b:be:04:af:05:4a:a9:61:3f:5a:45:96:8f:cb:
90:4f:eb:45:e8:fb:a2:0b:b2:c0:6f:8f:69:32:51:91:ad:9b:
08:c8:91:9b:18:aa:ba:bf:23:db:b5:1c:21:11:0d:7a:98:5f:
f2:39:c8:01:c5:e4:2a:11:48:41:2e:99:2c:cb:16:cd:b1:04:
fe:75:57:fd:00:37:ff:4e:ef:10:26:1f:12:5a:37:e3:f8:c9:
41:60:a7:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:59:39 2025 by rpki-client