Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: GZuyV001clL8Fp7PNcM7FCFaN1YeZH60iH2PZZLQHlY=
Subject key identifier: 0D:EE:0F:19:D2:2F:FE:E0:19:1E:EC:00:46:3A:BF:CB:80:D8:5D:0E
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 01974A7AC464FE7A65A2A7FD8C9879B252A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 0817
Signing time: Sat 07 Jun 2025 13:00:49 +0000
Manifest this update: Sat 07 Jun 2025 13:00:49 +0000
Manifest next update: Sun 08 Jun 2025 13:00:49 +0000
Files and hashes: 1: JoFwTwAv-_c9ZLWMyBNEWDPvfas.roa (hash: ErYlkkNh49mz7B2O46c+uSN3yYpaocdKkRzHsCd2I3A=)
2: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: qN0xhLGGPI54d+Eb2Hu4RJlw/4tNLV3egjGgK2qZ1Ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:c4:64:fe:7a:65:a2:a7:fd:8c:98:79:b2:52:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: Jun 7 13:00:49 2025 GMT
Not After : Jun 8 13:00:49 2025 GMT
Subject: CN=0dee0f19d22ffee0191eec00463abfcb80d85d0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:73:e3:bc:20:b2:f9:ec:10:05:84:1d:fd:dd:
e2:c5:47:03:51:6f:d4:7e:e0:71:c7:bd:d0:30:81:
b0:10:d8:67:d3:2c:2c:4e:c7:df:6f:91:31:bf:df:
25:61:82:25:ab:6c:e0:88:23:c8:29:e2:0f:74:1c:
f7:ad:19:87:83:94:fc:9e:64:10:cb:21:f6:91:af:
dd:be:c0:06:4b:57:06:1d:2d:85:49:9d:28:5d:ff:
93:18:58:c5:41:eb:54:f3:98:65:86:0f:ec:3f:1d:
09:17:fc:1a:ea:d0:96:dc:ca:3d:1b:aa:f2:f4:4b:
29:07:b7:83:01:a4:70:6d:11:5e:e8:4b:3c:bb:63:
25:0b:a9:64:d9:d5:cb:84:75:80:eb:77:8c:f9:c4:
16:6a:d6:be:78:ca:6c:e5:c8:3d:10:a6:e8:d8:68:
30:aa:94:8b:1c:2f:aa:13:e5:4e:8d:61:ee:75:de:
71:49:c5:c9:b9:72:c1:60:f8:8b:9f:d6:eb:88:97:
cf:53:ce:ec:47:c2:be:4d:78:00:a9:d6:4c:86:be:
a4:a7:18:27:65:d5:ee:71:50:9c:49:be:5a:ed:1f:
91:83:13:a9:da:9b:98:96:cc:97:5d:48:82:07:9c:
36:05:ae:26:c3:f2:8e:f7:2d:c8:fc:fc:46:d4:1d:
92:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EE:0F:19:D2:2F:FE:E0:19:1E:EC:00:46:3A:BF:CB:80:D8:5D:0E
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:c0:63:01:04:f3:ef:59:ca:37:68:a4:5c:ce:b0:c0:d5:13:
4f:69:9a:2e:92:91:71:45:ed:f9:a1:cb:2b:16:3a:86:9d:a8:
23:63:f7:f0:1f:90:86:9c:2f:20:3b:46:9d:ee:86:e2:b0:8c:
6d:ae:32:9e:d6:f5:ea:8e:7d:96:ad:79:46:ec:14:88:37:f2:
27:df:52:80:26:04:2f:6f:ae:78:c4:f6:4d:f8:73:83:6b:e1:
49:ab:c9:43:0f:db:fc:84:b1:92:2c:1d:74:bb:e0:7d:69:8d:
9c:fc:b7:27:c3:18:a2:82:fa:22:ed:1d:bf:32:e9:f4:d3:8f:
2b:a4:48:af:b0:94:21:86:57:bf:1a:52:a7:d6:bf:cd:63:c6:
65:f4:cb:ed:71:6e:ad:10:a0:84:de:a0:94:ff:2a:55:26:62:
7f:f7:27:92:74:89:a3:3e:2c:84:a5:92:d0:66:a3:3f:75:21:
d4:b2:74:4c:78:9d:76:54:80:74:49:e7:31:bf:1d:46:d8:92:
95:fa:40:fe:ab:89:ce:4a:01:aa:57:8d:32:8d:ee:2d:45:59:
29:9d:11:f9:a2:71:83:d5:bd:51:cd:1d:cc:44:0c:f7:b4:db:
f3:a6:42:69:91:a8:a0:65:fd:b8:30:b4:ec:c1:7f:b4:27:a0:
d6:71:cf:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:28:17 2025 by rpki-client