Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
File: O2MTmh9PiMMM7iIckUajbbVU_3A.mft (raw, json)
Hash identifier: hqdnNcpLk6OjbWPmb5LMyFTBoeYZxKw49C51ZMsIago=
Subject key identifier: EA:8E:99:84:5C:A3:BB:A3:14:D5:CA:E8:3A:8F:E9:36:08:A9:16:28
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 019923A038E56C599CC11B48E329F5B85472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
Manifest number: 090C
Signing time: Sun 07 Sep 2025 10:02:06 +0000
Manifest this update: Sun 07 Sep 2025 10:02:06 +0000
Manifest next update: Mon 08 Sep 2025 10:02:06 +0000
Files and hashes: 1: JoFwTwAv-_c9ZLWMyBNEWDPvfas.roa (hash: ErYlkkNh49mz7B2O46c+uSN3yYpaocdKkRzHsCd2I3A=)
2: O2MTmh9PiMMM7iIckUajbbVU_3A.crl (hash: 4xsBlFgZbcVf6aPVWwPtoNeJbBc0HPm0fmCjgPiYDqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:38:e5:6c:59:9c:c1:1b:48:e3:29:f5:b8:54:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: Sep 7 10:02:06 2025 GMT
Not After : Sep 8 10:02:06 2025 GMT
Subject: CN=ea8e99845ca3bba314d5cae83a8fe93608a91628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3a:4c:52:22:1e:c3:a4:03:b1:cd:af:0d:dc:
77:66:0b:63:67:5e:40:5e:28:b6:6f:06:8d:4a:4b:
1d:5d:f7:dd:61:ab:c5:3c:28:89:0b:33:68:40:42:
45:ae:9a:b2:f8:14:cc:ef:a5:ac:c4:cd:80:d7:87:
54:3c:85:15:02:2e:2e:50:aa:99:98:86:0f:04:42:
1f:d9:1a:c7:d8:51:f3:1f:e7:c5:fb:26:e6:fe:ac:
48:88:31:69:fd:4a:7c:e9:02:02:20:21:28:05:f6:
5c:09:ca:9f:5d:41:8e:c7:6e:58:46:12:6d:c7:66:
e3:c0:22:63:ac:54:59:3b:48:af:5c:9f:93:0b:cb:
9f:1f:48:07:98:b5:40:d6:71:f7:65:c9:b1:74:af:
00:39:d9:af:f5:5d:4a:41:dc:58:94:bc:95:aa:77:
a7:c7:45:ea:a9:13:0c:b5:6f:9d:ed:bc:8e:67:cc:
6c:32:55:ad:90:f1:aa:4d:c2:8a:7b:87:d0:90:86:
17:a7:68:0e:91:e4:e2:b6:49:17:9a:7c:05:f5:f7:
b8:75:64:b6:ad:bd:2b:42:8e:b5:f0:40:cf:27:82:
04:6e:7e:6a:76:53:bc:6c:0a:2d:6d:a7:9b:da:29:
3c:c5:33:4e:5d:7f:c1:05:e5:b0:8d:fa:53:cc:49:
1e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8E:99:84:5C:A3:BB:A3:14:D5:CA:E8:3A:8F:E9:36:08:A9:16:28
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:04:93:57:af:6d:2a:32:5b:3c:ad:e9:89:e6:af:af:26:59:
3a:5c:9c:b7:39:5d:3b:ee:02:e2:89:8b:ac:be:64:48:ca:d9:
ba:da:5a:25:78:9b:74:0b:0c:6f:57:fb:c5:ed:b3:07:1d:ce:
c1:b8:74:1d:dc:22:8e:23:d4:4e:14:d8:cb:e7:a0:87:59:04:
1b:62:a1:ea:4e:65:5f:87:dc:71:8b:0b:9a:9f:ca:dc:a4:2c:
ee:f3:a3:48:70:b7:3e:f6:36:e9:b3:f3:a3:b5:d4:aa:1e:4b:
f9:ab:48:03:50:97:1d:24:49:9f:6c:9b:6a:0c:f2:6d:f1:bb:
c1:f0:64:5a:94:f5:d3:a6:e6:86:ee:0a:5c:65:45:a9:86:f5:
93:1a:19:d7:57:26:a3:03:31:06:6e:83:75:cc:2f:87:7f:93:
49:3f:4d:06:40:80:4b:3d:d3:8d:38:f5:0b:a8:b8:88:03:5a:
a3:3f:a3:10:73:02:35:53:64:f8:5f:54:d4:d9:db:17:65:fc:
b2:1b:42:73:e4:f2:a7:43:0a:c3:40:ce:3e:10:ba:62:ca:a5:
1c:c1:db:37:87:94:4b:21:b3:f2:a9:f6:25:a4:16:16:1c:03:
3f:e8:f2:8f:77:f3:b8:e5:92:e9:76:7b:96:eb:98:9b:55:53:
e4:46:8e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:39 2025 by rpki-client