Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
File: O9_XYE36DriuIOkPzxMDk7ioVko.mft (raw, json)
Hash identifier: BlvTdwO4wZgU+h/Gjh2RFU82zJg6MR+K8/jZHkE+kSU=
Subject key identifier: 0E:7A:54:9D:D5:0B:58:A9:21:68:C3:30:F6:57:D3:BE:D0:7B:73:37
Authority key identifier: 3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
Certificate issuer: /CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Certificate serial: 019931240524C756AAAED745FDBD0FA23AF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
Manifest number: 1679
Signing time: Wed 10 Sep 2025 01:01:08 +0000
Manifest this update: Wed 10 Sep 2025 01:01:08 +0000
Manifest next update: Thu 11 Sep 2025 01:01:08 +0000
Files and hashes: 1: O9_XYE36DriuIOkPzxMDk7ioVko.crl (hash: BseOqeroOx/DIrYxJzcbZ5zOdITkHa3L7BlTVdOnXdc=)
2: m0kgiTT_WYsp23pJuD7SLX4KQwM.roa (hash: VIdUf2MaaJNNuBUU6XlHsX2gourJRTd5TApzwygVz+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:24:05:24:c7:56:aa:ae:d7:45:fd:bd:0f:a2:3a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bdfd7604dfa0eb8ae20e90fcf130393b8a8564a
Validity
Not Before: Sep 10 01:01:08 2025 GMT
Not After : Sep 11 01:01:08 2025 GMT
Subject: CN=0e7a549dd50b58a92168c330f657d3bed07b7337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:13:81:d2:7d:43:32:6d:01:52:af:31:92:7e:
50:e1:02:59:2b:1c:4a:d3:16:23:db:ff:66:7f:cb:
bc:ca:62:57:a8:f3:7e:f0:41:ba:79:52:22:5f:85:
61:ad:13:9d:3a:02:76:92:d6:2b:9c:32:b1:7f:81:
f2:21:c1:1a:fe:61:7f:17:7c:19:05:00:32:aa:15:
a2:f2:bb:25:66:a4:d8:24:37:bd:9d:ff:00:4d:4b:
93:e2:46:7c:54:8b:5b:44:a4:0d:f9:a4:6d:73:54:
86:d1:38:28:4f:76:eb:a0:92:3c:bd:6e:c9:c4:f9:
d5:0b:22:ca:9a:60:11:24:6c:cc:fc:56:8b:92:9a:
d8:80:df:5c:d8:2c:16:96:9e:de:48:43:24:7c:64:
7f:f7:e0:41:3d:6c:82:8b:a3:35:ee:6c:66:d6:3b:
e0:1e:1d:af:c6:66:db:62:16:2e:4e:26:38:cf:8d:
1b:cb:0f:53:d0:95:7f:50:39:8f:70:e5:57:61:42:
0a:a8:ec:a3:b4:87:5c:41:a4:b3:ea:a4:46:60:ee:
59:bb:3c:5c:3a:9a:25:b4:cf:00:f5:9f:f3:2e:74:
88:69:9b:65:99:83:b1:e7:9a:8c:68:55:35:1e:19:
3b:ad:89:26:c4:b9:93:96:e3:ad:79:c4:cf:40:d4:
38:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7A:54:9D:D5:0B:58:A9:21:68:C3:30:F6:57:D3:BE:D0:7B:73:37
X509v3 Authority Key Identifier:
keyid:3B:DF:D7:60:4D:FA:0E:B8:AE:20:E9:0F:CF:13:03:93:B8:A8:56:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9_XYE36DriuIOkPzxMDk7ioVko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/8dc2c7-3fc0-446d-807c-ef6c9ead611c/1/O9_XYE36DriuIOkPzxMDk7ioVko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:b5:65:3a:8a:b1:36:56:6d:01:a0:f8:28:cf:0e:03:42:50:
2d:c4:a6:fa:a6:5f:01:b0:6d:ce:b7:c0:51:16:94:6f:22:64:
52:1f:2d:a1:26:4c:19:1c:2c:9d:0e:3e:43:0b:45:57:ee:fa:
d8:73:96:95:f6:69:25:1c:f6:cd:68:b6:72:87:3b:75:a6:8f:
7a:70:ad:11:33:8c:bf:9e:74:a8:5e:bb:be:78:0f:6f:1c:85:
4a:f6:c3:66:55:e2:d6:83:07:4d:03:2b:bb:6b:c5:e8:22:3c:
9f:f6:25:2a:e7:cd:db:67:e0:dd:ca:07:bc:dc:61:51:55:40:
b2:89:9a:77:33:6d:05:1d:82:af:7a:57:02:46:b1:7d:59:07:
72:31:a7:8d:9a:3f:d7:32:d4:b8:7d:65:1f:7d:09:40:d7:14:
76:c5:7e:70:c4:82:50:9e:5d:96:9d:36:50:eb:bf:d2:9a:a4:
1c:99:00:75:c4:26:d9:6c:24:05:13:7c:29:1c:43:a1:80:aa:
60:65:dd:59:b0:b7:22:7b:c5:6a:06:7e:d8:30:39:01:35:a5:
27:29:b6:e3:17:2a:08:9b:1f:6b:82:35:f1:77:54:b1:bd:94:
ac:b4:86:27:59:e6:99:65:f4:4e:e4:29:b5:c0:87:19:8c:3a:
9c:6f:86:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:50:23 2025 by rpki-client