Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft
File: OXy939eSBtZcTugWjq9ucJAg-V0.mft (raw, json)
Hash identifier: BtA1AwVLm7xYEaZO2+VEW9rtXcYYrZGS/9iCPtqy5HE=
Subject key identifier: A9:AB:86:F1:B3:42:40:85:2A:4D:86:39:74:EB:C7:9C:C7:94:FB:4E
Authority key identifier: 39:7C:BD:DF:D7:92:06:D6:5C:4E:E8:16:8E:AF:6E:70:90:20:F9:5D
Certificate issuer: /CN=397cbddfd79206d65c4ee8168eaf6e709020f95d
Certificate serial: 0199239FF7DD1D485E86A24E9510039BE0F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXy939eSBtZcTugWjq9ucJAg-V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft
Manifest number: 0A31
Signing time: Sun 07 Sep 2025 10:01:50 +0000
Manifest this update: Sun 07 Sep 2025 10:01:50 +0000
Manifest next update: Mon 08 Sep 2025 10:01:50 +0000
Files and hashes: 1: OXy939eSBtZcTugWjq9ucJAg-V0.crl (hash: WhotUHKl0Bez0mxYQDZJd9avX+jA7ZcdNoLNhkbKYvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OXy939eSBtZcTugWjq9ucJAg-V0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:f7:dd:1d:48:5e:86:a2:4e:95:10:03:9b:e0:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=397cbddfd79206d65c4ee8168eaf6e709020f95d
Validity
Not Before: Sep 7 10:01:50 2025 GMT
Not After : Sep 8 10:01:50 2025 GMT
Subject: CN=a9ab86f1b34240852a4d863974ebc79cc794fb4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:50:ce:8a:c7:8f:1d:0a:3d:ca:3e:76:46:
dd:0f:5a:df:04:a7:da:99:06:2f:68:7d:bf:a6:f0:
49:df:de:f0:e6:e5:63:2f:ca:97:3f:dd:e7:12:d6:
02:37:a1:31:9a:3f:40:21:62:a4:7e:21:84:c4:e9:
69:e8:57:20:f8:ee:30:e5:8c:03:0d:f7:8c:f0:a0:
5e:16:ff:1c:7a:40:98:7a:26:4b:c7:b6:98:ba:c8:
3b:00:b3:f6:51:c0:21:79:6d:99:b3:9e:1a:0d:ea:
83:2a:fa:70:f2:4f:fe:21:a1:6c:44:79:b0:1d:38:
5c:3f:a9:24:f1:56:db:1c:aa:b9:95:14:01:ac:16:
9a:0c:f1:c1:cc:5d:8c:d3:2e:1e:0c:85:24:4f:ad:
6b:2d:d1:5e:c0:f8:0c:be:22:d9:c2:c5:4d:df:cb:
40:46:0f:4d:c3:0c:2c:54:91:6e:14:e6:55:a7:63:
a3:4d:ee:37:0a:29:60:6f:23:6c:8e:47:8d:4e:14:
28:9c:ab:03:02:fb:88:b8:01:19:a9:4d:14:df:80:
3a:76:e3:cc:8a:2f:39:37:f3:ba:30:84:bb:15:73:
9b:90:f9:a8:7d:3a:24:1b:b6:c8:ee:7c:5e:8c:9b:
ab:f3:86:5f:0e:f7:01:1d:4e:c2:8f:a7:a2:6b:6d:
73:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:AB:86:F1:B3:42:40:85:2A:4D:86:39:74:EB:C7:9C:C7:94:FB:4E
X509v3 Authority Key Identifier:
keyid:39:7C:BD:DF:D7:92:06:D6:5C:4E:E8:16:8E:AF:6E:70:90:20:F9:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXy939eSBtZcTugWjq9ucJAg-V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/d7a4d5-5144-4e18-887c-a6b0fde21906/1/OXy939eSBtZcTugWjq9ucJAg-V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:d0:3f:d1:c6:5b:0e:ba:47:03:8e:b9:36:ce:73:c4:5a:af:
ca:d9:06:80:ad:e4:2d:4c:38:4a:45:0c:a6:33:cc:6b:66:1b:
fa:c7:70:96:0d:94:28:c1:70:4f:7d:f0:4c:e2:77:b2:e6:54:
ca:0b:ab:bf:2a:2c:3c:43:17:a7:f0:06:37:43:db:94:43:36:
78:b8:e7:07:08:0d:50:a2:9c:e1:8e:df:80:b4:7d:fe:e9:99:
39:5f:81:ff:90:ed:8f:fc:e6:7c:44:19:af:f8:e2:96:cc:6e:
32:98:64:bd:b7:a9:96:8d:c1:c6:f9:6e:23:33:07:78:6e:53:
88:ec:49:0e:ee:30:a3:32:33:4d:d0:9d:90:18:0f:21:8c:c7:
82:43:a6:d1:85:bd:ca:56:4b:ab:10:a6:b9:37:93:93:d0:51:
6b:3d:23:59:d0:a1:75:1f:44:e6:82:4e:e0:ad:28:37:f3:f1:
1c:86:89:86:20:8b:e5:89:77:22:1b:a3:f7:1a:42:70:3c:37:
73:3e:b0:54:82:40:9c:49:11:3d:12:02:ca:e2:2c:58:29:c7:
b3:8c:0a:72:76:34:19:b7:fa:61:4d:ec:c0:1e:c6:62:df:fe:
13:52:ba:a8:84:7b:af:7b:24:78:8e:d8:6f:a0:d7:d6:47:84:
72:b7:53:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:09 2025 by rpki-client