Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
File: O9mhd7td-26r5MrXne-PiwBd9lY.mft (raw, json)
Hash identifier: hLbqy4r17p6OzhpHk5pt1yx+5+cwPl+gG6zG/TLs6aY=
Subject key identifier: 3C:EC:D8:D7:65:B4:E2:41:12:85:50:EB:38:A1:80:13:7C:E6:15:29
Authority key identifier: 3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
Certificate issuer: /CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Certificate serial: 019A5451DF8B4FC00E7062E8A4D96690F89B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
Manifest number: 1250
Signing time: Wed 05 Nov 2025 14:00:43 +0000
Manifest this update: Wed 05 Nov 2025 14:00:43 +0000
Manifest next update: Thu 06 Nov 2025 14:00:43 +0000
Files and hashes: 1: 4n60dmESH0S_t55G5kL7m5-9nPQ.roa (hash: 8Yl7mPdCOASLn21jFFZtRnqVACPq2IcHgd8DlOM4RfQ=)
2: BibofgsXi1m02E0sydv0lSzcS6M.roa (hash: 6kPi5tOuSZ0eERv1ZZd/XUAaafp/Tbm9N/8PWSqizA4=)
3: O9mhd7td-26r5MrXne-PiwBd9lY.crl (hash: 8KyJgOMiKVFxroUXBb64eOVsol7FiM10JBeT289fSGk=)
4: zOvi4tvGqA3pjzv5kT1FkiWDZmc.roa (hash: 434rv4cRKqLcMYo5GvbFFeFDY6XbKZly6Jd8xQdtOsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:51:df:8b:4f:c0:0e:70:62:e8:a4:d9:66:90:f8:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Validity
Not Before: Nov 5 14:00:43 2025 GMT
Not After : Nov 6 14:00:43 2025 GMT
Subject: CN=3cecd8d765b4e241128550eb38a180137ce61529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fc:21:20:b1:77:13:0d:1f:98:7b:6f:7e:4d:
dd:05:30:87:8f:0a:48:26:58:58:1d:90:18:74:7d:
ab:22:b1:1f:6d:f4:8c:35:66:b3:8c:08:86:8a:37:
db:63:a2:6e:5a:45:ab:12:04:b8:ad:e7:81:5a:cd:
74:c7:7b:87:f7:68:78:71:27:2a:3a:ce:d3:62:ff:
1d:4b:da:5b:30:19:0a:53:ab:49:a5:a2:7d:5c:a1:
f5:b9:f2:1c:55:2c:d2:35:de:7b:30:3d:1e:ea:96:
c3:5f:0c:12:cb:d5:e2:7f:76:b0:11:e2:05:d9:8b:
db:ce:f9:fc:6a:3e:69:80:59:f7:79:80:36:71:51:
ca:1c:99:b2:2f:4c:03:b3:bc:77:dd:49:12:e1:da:
34:e5:24:37:13:08:fd:e0:00:fd:9b:e3:5d:78:8b:
69:d8:6f:18:26:eb:70:c3:c6:95:ae:07:88:a2:28:
40:21:ac:46:f7:5a:0d:ac:ee:d3:5c:79:1e:23:65:
40:21:9a:4c:6e:25:a1:03:92:47:df:6f:89:88:2c:
5b:a2:48:dc:59:c5:9e:e1:c7:c0:d9:80:be:e4:2e:
11:33:ff:dc:77:1e:e0:69:07:de:d6:f1:da:fe:23:
b0:86:06:7f:b6:f4:1c:1c:65:ff:28:fe:65:f5:11:
37:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EC:D8:D7:65:B4:E2:41:12:85:50:EB:38:A1:80:13:7C:E6:15:29
X509v3 Authority Key Identifier:
keyid:3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:79:7d:f3:9f:a1:81:ce:bd:86:47:d0:95:8f:dd:49:1a:c3:
b9:07:84:c8:2f:f8:44:42:bf:35:df:c9:da:49:61:be:a3:d5:
0d:24:69:06:b2:3e:73:12:f3:14:b7:a7:18:cd:ad:f5:bc:01:
ea:93:27:8d:c1:6e:55:d8:c9:3e:af:b1:a5:02:19:78:81:2c:
ea:4d:e8:80:2b:af:b0:16:71:a6:a2:50:1a:5d:25:b6:e8:48:
c9:20:ed:5c:8e:dc:45:e2:5f:99:8b:3d:69:fb:18:75:95:0b:
f7:c0:72:71:81:5d:2f:9b:15:67:5e:fb:0b:1b:e3:b2:38:cd:
87:2e:b1:15:fc:a1:4b:94:54:2e:8a:84:60:bf:c9:41:d2:a9:
79:9f:0a:d9:3b:5d:31:b5:cb:d4:a6:08:44:62:67:5d:1b:04:
7f:4b:e8:a3:92:2e:5f:c9:18:35:cd:32:30:4e:c4:a4:c3:d4:
cb:50:ad:f5:dc:cf:1d:25:81:a2:31:f0:04:f6:42:ac:fa:37:
ca:44:80:ec:6c:7f:45:25:89:24:87:cc:2b:c2:62:fc:ca:2f:
d1:cb:ef:ac:33:14:13:37:0a:e4:c8:84:8d:ed:6f:31:3e:b7:
63:de:91:a5:7e:29:ff:cd:aa:3b:42:96:0a:73:1a:6a:cd:43:
7e:71:73:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 16:36:45 2025 by rpki-client