Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
File: OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft (raw, json)
Hash identifier: 8ENvSLGIdMGyoup1ZWOR5xpX4mCdmEfQCclnlqGDv1g=
Subject key identifier: 03:42:D6:1B:08:7B:45:45:E9:6A:1E:E7:6D:41:AD:28:BC:67:00:53
Authority key identifier: 3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
Certificate issuer: /CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Certificate serial: 0198D65F96592A35977E0712ED9FA16EA3B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
Manifest number: 0F28
Signing time: Sat 23 Aug 2025 10:00:45 +0000
Manifest this update: Sat 23 Aug 2025 10:00:45 +0000
Manifest next update: Sun 24 Aug 2025 10:00:45 +0000
Files and hashes: 1: OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl (hash: LZYKa0j7wm5cya2YGhBCV/h67AEXho0s6pMPJriNAgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:96:59:2a:35:97:7e:07:12:ed:9f:a1:6e:a3:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Validity
Not Before: Aug 23 10:00:45 2025 GMT
Not After : Aug 24 10:00:45 2025 GMT
Subject: CN=0342d61b087b4545e96a1ee76d41ad28bc670053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a2:29:8d:f0:14:f9:3c:b6:a1:59:f1:05:b2:
98:8a:05:df:5d:49:19:1b:ef:ab:5f:51:91:df:c9:
39:4c:0e:6b:bd:f5:88:b3:31:5b:f3:88:c8:e9:c7:
89:d5:43:a0:39:90:11:a8:19:77:16:ab:51:d8:ba:
1d:bc:09:a1:1a:1c:ab:2c:f8:f1:b2:29:6f:d0:52:
22:66:0a:9d:67:30:a4:44:54:5b:e0:9e:ef:36:cf:
97:07:b1:98:df:dd:4d:08:1a:05:86:bf:9b:9b:e2:
f4:aa:4e:8f:2f:0e:21:ad:fa:0b:cd:65:7b:9b:76:
c7:8b:76:0a:f2:e7:5a:bd:d4:3e:66:ea:d2:ef:74:
48:c0:0c:35:72:70:b7:3e:fc:8e:23:e3:04:56:c8:
88:79:8d:dd:db:9e:68:bb:9d:39:06:b3:74:95:bf:
d8:f8:be:d5:01:2d:2e:15:6d:b8:83:b2:57:64:be:
6a:e5:a4:d0:81:00:3e:69:f3:cc:2e:49:b5:8b:04:
03:84:0c:04:35:7f:ff:29:65:b0:cf:da:10:75:74:
e1:ad:2f:a2:22:56:52:7b:18:10:82:9a:05:1b:10:
24:7d:57:db:fd:2d:d3:a1:aa:5a:18:ba:57:62:23:
e2:12:58:27:e8:82:e5:33:36:91:1d:de:5e:df:b5:
fb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:42:D6:1B:08:7B:45:45:E9:6A:1E:E7:6D:41:AD:28:BC:67:00:53
X509v3 Authority Key Identifier:
keyid:3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:4e:b8:31:78:81:f1:d6:e0:80:1c:8e:16:6b:b9:5c:7c:b1:
35:34:ef:82:7b:14:64:c2:c9:14:06:c1:65:28:b6:0d:bd:11:
19:df:3b:29:55:a6:5c:9a:fd:f0:66:cc:90:7d:b7:5b:78:0c:
a3:a9:69:30:9f:f2:63:4d:6e:8a:c4:ab:33:d6:0d:b6:10:51:
92:10:8a:71:8f:ea:30:86:24:15:6c:83:b7:ad:b6:ba:c2:ea:
68:81:da:31:e8:db:4f:52:03:40:76:f0:4f:d0:cf:8e:95:63:
93:2d:20:2c:ec:a9:0f:79:cb:bc:94:33:ea:5b:d1:81:37:5a:
58:6f:fa:05:77:f2:0f:35:2c:b0:5f:84:51:b1:d1:eb:30:ee:
4f:23:7f:7d:78:a8:88:ed:78:0f:fc:e9:92:d3:37:1a:7c:a4:
da:cb:b7:38:50:ed:f6:7d:30:d6:7a:38:1d:6d:d5:6e:14:85:
86:9b:dd:ac:c6:f5:f7:98:9b:5e:23:69:e6:2b:e3:39:96:3d:
f8:c7:c9:2e:ab:2b:ed:94:4e:4c:e8:f2:82:ce:86:e5:46:fe:
eb:25:43:de:e9:19:1f:44:45:56:3d:a0:c0:15:ca:32:05:2d:
67:c4:cb:ea:6e:18:b8:83:89:c5:c3:14:40:1b:2a:69:1a:bd:
cb:5e:2c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:34:14 2025 by rpki-client