Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
File: OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft (raw, json)
Hash identifier: SRpoTklVSSjUs24Qutryj4EixajhaFQ44CF7FfbIcnA=
Subject key identifier: 52:D5:04:51:7E:4F:4A:2F:0B:F7:C9:9A:8D:11:55:2C:23:17:65:36
Authority key identifier: 3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
Certificate issuer: /CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Certificate serial: 0196BD8148BC67F85D68A4BDB2FCEDD471BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
Manifest number: 0E12
Signing time: Sun 11 May 2025 04:01:28 +0000
Manifest this update: Sun 11 May 2025 04:01:28 +0000
Manifest next update: Mon 12 May 2025 04:01:28 +0000
Files and hashes: 1: OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl (hash: GqB0y9YuWUsMH4r9bsTV60HKQeh/e1aNjIWAU4QZ1dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:48:bc:67:f8:5d:68:a4:bd:b2:fc:ed:d4:71:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Validity
Not Before: May 11 04:01:28 2025 GMT
Not After : May 12 04:01:28 2025 GMT
Subject: CN=52d504517e4f4a2f0bf7c99a8d11552c23176536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:0e:82:18:9c:df:b8:eb:a7:e5:a0:a0:c8:
4f:7d:ff:76:98:c2:93:87:85:26:3b:72:40:98:36:
7b:68:96:9c:b0:05:96:ab:64:bf:16:6c:b7:b2:bd:
f2:8a:b5:dd:75:df:9f:4a:d6:fd:c5:8e:0a:7a:e2:
e2:26:4d:5b:06:1a:f9:85:25:9b:b1:15:f7:21:49:
ef:fd:6a:69:d0:8d:de:79:ac:87:ea:60:88:03:16:
19:92:90:1d:39:51:8e:3b:b3:18:b1:8b:3c:64:f1:
52:f7:50:eb:3a:6d:09:fe:7e:15:e7:e1:56:ca:6e:
c0:21:80:94:ba:d7:48:3c:e8:fe:42:22:74:dc:1b:
ca:e6:92:18:a6:24:a3:ae:12:1d:fc:70:b0:56:e7:
7c:8b:1a:60:0f:dc:30:ad:45:52:3c:bc:9c:be:62:
e3:ae:f0:a3:61:0d:59:3b:02:19:58:d9:0a:bb:f4:
04:65:fb:98:64:a5:93:4f:b1:a2:14:5e:fe:99:2c:
58:48:a5:42:e4:66:d9:2c:85:5c:05:e4:57:8b:d8:
63:77:e3:64:d1:05:05:0b:a3:14:7e:e8:81:6a:57:
12:45:6c:a9:1e:35:e9:f7:1d:36:6c:1a:92:80:dc:
3d:b7:be:51:39:32:dd:a0:3f:ef:a1:d6:fb:1b:54:
a2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D5:04:51:7E:4F:4A:2F:0B:F7:C9:9A:8D:11:55:2C:23:17:65:36
X509v3 Authority Key Identifier:
keyid:3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:da:18:8c:83:31:3b:95:43:8e:e1:de:53:8b:03:03:2c:28:
38:e9:0e:9d:29:c0:39:5f:f8:09:f6:82:7d:2c:00:e1:05:fe:
1c:1d:f3:08:36:d3:96:c3:fb:7c:43:ac:d3:5c:a5:c5:a0:48:
33:44:63:bf:d6:da:1a:11:f5:78:64:37:29:a1:8d:da:ba:ed:
2b:9d:b4:99:83:80:bb:02:7f:86:2d:30:11:35:63:75:45:23:
b8:3e:a4:52:4d:99:6a:2c:7e:04:46:50:2b:5a:2a:4f:16:0a:
b6:e2:0a:f8:3b:cc:41:d3:fd:7c:5b:f6:cc:a7:78:2e:5e:a7:
1c:47:1a:a2:e9:05:c1:b4:c9:42:8b:77:56:11:00:91:95:b8:
7a:ec:71:54:26:50:a7:35:5c:ad:78:e1:0b:07:ed:86:ec:09:
2c:7e:e9:f7:0e:29:6b:1f:04:f1:1a:4f:32:77:3f:b7:e8:70:
fe:19:52:e1:3e:58:ce:b7:fc:d7:84:0a:0d:8a:b0:62:d3:e6:
a1:ba:01:bb:c6:2d:79:d0:13:68:f8:05:0b:96:1e:c3:7a:26:
2a:ec:b9:ff:e9:07:e9:df:6b:b4:88:58:65:85:3d:1d:9c:07:
b6:7e:ef:dc:c9:af:0c:66:51:46:d4:7f:77:6f:b4:f2:f6:b3:
e6:29:8d:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa9gUi8Z/hdaKS9svzt1HG8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhYmM2MjQ3ZWUwY2FlYzM2NWE4MDIyZjVmOGM2ZmVjY2Nh
NTcxMGQwHhcNMjUwNTExMDQwMTI4WhcNMjUwNTEyMDQwMTI4WjAzMTEwLwYDVQQD
Eyg1MmQ1MDQ1MTdlNGY0YTJmMGJmN2M5OWE4ZDExNTUyYzIzMTc2NTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzQOghic37jrp+WgoMhPff92mMKT
h4UmO3JAmDZ7aJacsAWWq2S/Fmy3sr3yirXddd+fStb9xY4KeuLiJk1bBhr5hSWb
sRX3IUnv/Wpp0I3eeayH6mCIAxYZkpAdOVGOO7MYsYs8ZPFS91DrOm0J/n4V5+FW
ym7AIYCUutdIPOj+QiJ03BvK5pIYpiSjrhId/HCwVud8ixpgD9wwrUVSPLycvmLj
rvCjYQ1ZOwIZWNkKu/QEZfuYZKWTT7GiFF7+mSxYSKVC5GbZLIVcBeRXi9hjd+Nk
0QUFC6MUfuiBalcSRWypHjXp9x02bBqSgNw9t75ROTLdoD/vodb7G1SigwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLVBFF+T0ovC/fJmo0RVSwjF2U2MB8GA1UdIwQY
MBaAFDq8YkfuDK7DZagCL1+Mb+zMpXENMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3J4aVItNE1yc05scUFJdlg0eHY3TXlsY1EwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS82MzNhYmItMmMzZC00ZGQzLTgwZWIt
YjhjZjY0OWRlMzJjLzEvT3J4aVItNE1yc05scUFJdlg0eHY3TXlsY1EwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS82MzNhYmItMmMzZC00ZGQzLTgwZWItYjhjZjY0OWRlMzJj
LzEvT3J4aVItNE1yc05scUFJdlg0eHY3TXlsY1EwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAltoYjIMx
O5VDjuHeU4sDAywoOOkOnSnAOV/4CfaCfSwA4QX+HB3zCDbTlsP7fEOs01ylxaBI
M0Rjv9baGhH1eGQ3KaGN2rrtK520mYOAuwJ/hi0wETVjdUUjuD6kUk2Zaix+BEZQ
K1oqTxYKtuIK+DvMQdP9fFv2zKd4Ll6nHEcaoukFwbTJQot3VhEAkZW4euxxVCZQ
pzVcrXjhCwfthuwJLH7p9w4pax8E8RpPMnc/t+hw/hlS4T5Yzrf814QKDYqwYtPm
oboBu8YtedATaPgFC5Yew3omKuy5/+kH6d9rtIhYZYU9HZwHtn7v3MmvDGZRRtR/
d2+08vaz5imNsA==
-----END CERTIFICATE-----
Generated at Sun May 11 14:48:53 2025 by rpki-client