Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
File: OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft (raw, json)
Hash identifier: rXMnmG6tSRS6ItOnezwvWNm5c+PdVmsk3/i+yEa8HIE=
Subject key identifier: BC:F2:39:59:45:76:F5:74:25:B1:61:76:21:DE:E5:7D:28:30:E0:D3
Authority key identifier: 3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
Certificate issuer: /CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Certificate serial: 0197B88F33CDAB8238067AC16104D9F8AD02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
Manifest number: 0E94
Signing time: Sat 28 Jun 2025 22:01:22 +0000
Manifest this update: Sat 28 Jun 2025 22:01:22 +0000
Manifest next update: Sun 29 Jun 2025 22:01:22 +0000
Files and hashes: 1: OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl (hash: mblTY0ihAy4EqSyCaBS8UU8qo2MVSuEQmY+JqpH9uRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:33:cd:ab:82:38:06:7a:c1:61:04:d9:f8:ad:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Validity
Not Before: Jun 28 22:01:22 2025 GMT
Not After : Jun 29 22:01:22 2025 GMT
Subject: CN=bcf239594576f57425b1617621dee57d2830e0d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:9c:72:51:e3:7d:93:5d:f3:44:40:71:c4:e1:
0f:bf:ce:b3:8b:32:cc:9a:fa:7c:74:63:79:ec:bb:
0b:d1:37:f4:eb:68:8e:92:81:15:de:3f:43:1c:e1:
34:ca:2e:91:48:e7:06:af:42:27:cb:2b:03:60:e3:
5c:ac:96:d5:73:80:5a:7b:6c:e0:8c:8d:f5:37:c5:
83:80:43:02:74:2a:ba:bf:1f:5e:42:9b:3d:a5:4b:
8e:06:e2:05:8a:dc:d1:aa:d6:5d:38:4e:f0:c8:c4:
66:30:13:35:03:b5:d6:de:8b:8d:e7:fe:a0:1a:f1:
bc:f3:ee:8c:eb:17:17:f3:60:34:be:35:cb:77:3a:
20:c1:fe:cd:c9:46:9c:08:82:57:14:f4:ca:dd:c2:
ee:00:8f:e1:be:4b:fa:a8:62:b0:b4:d7:a1:56:22:
19:90:b6:8d:5b:5e:00:5a:11:dd:b2:3f:e9:81:13:
15:f4:e2:30:a9:d7:31:d9:fb:e0:45:a2:a3:48:b5:
21:5c:4e:19:ee:96:db:4f:a3:02:a5:df:3e:37:b5:
ac:e6:5e:51:43:26:c8:e8:d2:c3:14:90:0a:53:ab:
4b:39:f3:08:c0:73:f8:f6:50:1d:0a:58:3f:ed:48:
5f:6e:d5:82:fd:14:7c:e2:36:bd:32:26:dc:c8:b4:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F2:39:59:45:76:F5:74:25:B1:61:76:21:DE:E5:7D:28:30:E0:D3
X509v3 Authority Key Identifier:
keyid:3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:5f:89:22:99:fa:7e:7a:19:67:9b:33:b5:cd:77:23:68:a6:
d6:a4:06:2b:c0:8f:d1:a9:9a:05:2a:64:11:b9:d9:21:cb:bb:
5b:26:53:f7:c4:f2:96:73:18:af:2c:16:c3:0d:99:39:2a:67:
1a:e8:95:24:0e:1a:9a:f9:4b:4f:96:74:8a:47:ef:6e:29:17:
7d:c8:9a:9d:89:56:0b:f9:72:cf:ea:2f:0c:a9:07:54:67:6d:
ca:2a:e2:fc:3a:7f:bb:37:a3:6e:cd:17:78:09:f4:b0:4c:e3:
99:a8:de:6f:ec:4d:c5:53:1d:a3:09:90:3f:28:35:39:b4:64:
cd:71:e5:2d:d9:e0:8a:17:4d:df:ee:0d:bf:dd:38:14:f7:99:
02:43:a4:70:aa:78:b5:7a:3f:72:93:cb:12:bf:cf:7c:ef:29:
e8:23:d3:8e:fc:fd:63:1a:84:d6:86:a7:7b:84:19:e7:79:8d:
c6:5b:54:7f:80:15:61:12:99:fb:e3:5c:65:43:4d:dc:16:b5:
3b:3e:99:ab:76:4a:f1:65:1d:f2:87:76:28:c1:15:01:43:3b:
2f:c4:9d:99:56:89:3f:4c:6f:f1:7c:a5:40:04:9f:33:f5:b4:
42:b4:df:f7:56:35:ce:b2:9c:52:e4:21:0f:1a:3a:93:a2:3b:
9e:dd:9f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:17 2025 by rpki-client