Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
File: OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft (raw, json)
Hash identifier: hewCRgMDBC4+jTXr45Hgm1LJ163CmlS+nQ2uc5X09AM=
Subject key identifier: AE:61:CF:25:AD:80:08:BC:CE:2F:D9:E6:FF:FD:DA:2C:B9:5D:81:8B
Authority key identifier: 3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
Certificate issuer: /CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Certificate serial: 0199FDD9D0D4079848ED56BE198BD2877545
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
Manifest number: 0FC1
Signing time: Sun 19 Oct 2025 19:02:14 +0000
Manifest this update: Sun 19 Oct 2025 19:02:14 +0000
Manifest next update: Mon 20 Oct 2025 19:02:14 +0000
Files and hashes: 1: OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl (hash: IQD1uCQBinJzGMfa3pr0wJBYFEUKrn8HFeaYPS6dfW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:d0:d4:07:98:48:ed:56:be:19:8b:d2:87:75:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Validity
Not Before: Oct 19 19:02:14 2025 GMT
Not After : Oct 20 19:02:14 2025 GMT
Subject: CN=ae61cf25ad8008bcce2fd9e6fffdda2cb95d818b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a3:2e:66:39:b7:85:42:b3:ba:dd:9d:29:98:
28:a9:ac:68:53:0b:18:4e:d2:07:4e:96:f0:0a:23:
0f:9f:12:10:fa:71:09:e1:6e:e8:f6:5d:03:97:97:
8b:d3:4c:03:7f:d0:7a:b7:24:73:69:e6:5f:09:c3:
0f:c7:67:d3:4f:d6:d3:a6:d1:50:ba:06:09:04:4b:
f4:94:97:6e:5b:25:bb:58:d0:f3:a7:a3:0d:70:59:
64:7a:95:4b:89:6a:21:42:ea:ec:0e:61:6d:38:bc:
f7:9e:9c:37:03:a9:33:8d:dc:93:7d:2c:c6:64:f0:
9f:84:60:bd:89:3e:4c:58:89:8b:00:2f:c8:ec:ad:
40:c8:6d:74:54:b9:88:a0:19:53:7d:ab:03:79:7d:
34:71:ab:8c:5b:d9:61:ea:17:a1:75:6c:7b:b1:6b:
c8:9d:2a:bb:a3:6f:fd:1b:aa:f4:e3:d8:74:cc:08:
95:e5:63:0a:b4:aa:e0:f5:b1:5c:b9:56:38:48:69:
e2:6f:72:9c:ef:a6:34:a1:53:21:02:82:ff:6b:f7:
0b:a1:10:56:fa:08:ae:20:46:ac:5c:3c:eb:37:e0:
9b:de:92:c4:15:9b:74:37:2f:f8:54:e5:9f:72:f7:
36:e3:a1:39:48:34:79:0f:26:37:ed:e6:b3:a9:aa:
9d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:61:CF:25:AD:80:08:BC:CE:2F:D9:E6:FF:FD:DA:2C:B9:5D:81:8B
X509v3 Authority Key Identifier:
keyid:3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:d7:fa:67:87:6a:2c:f9:a7:a3:9a:4b:b6:53:f9:66:87:9d:
23:f2:90:f5:37:e4:8e:21:b1:75:10:50:c7:fc:1d:9b:f6:dd:
9a:6d:81:ac:e2:c1:2c:6b:d1:23:ee:2e:cf:81:43:47:06:cf:
5d:e9:72:16:3b:58:a2:4c:4c:a7:79:d1:94:91:93:09:c1:ea:
44:ca:92:16:b3:29:ef:c7:1e:8d:b8:97:47:79:67:85:fd:0d:
c8:21:63:cf:38:8b:b6:1d:89:5a:c9:05:3e:a6:97:06:3b:19:
92:3b:8e:7e:6a:5e:9e:cd:81:2d:3b:54:c0:bc:78:bf:cc:9d:
cc:8f:f4:57:c4:a2:2d:6b:b4:31:df:34:4e:75:21:bf:2c:1b:
df:04:de:92:39:5e:46:f4:bc:0c:69:5a:ff:7f:ff:4b:08:5a:
51:31:45:3e:88:6d:9e:20:c6:21:a5:70:09:be:f5:25:a5:53:
13:6a:2d:7b:7e:3b:71:32:d3:57:3f:8b:38:dc:a0:24:af:df:
7a:21:a6:4e:b9:b2:b0:ef:78:3b:a5:61:13:23:8c:5a:03:38:
9a:07:24:01:88:34:6e:cc:f5:d6:c0:27:a4:66:d8:cf:2f:76:
2e:8a:28:ae:ad:b6:69:c0:22:26:66:e2:c9:f3:a3:9d:24:b6:
9b:b0:2d:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:52:20 2025 by rpki-client