Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f7db9d-fcd9-4f21-91c2-60033d5b03bb/1/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.mft
File: PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.mft (raw, json)
Hash identifier: ed6svvVmeGll3UywlhhPArUlscsLEiiGI4Mlz7zDJqU=
Subject key identifier: 15:3C:32:05:09:DC:6C:4E:AA:35:ED:38:1F:E1:15:37:B0:E0:52:4E
Authority key identifier: 3F:23:AB:73:05:30:47:92:DC:2C:E8:17:80:B5:DB:88:9D:8F:7F:3A
Certificate issuer: /CN=3f23ab7305304792dc2ce81780b5db889d8f7f3a
Certificate serial: 0198D5161E30555A005268E2DB1CEB4F205B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f7db9d-fcd9-4f21-91c2-60033d5b03bb/1/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 04:00:53 +0000
Manifest this update: Sat 23 Aug 2025 04:00:53 +0000
Manifest next update: Sun 24 Aug 2025 04:00:53 +0000
Files and hashes: 1: PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.crl (hash: Aihua4eShufjVcJflUNDyWZAdYBR3IbNCQDYn9uuNSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/f7db9d-fcd9-4f21-91c2-60033d5b03bb/1/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/f7db9d-fcd9-4f21-91c2-60033d5b03bb/1/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:1e:30:55:5a:00:52:68:e2:db:1c:eb:4f:20:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f23ab7305304792dc2ce81780b5db889d8f7f3a
Validity
Not Before: Aug 23 04:00:53 2025 GMT
Not After : Aug 24 04:00:53 2025 GMT
Subject: CN=153c320509dc6c4eaa35ed381fe11537b0e0524e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0a:49:1d:67:c4:a1:2b:9e:52:3a:b8:07:28:
c0:91:57:e5:0b:be:49:22:b9:3a:c4:15:2b:e8:db:
a5:75:b7:8e:70:fc:a4:ff:da:b9:dd:69:50:87:0d:
fe:eb:64:d7:88:6e:bb:ea:a6:f5:6c:80:6a:9d:bd:
48:b8:a8:93:5e:0b:ff:a0:50:20:b5:9b:ff:eb:5d:
78:ed:92:0e:b0:e5:79:b3:7d:75:22:37:6d:a3:35:
2e:d3:8a:b3:0d:ae:df:fc:7e:bd:07:05:ce:bf:8b:
bf:02:49:67:45:58:f5:78:c8:59:93:ba:27:da:e6:
bd:8a:23:ad:56:7f:86:42:c9:d2:be:97:54:39:1c:
d9:dd:22:65:e4:8c:a0:19:e8:f0:31:2a:b8:ff:04:
42:b0:7a:df:3f:a7:f2:58:85:94:4c:03:7c:19:f9:
7a:c8:ce:24:87:ea:23:57:36:24:57:2d:18:c7:a2:
7e:18:69:d8:69:a5:4b:db:81:5f:3b:12:95:a2:32:
9a:d9:02:8d:d6:4b:e9:18:8e:c7:3a:38:75:ce:d2:
f3:ea:2f:ae:07:fa:2b:e3:65:df:33:34:a8:52:dc:
b1:9c:77:e7:b3:71:27:19:38:47:a9:ee:42:e3:36:
9e:88:cd:9a:56:e1:8d:09:de:ad:22:98:95:5d:c7:
3f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3C:32:05:09:DC:6C:4E:AA:35:ED:38:1F:E1:15:37:B0:E0:52:4E
X509v3 Authority Key Identifier:
keyid:3F:23:AB:73:05:30:47:92:DC:2C:E8:17:80:B5:DB:88:9D:8F:7F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f7db9d-fcd9-4f21-91c2-60033d5b03bb/1/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f7db9d-fcd9-4f21-91c2-60033d5b03bb/1/PyOrcwUwR5LcLOgXgLXbiJ2Pfzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:55:f7:09:68:6e:f3:3d:1d:5d:0b:fe:3a:8e:8e:ba:e8:e1:
37:54:a4:cb:a5:0a:38:8a:db:7f:db:c0:86:e1:ad:b3:df:51:
ee:a1:43:b1:21:73:25:87:de:e4:6b:0d:ac:58:98:36:04:b2:
0f:5e:dd:4c:95:6a:b8:54:8a:fd:f8:10:ba:00:6b:3e:40:6d:
44:df:29:74:b3:bd:a7:d7:d5:97:28:47:e0:4a:a3:d4:e7:ce:
ec:40:96:69:a3:ad:33:0e:2a:76:6a:e1:ff:bd:0b:eb:e7:75:
c4:0b:e4:8e:a6:33:5e:9f:df:b9:32:88:0e:09:34:45:97:5c:
10:ea:44:e8:e7:05:5c:82:e7:8e:b9:53:c5:f7:23:c7:8f:bb:
c8:29:03:5e:a4:d1:8f:a7:36:9d:f6:43:05:7a:a5:d7:73:54:
37:1c:73:7b:fb:9f:a1:87:15:42:a2:6e:65:cd:fe:c1:8b:3a:
02:78:74:74:c1:39:90:98:d8:f5:3a:6a:2f:51:69:48:22:d4:
1d:d4:35:e7:77:88:54:4f:8f:f5:fc:75:91:29:9a:9e:58:f4:
de:bb:43:b1:3c:3b:88:17:39:3c:dc:30:86:c7:9b:0e:f9:d4:
f3:9d:12:03:b9:70:6c:b3:7f:67:5e:a0:98:57:cb:0d:b9:58:
6b:00:e5:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:36:01 2025 by rpki-client