Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
File: OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft (raw, json)
Hash identifier: aIoNwGjBqpVZs+flCJgEDjwMn4nHuJ3vcMs5F5xzBlY=
Subject key identifier: B2:09:65:13:35:85:75:AD:E6:09:FE:66:0D:27:83:F2:F9:9C:57:FB
Authority key identifier: 3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
Certificate issuer: /CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Certificate serial: 019DA48B075D80C79F02AC567D330F649A14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
Manifest number: 11A5
Signing time: Sun 19 Apr 2026 07:01:07 +0000
Manifest this update: Sun 19 Apr 2026 07:01:07 +0000
Manifest next update: Mon 20 Apr 2026 07:01:07 +0000
Files and hashes: 1: OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl (hash: 96vuLArG21fYbbAKkZBTCPRiaT2/5NNsBkPa+lrIij8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8b:07:5d:80:c7:9f:02:ac:56:7d:33:0f:64:9a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Validity
Not Before: Apr 19 07:01:07 2026 GMT
Not After : Apr 20 07:01:07 2026 GMT
Subject: CN=b2096513358575ade609fe660d2783f2f99c57fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:12:30:95:df:80:61:8c:02:91:e7:b4:9f:
e5:74:82:88:fd:6b:86:3c:62:3d:c1:0f:ad:71:58:
7e:76:1b:12:6b:22:fc:06:c7:9e:ca:20:0d:cb:e8:
26:de:22:7a:0c:43:20:30:93:8b:4f:59:74:dd:9a:
22:06:8e:35:8f:89:8f:2a:a9:72:c7:c6:60:a2:f4:
2e:87:b4:db:df:2c:9e:a4:66:b4:9c:2d:7b:f0:14:
d2:d5:48:8c:73:c5:41:37:bd:08:eb:d7:a2:da:48:
38:fa:49:fe:b3:58:c2:ab:80:a7:6a:71:ad:13:d2:
e7:66:76:a7:5e:e1:59:ce:b4:1b:12:84:4c:1d:5d:
b5:24:5b:8b:84:20:5f:c4:d3:9e:b4:51:f2:47:93:
98:f5:48:a8:b6:34:78:3f:9c:3f:04:2c:2b:35:30:
00:c3:63:6f:66:bf:33:29:aa:f5:88:d8:ee:96:22:
ff:5c:2c:95:9d:99:c0:54:a3:b3:a3:25:93:12:71:
d5:9b:5e:87:bd:79:2e:c3:4b:1d:ec:c0:5f:ba:61:
3b:98:99:8f:b2:b8:59:8e:9a:1a:d5:8f:bc:b5:f2:
e8:d3:16:e6:1d:68:30:66:a4:f8:2b:1f:17:3b:d8:
66:4d:4b:8e:0c:84:47:ff:45:17:17:c2:c4:98:fb:
32:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:09:65:13:35:85:75:AD:E6:09:FE:66:0D:27:83:F2:F9:9C:57:FB
X509v3 Authority Key Identifier:
keyid:3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:42:a9:20:3d:5e:a2:1c:1e:6b:fa:94:e2:21:d4:3b:31:a9:
67:9d:26:d4:1a:ba:86:41:d4:a3:75:c4:8c:53:11:90:57:45:
bc:bf:be:ce:22:8d:e5:ef:73:f9:12:7d:d6:04:c6:3b:21:4b:
43:a0:a7:ae:68:e7:22:02:31:e6:11:16:fc:ca:5d:22:94:41:
85:ba:59:c9:9f:ea:b7:8f:a5:42:08:84:9e:e0:ec:3f:1a:ef:
7f:a4:a3:38:42:6f:d0:d0:45:23:88:89:70:4b:63:1e:3f:38:
c6:ed:0f:df:a0:e8:32:7e:85:cc:df:ff:59:0c:59:1c:4e:d7:
8f:8e:6a:44:9c:0b:b6:32:41:b1:0c:de:4b:31:6e:18:e7:37:
e3:2f:a9:a5:03:cd:ea:7a:fc:46:0e:31:2d:00:26:c2:e0:e1:
5d:71:9a:2e:75:b0:a9:a5:76:75:96:c6:32:22:8d:c2:2c:4f:
22:08:42:38:f8:16:0e:73:8e:e5:79:bd:cd:05:fc:24:05:48:
c2:6b:59:89:28:ec:14:1f:39:5b:9c:c5:40:e8:af:44:f6:84:
2a:25:f6:36:52:3c:44:e6:71:f5:95:51:e9:1a:f9:55:0f:d9:
b8:86:c7:a7:ef:14:02:0c:2c:e9:6b:60:57:62:d8:4a:9e:db:
e1:24:47:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:05:34 2026 by rpki-client