Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
File: OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft (raw, json)
Hash identifier: 6i6dr5Jlz9iLWp6xlzhscgLEgTMVY9OnIf3d3aVjyQ4=
Subject key identifier: DE:96:90:9C:2C:1B:56:6B:C3:CD:CA:C6:7A:9B:65:C2:16:87:06:C1
Authority key identifier: 3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
Certificate issuer: /CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Certificate serial: 01988CFCCB4B3B81DB8786970BE0835CF84A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
Manifest number: 0F02
Signing time: Sat 09 Aug 2025 04:00:33 +0000
Manifest this update: Sat 09 Aug 2025 04:00:33 +0000
Manifest next update: Sun 10 Aug 2025 04:00:33 +0000
Files and hashes: 1: OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl (hash: GMwbSdZMpUKMYh9G5NXzVGHChPHyfUwPGdL473B7FHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fc:cb:4b:3b:81:db:87:86:97:0b:e0:83:5c:f8:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Validity
Not Before: Aug 9 04:00:33 2025 GMT
Not After : Aug 10 04:00:33 2025 GMT
Subject: CN=de96909c2c1b566bc3cdcac67a9b65c2168706c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:13:de:4f:fc:f2:fb:66:d8:f6:91:bc:80:5d:
26:39:70:d2:6a:bf:69:5e:a9:80:4a:d2:dd:6a:fb:
fa:82:99:19:09:33:0e:f8:d2:67:8d:ed:b3:03:1d:
fb:a7:58:8f:58:97:97:82:6b:30:b2:dc:f5:4b:bf:
65:73:2d:46:72:0d:d0:00:d4:76:d8:9e:6a:92:7c:
1b:02:21:4d:3b:38:83:ce:85:53:06:79:7d:67:11:
1f:23:64:96:3e:01:49:62:56:6e:ae:73:e6:0d:17:
d3:b6:37:7b:4c:d4:57:b3:a9:b2:05:11:73:c0:45:
8a:b4:8d:52:33:d9:31:58:c7:74:d6:a3:3f:17:09:
3b:25:01:02:20:c9:cf:9e:f5:8c:94:f5:27:6d:28:
29:b9:64:5b:06:3f:7f:11:a4:07:1a:f7:aa:76:0d:
7e:20:6f:26:67:eb:21:07:68:ac:08:a9:8b:5c:7e:
20:ed:1a:ab:23:9f:84:e5:74:b5:b4:28:7f:87:e6:
cd:67:b3:5d:d9:7c:98:bc:3c:bd:46:33:0d:f6:0e:
10:86:f0:41:37:db:28:5c:66:c6:22:66:a8:f6:42:
6f:f7:b4:4b:26:7d:85:4f:94:06:b3:b0:4b:71:e7:
d3:bc:55:d6:cf:1f:c7:5e:f4:80:5e:ac:55:10:09:
74:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:96:90:9C:2C:1B:56:6B:C3:CD:CA:C6:7A:9B:65:C2:16:87:06:C1
X509v3 Authority Key Identifier:
keyid:3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:1a:f3:49:c6:2c:fc:8b:98:9d:c8:ee:b6:0e:93:20:93:ab:
27:e6:5b:f3:7e:52:cc:ce:f1:99:07:3e:43:96:41:07:1e:f8:
38:3d:f4:43:ff:26:d8:ad:09:0a:fd:a0:b0:cc:93:7b:be:cd:
0e:99:9e:62:3a:02:c7:38:00:88:4d:90:a9:b2:95:8e:8c:8a:
17:45:cf:37:5d:9a:33:6e:39:ee:e4:d1:f8:cc:e9:ce:f3:ed:
e0:7f:d5:3a:ad:be:aa:d6:ea:fc:44:5d:97:4c:65:4c:8f:61:
01:ea:84:ce:50:81:9e:e0:16:cf:dc:99:69:26:04:f7:b0:20:
31:be:ef:ed:bd:8f:38:94:50:14:99:bf:bf:34:32:af:3d:0d:
28:93:f9:9f:fb:13:27:76:0f:e4:e4:55:8a:67:cd:71:50:d0:
68:cf:1e:b0:dd:b6:41:a4:d6:6c:1b:a6:44:56:85:ec:0f:5e:
0b:77:c5:e3:72:ee:90:c6:b6:9d:1a:2d:7a:58:58:05:09:87:
df:9f:03:cc:30:f1:65:8c:5b:f6:72:a2:2e:c3:5c:de:24:19:
4e:91:bb:67:07:9b:9e:71:59:79:6d:76:61:b0:99:4e:12:b8:
cf:23:3d:0a:35:1b:3d:cd:45:a3:26:a3:59:32:5a:cd:1b:2a:
97:e0:41:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:34:48 2025 by rpki-client