Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
File: OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft (raw, json)
Hash identifier: JRhgDyZzNKvDCd95ArbFYv8TQqAKOkVOg/ZLC9ECJtI=
Subject key identifier: B7:3C:E5:75:80:8C:5C:30:30:BB:70:9A:F5:BF:B7:20:24:FD:04:A8
Authority key identifier: 3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
Certificate issuer: /CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Certificate serial: 019CAB6B485CC56472708A65913EE73EDE04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
Manifest number: 1124
Signing time: Sun 01 Mar 2026 22:01:00 +0000
Manifest this update: Sun 01 Mar 2026 22:01:00 +0000
Manifest next update: Mon 02 Mar 2026 22:01:00 +0000
Files and hashes: 1: OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl (hash: Th9jbEgoDETMWv+6q1izMbGyR9VAYg1+by+8UWzrIPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:48:5c:c5:64:72:70:8a:65:91:3e:e7:3e:de:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abc6247ee0caec365a8022f5f8c6feccca5710d
Validity
Not Before: Mar 1 22:01:00 2026 GMT
Not After : Mar 2 22:01:00 2026 GMT
Subject: CN=b73ce575808c5c3030bb709af5bfb72024fd04a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:96:e5:41:92:f7:58:fb:75:9d:a4:50:2e:76:
02:bf:79:dd:63:07:d3:96:25:f0:5c:10:ee:44:87:
d9:2f:ac:27:36:7f:6a:6b:f9:d3:65:4f:5a:c1:43:
f0:e2:17:ab:f8:b4:2a:19:ef:b0:e6:2a:ae:84:7a:
31:9d:f4:49:5c:1a:03:3a:0f:23:d3:74:6e:56:06:
3b:78:bf:4f:e2:7c:9e:75:af:b7:57:dd:61:01:3d:
be:c3:82:61:9c:74:a8:7b:00:f3:b3:a2:46:6d:e1:
ef:5e:cb:17:37:71:2e:3f:d0:78:93:66:e7:22:77:
10:24:ae:f0:35:40:3a:bb:44:2e:e0:43:9e:b2:82:
a7:88:93:e7:2a:2c:5d:1b:4d:57:1a:05:75:95:17:
9d:c9:b9:e5:15:17:ef:2c:a2:15:8e:90:74:4e:03:
d7:dd:9d:6d:a4:89:26:f8:4b:e1:3f:f1:f3:8b:17:
2f:2d:8a:7e:de:00:cd:e4:a9:aa:fa:0a:04:31:b1:
80:4d:54:f2:51:f4:54:aa:16:33:ca:04:58:37:30:
e8:51:90:db:e3:0c:e4:d4:aa:ce:70:56:ff:2e:cf:
ed:68:6a:23:97:c1:5c:11:d9:2e:fe:e3:a1:f9:02:
de:0a:9f:8d:08:40:26:dd:e1:b2:9f:bd:8c:fd:cd:
8c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3C:E5:75:80:8C:5C:30:30:BB:70:9A:F5:BF:B7:20:24:FD:04:A8
X509v3 Authority Key Identifier:
keyid:3A:BC:62:47:EE:0C:AE:C3:65:A8:02:2F:5F:8C:6F:EC:CC:A5:71:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OrxiR-4MrsNlqAIvX4xv7MylcQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/633abb-2c3d-4dd3-80eb-b8cf649de32c/1/OrxiR-4MrsNlqAIvX4xv7MylcQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:89:cf:8c:cc:69:dc:46:96:e2:7b:89:53:c8:70:d1:e2:e6:
01:b6:ae:d3:88:61:95:96:45:e8:74:3c:41:1a:38:2a:85:e6:
da:52:1f:e2:b4:79:75:5b:3d:7f:48:65:4a:5f:e9:d4:96:ef:
c1:44:ba:5c:ab:30:db:98:dd:d3:54:ed:ff:1f:73:2b:06:fc:
13:92:8a:38:45:a3:ab:8c:2e:c9:a1:a5:1a:6f:33:b8:d9:dd:
ed:d6:91:9b:0c:ea:18:ed:59:13:c8:c0:2b:80:b7:1a:cc:df:
48:5a:5a:97:dc:b7:09:0b:93:a7:7a:2d:87:2d:6b:ae:cd:9d:
80:4f:57:13:5b:b1:97:87:e2:cd:94:31:ad:bc:16:91:99:e2:
21:f2:0a:82:b4:3c:14:ea:2d:a6:09:35:49:d6:7c:bd:5f:cc:
06:e9:59:9a:39:09:f1:a4:85:d7:fc:af:cb:07:04:b5:07:27:
17:6b:15:64:0c:5e:c1:f3:fd:e7:df:a9:01:a8:b9:d3:3a:29:
35:88:af:d6:bd:1f:41:40:2f:fa:92:84:0f:73:d4:59:0b:db:
ee:0f:47:54:c0:db:9d:0f:b0:9e:71:a9:9b:fc:55:0c:6b:68:
cd:07:39:e4:4b:9d:7b:f6:10:68:10:cc:75:05:57:e3:89:2b:
b9:4c:da:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:39:49 2026 by rpki-client