Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
File: Or-t4neb0SyuiYiSakZi11cIawE.mft (raw, json)
Hash identifier: x8GGCltFvKGIH/qZjMJ5aLHK4/jVtHZTdWsyUUu4QSw=
Subject key identifier: 34:8A:55:54:6E:B3:8D:93:25:61:71:DC:96:28:6D:B2:37:5E:83:EF
Authority key identifier: 3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
Certificate issuer: /CN=3abfade2779bd12cae8988926a4662d757086b01
Certificate serial: 019A4F98FBA439E1883BF276A732BE46CF15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
Manifest number: 0C31
Signing time: Tue 04 Nov 2025 16:00:17 +0000
Manifest this update: Tue 04 Nov 2025 16:00:17 +0000
Manifest next update: Wed 05 Nov 2025 16:00:17 +0000
Files and hashes: 1: Or-t4neb0SyuiYiSakZi11cIawE.crl (hash: L+nxsc4/B6gZuivyUEihLViuFzRidpqGdmkgC/3r5eA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:98:fb:a4:39:e1:88:3b:f2:76:a7:32:be:46:cf:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3abfade2779bd12cae8988926a4662d757086b01
Validity
Not Before: Nov 4 16:00:17 2025 GMT
Not After : Nov 5 16:00:17 2025 GMT
Subject: CN=348a55546eb38d93256171dc96286db2375e83ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:90:20:d9:55:4e:6e:dd:c4:47:d3:a4:4c:37:
fe:64:78:14:9e:32:e4:70:b0:07:ef:2b:1f:da:95:
ba:0f:29:99:7c:3d:5c:5e:ce:2e:9b:d3:da:1e:f1:
2c:c5:12:5e:fa:0b:b3:90:8d:9d:21:6d:96:fc:77:
cc:60:5e:c7:ba:74:fa:bd:c7:5d:59:4a:75:2c:76:
e9:43:94:08:d0:76:93:82:ba:16:1a:c8:66:c3:8b:
01:51:eb:ce:23:dd:59:9d:60:2f:2e:ef:b3:5e:d2:
56:7e:f0:75:37:c8:cd:bb:99:b2:03:67:ce:3a:d3:
2e:a4:b5:f5:9b:4f:47:2c:6c:9c:0c:9c:2b:50:e5:
a2:c4:f9:50:e5:d0:e8:be:e4:0f:56:ea:28:2a:5d:
ee:c1:18:b4:ed:3c:85:8c:fe:5f:69:ad:18:e5:25:
26:2c:ca:b1:8a:3d:33:df:fa:56:4f:f3:8d:79:06:
e0:eb:21:39:82:41:78:61:f1:1f:5e:f1:ac:58:4e:
f0:01:e7:bf:ff:6c:30:2a:e6:7a:19:42:79:de:d6:
29:0c:b7:90:66:1f:85:0f:83:12:3c:c8:3c:4c:98:
5b:b8:36:ca:30:6a:23:4b:2c:43:49:2e:c0:63:af:
3b:45:5b:3b:36:5c:b2:c3:cb:ad:67:8c:35:ed:ba:
aa:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8A:55:54:6E:B3:8D:93:25:61:71:DC:96:28:6D:B2:37:5E:83:EF
X509v3 Authority Key Identifier:
keyid:3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:b4:d7:8f:21:b6:d7:56:4a:60:12:25:1f:79:60:c9:25:0a:
44:23:0d:7a:39:ed:b8:bd:1b:cc:26:26:81:ca:44:2e:c0:43:
e3:fd:59:ff:24:d0:83:64:ee:7f:8d:9c:74:9c:94:47:2a:88:
34:34:5b:74:4d:09:9b:63:25:83:2b:04:25:7d:0d:d4:15:d5:
52:16:f4:ba:9d:ce:4c:ae:25:49:9e:e5:13:3d:cb:2d:71:8c:
e2:34:12:1c:8f:62:0e:82:90:9c:a3:ff:e1:d5:d9:1e:c8:d5:
24:87:1b:73:b5:57:01:88:84:e7:ae:49:31:e3:a6:e5:62:86:
61:bb:15:a8:86:83:da:5c:fe:2c:73:56:70:57:90:82:10:49:
24:28:3f:05:ae:1d:e4:a9:f4:85:6c:da:c6:b6:79:91:b9:3b:
c5:90:b6:98:8e:6b:81:e4:cf:54:f9:ae:26:27:57:38:a2:07:
02:b0:79:26:a8:f6:ac:c9:d1:84:6f:a1:15:0c:07:9e:ea:b7:
31:ff:1d:01:3b:a1:e1:51:5c:b5:94:ee:60:85:9f:e4:e2:76:
61:7e:88:a9:9a:50:29:a7:3b:08:93:b9:5c:18:7c:29:92:de:
eb:85:2a:05:5f:9e:9e:e3:95:c6:02:54:b9:30:6a:1c:fe:72:
23:4a:21:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:20:30 2025 by rpki-client