Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
File: orzYisPgLP-tPADeRrXaM2vWRwI.mft (raw, json)
Hash identifier: uWoqRn+Vozoff511oUA7RbTKpbQbekXyMUYt4beNjak=
Subject key identifier: DA:FB:1A:44:99:58:32:2E:B2:AC:EA:98:59:35:07:FA:C8:8A:D5:4A
Authority key identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
Certificate issuer: /CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Certificate serial: 0198537BA4843921BA8BE7D9B88591CD50E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
Manifest number: 1314
Signing time: Tue 29 Jul 2025 00:01:08 +0000
Manifest this update: Tue 29 Jul 2025 00:01:08 +0000
Manifest next update: Wed 30 Jul 2025 00:01:08 +0000
Files and hashes: 1: dTRvsxL2APKWCpGceVS2hPx0HUQ.roa (hash: ckDUOzUXSrfuvc3RkTd1UBfCmEYB7nDoNopZ1OYU3es=)
2: orzYisPgLP-tPADeRrXaM2vWRwI.crl (hash: bdB10yKv5NFAqN4Wf9QScAuSJvGASO+ldLLGMFBkNTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:7b:a4:84:39:21:ba:8b:e7:d9:b8:85:91:cd:50:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Validity
Not Before: Jul 29 00:01:08 2025 GMT
Not After : Jul 30 00:01:08 2025 GMT
Subject: CN=dafb1a449958322eb2acea98593507fac88ad54a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:96:7f:b4:58:9e:6a:69:63:6c:b1:3b:1a:e2:
35:45:d6:59:65:ec:2f:0a:d5:4f:b3:fa:c3:f0:67:
fa:0e:96:26:41:00:66:0b:d5:81:b4:c4:df:b1:2d:
e8:52:a2:56:10:ac:68:52:1c:2d:3e:b6:83:1b:fc:
62:2a:b3:78:79:9b:c6:25:63:3b:85:a7:89:d4:3e:
63:09:fc:4f:79:90:ec:6b:6b:9e:a2:11:42:ea:c8:
b6:9b:e0:eb:7f:99:b9:17:6c:d9:a3:a0:c3:61:fa:
72:42:35:ef:71:ee:36:a1:e0:95:98:7c:b1:02:0c:
36:35:99:ed:68:1c:1a:79:a0:ca:d8:6c:c0:35:4b:
13:2a:59:fa:5c:95:b8:02:77:dd:f6:2a:29:86:25:
21:8a:af:62:d7:d0:a4:70:f3:af:65:6d:17:a8:e0:
b2:40:86:81:4a:92:85:a6:bd:33:9a:9e:d2:04:f4:
29:1f:ee:d2:d6:f8:8a:8a:70:aa:6a:10:b1:0d:45:
c5:6b:e7:8c:94:44:8b:ae:5d:33:fb:3a:74:34:6a:
af:28:c8:0c:c1:db:2d:80:4e:e5:33:3d:69:09:c9:
68:01:ea:1e:a6:c7:0e:6e:da:86:be:ca:97:d8:d2:
1a:0c:64:de:dc:f7:90:94:ce:8d:58:9f:72:85:1a:
46:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FB:1A:44:99:58:32:2E:B2:AC:EA:98:59:35:07:FA:C8:8A:D5:4A
X509v3 Authority Key Identifier:
keyid:A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:58:9c:ed:d3:bc:6f:ac:89:ed:fb:c4:65:5d:83:74:be:7c:
32:82:51:1a:f5:bb:9f:2e:a3:4b:5f:20:96:bd:fd:90:b3:0a:
af:13:4b:f7:f3:9a:fe:7f:76:31:2e:e3:a2:4f:04:89:ae:86:
36:e6:cb:d4:49:44:4c:0f:02:a7:37:0a:83:a1:68:f5:c0:a8:
17:87:0a:dd:35:48:ba:80:55:58:98:86:85:73:c1:dc:c8:2f:
af:48:b6:60:85:03:7c:35:97:4c:c5:7e:94:c4:46:15:21:61:
5e:7f:8f:65:b3:54:ae:c5:00:c8:50:55:24:7f:66:24:38:23:
20:18:17:cf:de:06:c4:7d:2d:17:98:c6:1f:61:47:f3:fd:05:
fc:f9:cf:00:8b:e2:54:a1:c5:10:d1:d8:65:4a:60:d5:bd:ca:
27:1e:46:ef:65:e0:73:a8:97:45:74:b3:bd:52:30:5b:06:09:
5a:00:8a:ae:8f:73:f0:f6:12:d1:ee:77:69:76:95:87:06:fa:
7c:24:cd:60:fa:50:f4:7b:f5:ae:25:28:6c:bf:21:53:ba:f7:
d0:bf:b0:5b:88:cd:1f:7f:f9:9b:b4:ee:0e:35:7c:e1:db:51:
05:ed:e5:26:d9:c3:d6:b0:ed:6e:25:3b:0a:84:2b:6b:90:e0:
93:7e:20:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:29:54 2025 by rpki-client