Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: r4HdzCf3zIQfgnnYkJmaNybIwPceJBOKtuYrPj3EB8Q=
Subject key identifier: A2:44:32:14:FE:34:15:33:FC:7D:69:FC:46:F9:2F:E5:7D:1C:AB:EB
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 0197B5C48B670F9BEBAE993A068FEA4E62B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 08D1
Signing time: Sat 28 Jun 2025 09:00:46 +0000
Manifest this update: Sat 28 Jun 2025 09:00:46 +0000
Manifest next update: Sun 29 Jun 2025 09:00:46 +0000
Files and hashes: 1: 5iUoguj_iK1nNW8vHsVzOldAdSU.roa (hash: pKY+cX83EfJeSDoR6xrNZru3sgyhL3gHqEm0luVXgrc=)
2: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: NCo8dwKk5Ztlx9yAScQMtEJjrv17r/lKBleq8CAsy3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:8b:67:0f:9b:eb:ae:99:3a:06:8f:ea:4e:62:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Jun 28 09:00:46 2025 GMT
Not After : Jun 29 09:00:46 2025 GMT
Subject: CN=a2443214fe341533fc7d69fc46f92fe57d1cabeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:2d:9b:1d:5d:f4:42:b4:0d:63:3a:6f:58:
64:0b:3d:a1:31:7b:f4:79:b6:09:3c:5e:b2:74:6b:
e7:35:f2:7b:7e:bb:18:e9:bd:d8:7e:a5:1d:00:94:
a1:3a:7c:2e:7e:7c:26:ca:e6:db:14:72:23:68:4d:
77:38:80:89:9e:57:9e:7a:5c:d8:60:86:48:11:b2:
3b:6d:a2:65:08:14:cd:25:c4:32:b6:c2:05:16:a2:
3c:70:7d:58:c8:38:c1:49:cb:11:a8:44:69:c3:62:
1f:ba:44:ef:8a:4f:ac:77:dc:09:e0:95:df:80:07:
d0:ab:5b:80:3a:2d:65:19:fa:59:f0:48:c7:f8:f8:
54:ce:6a:aa:ab:39:63:ad:6b:55:e5:17:66:99:07:
de:e2:d6:05:7a:16:09:a6:02:d0:05:94:ec:84:2b:
89:7f:97:e0:a7:ef:ce:23:a6:28:3c:5d:3d:a3:20:
0b:60:e1:ce:bd:72:0a:4a:33:be:46:31:60:7c:cc:
c8:b0:2e:0b:2c:f5:5e:f4:a6:e8:68:1b:2a:4f:7a:
7e:e7:5d:87:92:04:72:56:80:19:ac:2a:61:90:61:
9d:5a:d1:60:9a:f1:2d:a0:6a:e2:95:c0:18:46:d1:
a5:2b:e4:b9:5c:d5:2e:02:ff:07:35:7e:37:cf:57:
7e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:44:32:14:FE:34:15:33:FC:7D:69:FC:46:F9:2F:E5:7D:1C:AB:EB
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c7:48:70:50:f3:8d:2f:ae:7f:63:c5:fc:c4:7d:d4:a4:d8:
04:44:dd:0f:0e:2e:41:da:e4:b9:4a:bc:aa:55:f4:f3:60:43:
7e:96:44:90:32:66:93:b4:29:45:82:20:30:45:6a:56:7c:9e:
de:28:cc:50:a2:0e:ea:0c:80:99:c1:b9:4c:09:3b:3d:a8:f8:
3b:16:1b:1e:7a:f0:9f:b7:de:9f:e5:b0:33:88:b3:b3:d8:82:
43:c8:97:14:0d:f4:3a:9c:a0:f9:8f:0a:83:5f:e4:11:c1:2d:
19:b6:58:b5:8e:10:df:65:cd:f4:78:94:e7:c8:a4:50:2b:18:
3a:15:0c:b4:4a:e2:01:52:61:a5:48:59:27:80:ac:7e:8f:3f:
23:5a:e7:d2:17:73:62:3e:4c:c9:5c:d0:fb:88:9f:3b:52:50:
5b:30:99:9a:a5:99:24:44:73:f0:74:9c:87:6f:17:70:58:5e:
bc:30:bc:ef:25:2b:d4:38:eb:15:aa:dd:de:90:d4:95:c2:cf:
1a:1a:a4:c3:60:a9:b1:b2:91:1c:37:e0:6b:7c:65:40:8d:a7:
d8:de:96:11:9e:51:1d:d8:e4:04:4c:1a:19:c4:c1:f6:12:0f:
a7:93:38:01:2b:24:02:79:c6:14:3a:c5:ad:89:14:f2:24:1d:
0c:21:5e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:46:20 2025 by rpki-client