Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: B8xJ8a52mWGNvy3w4YOoC3ziWvUyejF3QlSewHoy1WY=
Subject key identifier: F3:7E:F4:3C:DF:60:18:D0:62:9E:86:DB:9A:1A:B6:10:9A:EA:86:EA
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 0198D6297E908114C224AE95DA8E2EC28052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 0967
Signing time: Sat 23 Aug 2025 09:01:40 +0000
Manifest this update: Sat 23 Aug 2025 09:01:40 +0000
Manifest next update: Sun 24 Aug 2025 09:01:40 +0000
Files and hashes: 1: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: bop1mlJLl9vahu/AxKxJepLdxt4a5TGXRFRFVJNQUQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 09:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:7e:90:81:14:c2:24:ae:95:da:8e:2e:c2:80:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Aug 23 09:01:40 2025 GMT
Not After : Aug 24 09:01:40 2025 GMT
Subject: CN=f37ef43cdf6018d0629e86db9a1ab6109aea86ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d0:33:8c:cd:31:bc:76:b1:a6:15:17:53:35:
b5:04:84:6b:78:f4:a5:ec:b7:f6:42:b6:d7:f8:be:
81:56:ef:b6:e0:4a:39:56:a6:4f:d8:9b:a1:61:02:
50:2d:ef:3f:d7:fa:c9:33:c4:44:e7:97:23:53:be:
54:41:99:f2:5d:cc:95:5d:ee:a6:76:34:68:f3:49:
05:79:59:44:14:d1:43:f5:1f:b5:cd:03:be:07:c3:
c4:01:9f:c3:c3:47:79:e3:7a:cc:52:19:0f:55:bf:
2b:59:fb:cf:e9:a3:4c:c5:51:a5:b7:52:d2:b7:32:
44:39:6b:e1:9b:81:9d:9d:fc:12:3a:b0:f2:65:ca:
68:14:89:a8:fa:16:2f:87:50:e0:f5:15:e6:ca:37:
1f:48:7a:8b:5a:8d:3b:0d:0f:3e:0e:a1:f7:c3:0a:
be:2d:50:cc:76:43:6f:a7:3c:3d:c6:6a:a6:19:a6:
81:1c:03:d5:25:b7:77:92:0a:e2:76:54:de:bb:94:
65:69:9d:26:8f:60:2d:47:8b:62:f9:65:88:61:c9:
e6:98:09:aa:bb:cc:25:fb:88:f6:e6:3d:f3:63:79:
33:b0:c1:e5:df:66:9b:5f:46:1a:52:c4:1e:4f:38:
a0:fd:8c:67:60:67:ba:bd:21:a1:78:14:60:d0:cd:
7b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:7E:F4:3C:DF:60:18:D0:62:9E:86:DB:9A:1A:B6:10:9A:EA:86:EA
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:27:ff:d3:fc:50:3c:5d:17:05:29:93:e2:5f:87:c2:cc:42:
86:fa:69:b1:f9:15:20:54:8f:49:68:c0:dd:32:11:3d:71:09:
0b:59:ab:f2:30:78:cb:42:24:67:b9:16:03:6c:32:46:db:06:
7c:48:2d:aa:a2:74:5b:d6:4d:8c:d0:e3:5e:ce:dc:91:3a:f7:
4e:f1:af:68:a8:1f:ed:84:0b:58:01:70:5d:36:16:13:06:c6:
52:80:97:64:40:e6:0e:3b:39:4c:59:79:ea:0f:99:9a:53:fd:
c0:6a:48:3b:15:15:f4:b6:66:ce:6d:ff:c5:49:c4:03:e0:7a:
41:c2:f3:11:1e:cf:7c:42:3c:18:1b:ba:10:58:b2:fb:d4:2a:
e9:21:f3:0e:be:35:f1:83:32:7c:b8:15:26:5a:23:78:a7:ce:
0f:25:be:97:55:98:dc:12:74:41:77:60:0a:a3:f9:58:c6:58:
1c:74:63:af:df:3f:71:12:18:28:29:dd:b5:fa:11:5e:45:0f:
8f:64:a5:4c:41:fa:55:df:5a:e6:88:52:fd:48:86:3a:79:38:
8f:ef:82:75:83:8e:38:22:9e:4e:53:45:c8:a8:bd:d5:c2:db:
15:50:dd:a0:aa:48:6b:26:b5:ab:75:7c:f3:c1:e6:ea:c9:a6:
1f:1c:1d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:48:45 2025 by rpki-client