Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: FDubCEbuWrUUwnu4UG3bL/Hf48Ea7FKU0wQARpUcOMc=
Subject key identifier: 92:C1:35:07:3E:E6:4C:B5:50:A5:70:83:35:92:6A:36:3E:D9:64:98
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 019D26CCB50F74C436A0BE3D31B5D18B0EA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 0BA3
Signing time: Wed 25 Mar 2026 21:00:43 +0000
Manifest this update: Wed 25 Mar 2026 21:00:43 +0000
Manifest next update: Thu 26 Mar 2026 21:00:43 +0000
Files and hashes: 1: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: RdI5GRVy+X+tjCKNmhIPNFUtE1LDUY6TOk2b6kc8mwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:b5:0f:74:c4:36:a0:be:3d:31:b5:d1:8b:0e:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Mar 25 21:00:43 2026 GMT
Not After : Mar 26 21:00:43 2026 GMT
Subject: CN=92c135073ee64cb550a5708335926a363ed96498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:9a:ff:74:ff:b3:92:56:61:ff:10:73:43:
30:86:fe:71:14:74:f4:b8:4f:b9:20:2d:a9:cf:95:
e6:e4:32:40:f5:05:f8:56:d6:0e:cb:93:a2:0c:ea:
88:f1:63:84:08:6e:df:f7:72:a3:8e:3d:76:6e:2c:
47:ef:5f:b1:5b:99:c3:f6:0c:30:53:29:7d:b9:4d:
e5:7a:d3:f2:88:99:28:9c:29:a9:45:17:19:ab:79:
66:ad:fa:c2:da:e1:70:b6:8a:03:3d:ed:8b:6a:f0:
2f:3f:ec:85:cb:f1:fd:2e:cd:34:eb:16:dd:b3:09:
72:e2:14:25:35:26:2a:63:41:a0:bf:5d:17:24:5b:
12:18:19:69:f1:7e:a6:d7:d7:6c:86:85:51:41:95:
ac:77:1f:c3:21:28:a7:68:f7:a2:00:d8:5d:a5:27:
3f:4b:84:9f:09:7b:8b:89:25:fe:d6:ad:63:97:63:
76:2a:50:f4:df:cf:81:0d:0f:c3:cf:ef:fe:f2:bc:
84:cd:17:85:0d:3f:c5:a5:e7:00:62:2d:bc:dc:59:
ca:22:49:cf:48:44:c7:9d:09:c3:63:6d:82:69:ce:
5c:97:9b:af:55:4b:96:65:1b:4e:21:ea:e1:86:6e:
03:a7:f1:aa:16:e0:ac:a5:ec:64:16:5c:ba:ff:a0:
ce:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C1:35:07:3E:E6:4C:B5:50:A5:70:83:35:92:6A:36:3E:D9:64:98
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:13:92:75:c6:b8:ba:eb:ae:5c:65:a0:70:64:c5:fd:a3:b2:
31:85:31:ae:bf:95:40:e8:db:85:01:f8:3b:db:64:ea:0f:ee:
3e:25:f9:3c:83:5e:0e:66:95:49:f9:d1:1b:8e:3a:43:d5:cd:
ea:92:ff:bc:4d:cc:23:c2:96:65:3f:ce:23:76:93:6f:6f:fd:
a8:e2:ff:bc:f3:e8:6c:b7:2c:77:16:86:3f:bf:7d:b5:13:91:
59:0e:29:ce:c1:a7:1a:18:8b:d5:f1:57:2b:ed:f8:4c:a6:42:
78:ec:d6:8f:b3:69:27:07:fc:1a:6c:12:8f:0c:93:b1:56:4b:
6e:4d:dd:4a:52:c8:e8:2d:83:e9:70:71:ad:b4:39:8b:62:52:
3a:98:67:64:4d:ce:f4:0e:83:67:59:b3:d6:f6:de:f5:c0:fa:
b0:d3:01:9e:23:cd:c4:ba:62:fd:27:9c:cb:cf:1a:3a:08:cb:
15:ea:73:62:f7:1e:66:56:27:3a:85:0b:bc:b8:e0:0f:c5:90:
d9:96:95:9c:c4:c9:17:0a:bd:4e:7f:e3:af:72:94:c3:dc:59:
f4:73:69:46:bb:39:2e:24:e8:7d:f5:4d:b6:74:21:70:f6:a4:
c2:42:48:c2:35:b7:ef:2a:fd:97:81:e7:13:ad:2c:d8:f7:8c:
e3:ea:9b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:58:51 2026 by rpki-client