Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: 4qxn5/abyHXNSe212Wjpf77UyDUrSF1Jpcj2VAi4nVc=
Subject key identifier: 10:7B:10:16:DE:7C:96:4D:62:57:40:42:50:A4:BF:A4:60:BF:70:B3
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 01974D7BC9BCB4D47358C375A84F0CEE44B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 089B
Signing time: Sun 08 Jun 2025 03:00:47 +0000
Manifest this update: Sun 08 Jun 2025 03:00:47 +0000
Manifest next update: Mon 09 Jun 2025 03:00:47 +0000
Files and hashes: 1: 5iUoguj_iK1nNW8vHsVzOldAdSU.roa (hash: pKY+cX83EfJeSDoR6xrNZru3sgyhL3gHqEm0luVXgrc=)
2: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: PfLYXnW6kS4w/V4SkWfgl8rJ56SA3+FUyzT41g8LMWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7b:c9:bc:b4:d4:73:58:c3:75:a8:4f:0c:ee:44:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Jun 8 03:00:47 2025 GMT
Not After : Jun 9 03:00:47 2025 GMT
Subject: CN=107b1016de7c964d6257404250a4bfa460bf70b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:37:ff:10:e8:ca:77:3c:83:91:51:15:34:a0:
6b:4f:98:19:84:2d:3b:3a:bb:2a:c6:bc:76:e0:1c:
91:36:08:51:2a:03:d1:a4:4c:8b:c1:be:cf:e6:b8:
3f:16:e2:6b:8c:75:3c:bc:1c:8f:b7:19:5f:27:59:
3a:62:19:9d:ae:98:d9:57:05:bf:4f:57:40:2a:02:
11:3e:b6:07:a8:65:41:eb:79:3d:30:d3:63:3a:78:
5d:4d:4f:ac:d1:a1:9b:99:e3:a0:77:d1:8d:ca:34:
bd:d2:af:c9:6b:9b:80:4c:ea:de:4e:f7:22:cf:2c:
50:bc:f0:e7:3c:8a:8c:8f:3e:9d:c7:63:58:62:c5:
8e:61:e2:c6:5f:1c:3e:5f:db:49:fe:34:f8:6c:ba:
b5:53:3f:b0:13:89:29:64:25:96:90:00:de:32:67:
65:a9:f0:a4:71:97:5c:19:a4:39:63:a2:9c:89:e0:
53:97:b9:a5:e8:5b:27:6e:b3:15:17:1b:60:2f:c7:
66:c4:05:8e:8c:d3:15:09:5c:96:22:93:d7:cf:24:
dc:be:62:d1:34:90:d9:95:1b:8c:16:e2:d4:0f:f0:
7e:4b:02:af:65:cb:11:13:5c:25:dd:1c:9c:38:36:
35:61:d2:dc:b9:f7:1f:b6:66:7d:78:61:0f:cd:e1:
bb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:7B:10:16:DE:7C:96:4D:62:57:40:42:50:A4:BF:A4:60:BF:70:B3
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d9:ac:a5:20:64:8c:a4:38:e7:14:b6:0a:ff:07:62:c8:e0:bd:
dc:0c:ec:2b:b9:60:e4:41:1d:ad:c3:d0:f5:63:07:aa:e1:e9:
9c:25:79:88:b5:65:96:f4:28:34:e5:ac:28:1a:d2:c2:a5:fe:
f4:2d:c8:c7:06:9b:93:7c:f3:0d:2f:ea:e5:5b:3e:e2:1d:01:
f1:c5:cc:8e:f6:95:3a:6f:d7:7e:99:3e:33:65:44:30:c3:47:
41:3a:63:e5:b7:35:a5:b8:55:14:69:9f:05:6e:fd:7b:df:98:
60:35:7e:25:48:f0:92:f2:a1:cf:68:ef:fc:3f:06:79:ce:1e:
55:96:ed:5e:65:28:ba:c4:f4:2e:86:a2:33:35:9d:d7:eb:6c:
58:9b:6c:58:1e:d9:ee:99:87:59:93:cc:96:79:2e:d7:71:e5:
48:6e:3e:c8:ba:47:b2:ea:de:1f:e2:58:57:de:c9:81:d6:cf:
82:c0:85:12:a4:d6:39:cc:3d:40:c2:b7:d4:4d:6c:1e:98:e7:
f9:6a:dd:76:e5:c0:c0:3e:f0:cc:0a:ac:99:d8:8e:8b:ab:c3:
32:c7:f4:86:e2:f3:b3:e7:e8:b7:d7:1e:2c:dd:5b:ab:0f:a9:
ea:26:52:16:88:03:90:20:f1:7f:4e:7f:18:99:ff:a8:34:b3:
22:5f:23:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:30:18 2025 by rpki-client