Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: aAWGQRSL0XA+FngJuF6ijWNXZ2jeTMucXYF5C2oMfDA=
Subject key identifier: 19:95:38:5A:F9:A4:B8:FE:7D:A7:69:84:AA:C9:53:A3:AD:BB:41:CD
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 019A718088C7EA21232C1C1488D96272EA36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 0A3C
Signing time: Tue 11 Nov 2025 06:00:40 +0000
Manifest this update: Tue 11 Nov 2025 06:00:40 +0000
Manifest next update: Wed 12 Nov 2025 06:00:40 +0000
Files and hashes: 1: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: H6Qu2hvfOTBtRIP8oA8o4OnZ0RETbuzgSRayai/V0jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 06:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:80:88:c7:ea:21:23:2c:1c:14:88:d9:62:72:ea:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Nov 11 06:00:40 2025 GMT
Not After : Nov 12 06:00:40 2025 GMT
Subject: CN=1995385af9a4b8fe7da76984aac953a3adbb41cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:da:45:c3:16:c9:1f:82:53:ac:e5:54:e2:
38:80:08:10:70:77:19:7c:30:ba:ef:f0:97:59:47:
bf:de:a9:bf:71:06:e7:eb:74:ee:1f:e9:cf:84:57:
f4:6e:5b:81:be:94:e2:1b:b7:8c:43:9c:2a:56:3e:
fe:5f:07:ae:57:4a:f1:e1:aa:2e:24:88:ee:87:1b:
38:ff:01:27:5f:8c:67:2c:3e:0f:1e:f1:48:60:90:
1c:f3:97:15:45:02:1f:a2:5b:d9:e7:47:bf:cd:db:
57:73:98:f9:44:c2:14:71:c0:aa:35:b3:b1:ce:d0:
42:75:a1:19:d6:16:c7:fe:83:d6:69:e1:a6:42:bc:
36:bc:aa:ce:fc:9a:15:10:cd:09:31:dd:44:2c:e1:
55:51:80:79:47:02:b6:49:b3:72:85:a4:53:94:20:
7e:17:d1:75:4d:99:08:91:30:dd:22:b1:ba:a1:e3:
9d:4c:0d:28:3e:c5:cc:a6:85:0e:5c:35:03:e1:33:
70:ef:58:c7:61:a6:9d:45:a1:c0:15:cb:6f:bf:b0:
5a:58:81:bd:30:01:ab:09:9e:47:a9:e0:ac:24:cc:
d9:1a:11:f1:51:be:09:e3:24:83:eb:44:d6:9a:2a:
f9:03:ac:06:cd:9c:ad:d0:08:03:da:7d:7d:ae:33:
10:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:95:38:5A:F9:A4:B8:FE:7D:A7:69:84:AA:C9:53:A3:AD:BB:41:CD
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:2f:bd:75:73:8d:c4:3a:63:0a:64:29:5c:4f:7e:a2:3b:bc:
8a:e5:bd:b1:fd:34:a9:de:38:98:6b:5b:be:21:5b:7f:7e:65:
07:74:cd:cc:3c:99:31:87:8c:55:f5:ad:f4:ae:96:20:92:7d:
c7:9c:63:11:55:ec:0b:06:8c:20:e0:02:af:fc:9e:9e:7f:aa:
80:44:0d:00:95:89:16:4d:b9:72:25:2d:d1:9b:58:de:74:81:
ac:be:bd:72:d9:74:a2:58:65:9e:24:91:c9:0b:5f:0b:0c:04:
18:91:30:e0:5a:6e:b3:36:82:e8:a1:e4:8a:43:93:b8:aa:8b:
3d:e8:8c:53:11:5a:00:0e:cf:e2:7e:6b:ac:31:09:57:a8:6d:
5b:4e:da:0c:41:a7:70:3f:df:e6:86:1e:ba:c3:24:6e:5e:f3:
c3:e8:ea:36:ee:b3:c1:5e:d2:4a:c2:a9:9b:b3:44:5a:48:67:
51:08:46:2c:0a:3b:5d:e4:4b:f2:f0:42:4d:8b:e0:e1:71:c1:
d8:1c:cf:b3:d7:86:70:cc:86:8b:8b:61:3e:04:1a:43:64:df:
db:55:ff:88:c9:c3:1e:88:4e:7f:d1:0e:47:62:52:9e:3c:30:
3c:79:e3:db:ae:da:24:13:98:49:4d:12:11:99:ee:94:51:57:
e5:2b:90:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:44:29 2025 by rpki-client