Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: RpR2gaa7TxKd03n1V8hFomPpRCIpfetTvDa5Ysj0jrY=
Subject key identifier: 09:29:18:44:D3:AE:81:A2:BB:0A:65:D2:5A:F4:7F:74:3B:BF:CB:30
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 019CAF10B9D90FA45A69BE67AA83D2F93BD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 0B65
Signing time: Mon 02 Mar 2026 15:00:34 +0000
Manifest this update: Mon 02 Mar 2026 15:00:34 +0000
Manifest next update: Tue 03 Mar 2026 15:00:34 +0000
Files and hashes: 1: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: AZgJvdUDO+uv/By7v6sTVDX1v6brHoVXSdb0RItaAaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:10:b9:d9:0f:a4:5a:69:be:67:aa:83:d2:f9:3b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Mar 2 15:00:34 2026 GMT
Not After : Mar 3 15:00:34 2026 GMT
Subject: CN=09291844d3ae81a2bb0a65d25af47f743bbfcb30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0f:26:19:fe:24:e0:8c:d7:05:06:d1:61:2f:
11:bf:f1:b7:93:9c:75:ec:aa:4f:27:3d:3c:1c:b2:
38:a8:dd:c6:88:83:4b:1d:33:9e:c8:b0:48:70:26:
2e:31:7f:5f:90:8e:73:0b:86:aa:67:6c:99:90:f9:
0a:49:ff:01:22:da:d6:f4:34:aa:e8:2d:d5:d0:f0:
cc:6a:d8:a4:82:6d:65:ee:16:07:63:a7:a4:5f:38:
52:43:81:ac:1a:3d:62:58:19:28:2c:53:fc:af:f7:
36:01:e3:db:3f:8c:e4:44:5a:a0:46:95:16:4a:ac:
1b:87:f4:9a:3b:40:40:4a:47:56:74:83:70:ec:b5:
26:b2:1e:99:3d:8d:6e:32:1c:6d:26:6e:ed:47:30:
61:5d:51:86:4f:e4:e8:38:df:46:a9:85:1e:08:61:
ba:c3:75:62:53:ea:76:a3:09:0e:82:df:90:08:d2:
84:2d:a0:28:7d:de:39:9a:4a:3f:13:aa:fc:fc:e6:
7a:c3:e3:15:a4:d7:a6:74:1c:60:9d:5a:0a:49:5a:
62:12:51:0c:41:19:73:aa:db:0c:c0:c8:34:cd:c3:
4e:c2:9b:8a:c7:5a:8d:b8:cd:d0:af:11:d6:0a:3f:
8c:13:8f:57:cc:04:2e:37:d8:f0:65:a8:fd:7c:81:
e0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:29:18:44:D3:AE:81:A2:BB:0A:65:D2:5A:F4:7F:74:3B:BF:CB:30
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c9:74:3f:9d:6b:24:38:b5:80:c4:d6:fe:47:2c:9a:47:bf:
09:bc:76:5c:3a:a4:9e:b0:54:ae:da:ae:a9:ad:f6:8e:16:d3:
7a:9d:d7:a2:78:9a:d2:2c:35:22:f2:cf:a6:b5:19:00:cf:61:
9b:b3:b8:22:99:79:e3:83:5f:4e:fb:9b:22:04:8f:ec:14:1b:
ca:83:f1:04:4b:b7:34:df:c7:36:9a:34:87:a0:e6:ec:75:fd:
d2:95:bb:8e:ce:a2:5e:94:a5:72:d7:70:4f:b9:67:c1:1b:7b:
5e:25:df:ff:ec:92:2d:5f:96:78:d2:dd:e8:f7:de:d7:a2:10:
0a:da:7c:2b:f3:d9:65:71:e3:93:fd:dd:aa:88:f3:d6:0c:89:
06:af:9d:20:52:98:1f:c8:92:71:1b:7c:ad:c8:ec:b7:c3:66:
ce:8c:4f:e2:8e:8d:45:5b:54:f1:f6:17:0f:b4:d0:80:4f:9c:
6f:56:4b:79:9e:ad:b1:17:e7:6d:a6:bc:4a:4e:61:6c:5d:19:
59:0e:7e:6e:c3:ab:03:fd:01:49:0e:99:1e:32:58:48:dd:f6:
62:b7:d4:06:1b:4b:73:5a:8f:d3:c7:3c:4e:dd:07:e2:fb:c2:
84:05:48:19:cb:b0:0d:7b:8c:7a:12:9d:c3:44:a9:06:9b:91:
33:5e:58:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvELnZD6Raab5nqoPS+TvQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmNGRjNWQ0YzA3NmZkODQyNjNhYjcyZTZmMTdiNWZmNGFj
Yjg0NDgwHhcNMjYwMzAyMTUwMDM0WhcNMjYwMzAzMTUwMDM0WjAzMTEwLwYDVQQD
EygwOTI5MTg0NGQzYWU4MWEyYmIwYTY1ZDI1YWY0N2Y3NDNiYmZjYjMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQ8mGf4k4IzXBQbRYS8Rv/G3k5x1
7KpPJz08HLI4qN3GiINLHTOeyLBIcCYuMX9fkI5zC4aqZ2yZkPkKSf8BItrW9DSq
6C3V0PDMatikgm1l7hYHY6ekXzhSQ4GsGj1iWBkoLFP8r/c2AePbP4zkRFqgRpUW
Sqwbh/SaO0BASkdWdINw7LUmsh6ZPY1uMhxtJm7tRzBhXVGGT+ToON9GqYUeCGG6
w3ViU+p2owkOgt+QCNKELaAofd45mko/E6r8/OZ6w+MVpNemdBxgnVoKSVpiElEM
QRlzqtsMwMg0zcNOwpuKx1qNuM3QrxHWCj+ME49XzAQuN9jwZaj9fIHgjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAkpGETTroGiuwpl0lr0f3Q7v8swMB8GA1UdIwQY
MBaAFE9NxdTAdv2EJjq3Lm8Xtf9Ky4RIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDAzRjFNQjJfWVFtT3JjdWJ4ZTFfMHJMaEVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8yNTc1ZmUtYTUyNi00MTk1LTk3NDUt
ZmE5NmJkZDJmZmEzLzEvVDAzRjFNQjJfWVFtT3JjdWJ4ZTFfMHJMaEVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS8yNTc1ZmUtYTUyNi00MTk1LTk3NDUtZmE5NmJkZDJmZmEz
LzEvVDAzRjFNQjJfWVFtT3JjdWJ4ZTFfMHJMaEVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdMl0P51r
JDi1gMTW/kcsmke/Cbx2XDqknrBUrtquqa32jhbTep3Xonia0iw1IvLPprUZAM9h
m7O4Ipl544NfTvubIgSP7BQbyoPxBEu3NN/HNpo0h6Dm7HX90pW7js6iXpSlctdw
T7lnwRt7XiXf/+ySLV+WeNLd6Pfe16IQCtp8K/PZZXHjk/3dqojz1gyJBq+dIFKY
H8iScRt8rcjst8NmzoxP4o6NRVtU8fYXD7TQgE+cb1ZLeZ6tsRfnbaa8Sk5hbF0Z
WQ5+bsOrA/0BSQ6ZHjJYSN32YrfUBhtLc1qP08c8Tt0H4vvChAVIGcuwDXuMehKd
w0SpBpuRM15Yfw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 23:08:38 2026 by rpki-client