Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json)
Hash identifier: L2sYQnmmmCQcnF5iLKs6oXG9PK/2ziwyGbd5OUAXbS4=
Subject key identifier: B8:21:E5:26:A8:7C:C0:AE:F6:8E:6B:DE:5B:60:30:40:61:C0:B6:B6
Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Certificate serial: 019A3534866BFC00D966164CCE38ECFB52B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
Manifest number: 16FD
Signing time: Thu 30 Oct 2025 13:00:25 +0000
Manifest this update: Thu 30 Oct 2025 13:00:25 +0000
Manifest next update: Fri 31 Oct 2025 13:00:25 +0000
Files and hashes: 1: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: 7DaZo/JdGbB+dJ4DSmLf56LPEue2dKU5FNoaw+pIA5I=)
2: dZjzanZ5Xa3WwYz-n1bsR4-cdN4.roa (hash: x2Q62dC7uuAXO8D8ST0Y3bzPEAD8rzw3v3/5eqKnb5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:35:34:86:6b:fc:00:d9:66:16:4c:ce:38:ec:fb:52:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Validity
Not Before: Oct 30 13:00:25 2025 GMT
Not After : Oct 31 13:00:25 2025 GMT
Subject: CN=b821e526a87cc0aef68e6bde5b60304061c0b6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0b:fa:74:2e:9a:dd:ce:75:9e:f2:bf:91:3f:
a8:5f:5e:33:bc:26:b2:d9:be:f5:b2:d1:b8:36:49:
07:b8:f3:e8:ad:7d:a0:e4:82:a3:ba:9a:d4:bc:a0:
36:81:38:b5:12:ed:82:8b:d8:d3:9b:83:da:78:1e:
b5:47:e2:59:28:fd:a0:c7:13:d8:7e:68:af:25:71:
f8:44:92:3d:b5:80:95:39:88:84:fb:e1:e3:93:27:
f8:ab:bb:28:3f:a4:64:22:b4:31:5c:32:a8:6c:1a:
ea:17:a2:29:e6:52:eb:57:5b:4b:0e:ef:ea:42:b4:
a0:bb:34:15:3d:07:be:ee:7a:d4:7c:87:1d:40:f5:
01:b3:05:b2:4c:49:5f:10:06:43:d6:48:28:5f:c7:
9c:95:9b:e7:07:51:2b:4c:97:32:0d:d3:f5:ba:49:
c2:c0:cd:ca:c3:d4:dc:14:99:a4:f5:e9:bf:c0:a9:
20:0b:bd:82:19:b2:e7:26:32:f4:1c:d1:a2:15:3f:
2b:ad:f5:16:ea:e7:17:68:82:0e:2b:84:9d:9f:92:
c5:12:51:2d:96:63:cc:11:ea:16:7e:61:7e:8d:03:
3c:71:50:42:86:48:8e:38:06:74:b9:7e:71:35:1d:
98:3c:d4:cc:b0:ea:af:f9:4c:58:f2:55:40:4c:2f:
f4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:21:E5:26:A8:7C:C0:AE:F6:8E:6B:DE:5B:60:30:40:61:C0:B6:B6
X509v3 Authority Key Identifier:
keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:da:5c:cb:37:20:24:f6:59:21:3e:a7:7c:4e:f9:91:1c:6f:
fb:a5:3c:f7:32:0a:b9:c5:c0:dc:3a:4b:c3:88:0a:67:95:32:
b8:9b:9b:83:45:04:13:77:8c:99:40:0f:b2:90:01:6b:94:e2:
ab:7b:c8:1c:bf:26:5f:49:76:87:62:02:dc:c9:3c:31:4c:87:
55:64:f6:31:34:7f:56:54:95:89:6e:51:f0:8f:6a:aa:da:48:
ac:cd:4b:03:f1:94:1c:ce:e3:52:63:7d:d5:bf:d5:b6:18:32:
38:39:75:d6:28:4e:ae:4d:4b:1d:05:49:b6:a5:ca:bf:c1:2a:
33:61:9e:71:4e:9b:a1:f5:ea:3b:51:68:4e:89:ca:43:21:79:
ff:27:80:c4:7e:bb:18:3b:85:8a:f7:ea:5c:4b:34:09:d7:09:
89:12:d6:1b:5a:7d:b0:37:a8:b4:b0:a5:ad:f2:42:34:e7:99:
3a:31:e2:da:dc:2a:18:cf:40:0e:1a:2d:07:df:62:33:00:fd:
3f:f7:52:f8:18:e1:4d:28:11:17:1d:0d:70:f8:a7:fe:e7:37:
62:ad:46:92:4f:9e:7b:51:5f:64:0a:de:85:7c:a9:56:4d:7f:
0f:4c:3a:29:18:f4:6c:fa:d7:d8:6a:18:ce:47:dd:29:ed:06:
2f:71:c1:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 17:30:17 2025 by rpki-client