Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json)
Hash identifier: 42UB+/N/r02K1KBe8anGfzwiG6WuDiYyBFMviPjXKQM=
Subject key identifier: 73:88:15:BC:D7:1B:BC:76:BA:33:74:B4:0C:00:66:F4:84:02:D7:87
Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Certificate serial: 019922FAD48E8454A0FA816B2A92D628AEEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 07:01:27 +0000
Manifest this update: Sun 07 Sep 2025 07:01:27 +0000
Manifest next update: Mon 08 Sep 2025 07:01:27 +0000
Files and hashes: 1: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: HkUOzylOE21nMCp9jBZ89o9Y3+m+HxWADbU02jJ7ScA=)
2: dZjzanZ5Xa3WwYz-n1bsR4-cdN4.roa (hash: x2Q62dC7uuAXO8D8ST0Y3bzPEAD8rzw3v3/5eqKnb5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:d4:8e:84:54:a0:fa:81:6b:2a:92:d6:28:ae:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Validity
Not Before: Sep 7 07:01:27 2025 GMT
Not After : Sep 8 07:01:27 2025 GMT
Subject: CN=738815bcd71bbc76ba3374b40c0066f48402d787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f9:7a:f0:7e:24:24:bf:95:5d:41:e9:09:98:
3e:c1:10:f8:4a:da:d7:5f:a9:4b:03:b9:96:7c:20:
65:87:d6:8d:f7:49:02:03:e8:3e:f7:49:73:ad:19:
27:83:94:ba:90:20:51:c7:bc:56:fb:45:f2:66:19:
2b:a8:fa:9d:c5:6f:29:48:e8:3f:4a:e9:d5:98:74:
7f:98:38:47:2f:4e:85:18:25:1e:9f:f9:c7:2e:45:
f4:5b:cf:83:ce:13:d1:f3:34:30:5d:25:8e:da:a7:
8d:2f:2b:c2:7a:5e:26:78:a7:64:bf:9f:b5:19:a6:
ed:2f:05:79:53:20:b3:82:3e:a5:92:69:29:4d:f6:
70:ab:96:32:38:ee:74:64:4c:50:c0:05:17:99:38:
0d:43:ad:e4:9d:f9:16:27:b9:17:01:f1:c5:5c:f0:
f6:39:68:5f:84:fe:83:44:35:34:55:f2:f9:32:45:
87:3d:7e:30:c0:92:2f:ce:22:72:1f:28:9f:17:42:
8e:ae:65:a9:2e:b4:47:cd:02:95:65:0f:f5:16:09:
9e:c1:a5:0e:c9:e8:3d:36:0f:09:18:cf:e8:58:9a:
9e:e9:22:a3:10:8c:5b:2c:79:2f:4c:2c:d4:22:d0:
74:ce:83:f1:83:1d:09:08:6c:dd:0c:17:ef:bf:8a:
e6:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:88:15:BC:D7:1B:BC:76:BA:33:74:B4:0C:00:66:F4:84:02:D7:87
X509v3 Authority Key Identifier:
keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:3d:c2:51:17:a6:95:5a:d1:44:42:6a:24:31:11:04:66:19:
ff:1f:7d:59:ad:2c:ed:1c:5e:5c:a9:5c:30:00:c6:5c:7e:ac:
22:4d:9f:88:d2:df:56:ab:81:bd:30:80:a0:4c:6c:08:de:b4:
7a:47:2f:f5:c0:7d:00:ce:7f:bd:cf:92:ed:42:29:e2:47:e6:
87:cf:75:38:e0:77:35:73:1d:ac:4d:08:90:83:66:eb:bc:de:
97:51:80:c7:34:38:6e:33:4a:19:27:6f:88:18:a2:63:80:ec:
2a:8e:f3:58:cc:b4:92:e5:c8:e5:3e:e6:6d:9a:21:68:a8:34:
91:06:58:ac:c3:ba:67:b7:58:8c:84:97:50:6d:e7:f6:16:b7:
c2:93:99:ec:b8:57:95:a6:e3:16:33:b9:f2:d4:9e:ac:48:80:
40:0d:8c:19:0e:3f:d1:eb:74:ff:6f:d2:d3:3e:ac:ab:77:eb:
be:a1:a0:3b:c1:6a:0d:80:f0:a4:bb:ef:82:f1:4e:b6:06:3f:
5b:a4:11:0d:a1:dc:22:02:06:2e:7e:23:24:45:0b:d9:a7:26:
94:5e:f0:14:66:e9:2c:c2:c2:0e:21:df:2e:96:cb:40:46:e5:
c8:0a:bd:3c:0d:e0:9f:06:c8:be:4f:5d:a2:6a:c0:b7:b1:1e:
e2:fd:c9:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+tSOhFSg+oFrKpLWKK7sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZDZlNGJmZmEyYjRkMWJjNDBlOTJiMzBhZjBkMjFhNzRi
MGJiZDAwHhcNMjUwOTA3MDcwMTI3WhcNMjUwOTA4MDcwMTI3WjAzMTEwLwYDVQQD
Eyg3Mzg4MTViY2Q3MWJiYzc2YmEzMzc0YjQwYzAwNjZmNDg0MDJkNzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/l68H4kJL+VXUHpCZg+wRD4StrX
X6lLA7mWfCBlh9aN90kCA+g+90lzrRkng5S6kCBRx7xW+0XyZhkrqPqdxW8pSOg/
SunVmHR/mDhHL06FGCUen/nHLkX0W8+DzhPR8zQwXSWO2qeNLyvCel4meKdkv5+1
GabtLwV5UyCzgj6lkmkpTfZwq5YyOO50ZExQwAUXmTgNQ63knfkWJ7kXAfHFXPD2
OWhfhP6DRDU0VfL5MkWHPX4wwJIvziJyHyifF0KOrmWpLrRHzQKVZQ/1FgmewaUO
yeg9Ng8JGM/oWJqe6SKjEIxbLHkvTCzUItB0zoPxgx0JCGzdDBfvv4rmvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHOIFbzXG7x2ujN0tAwAZvSEAteHMB8GA1UdIwQY
MBaAFGLW5L/6K00bxA6Sswrw0hp0sLvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDIt
ZjE1NTU0ZmE0YjBiLzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDItZjE1NTU0ZmE0YjBi
LzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIT3CURem
lVrRREJqJDERBGYZ/x99Wa0s7RxeXKlcMADGXH6sIk2fiNLfVquBvTCAoExsCN60
ekcv9cB9AM5/vc+S7UIp4kfmh891OOB3NXMdrE0IkINm67zel1GAxzQ4bjNKGSdv
iBiiY4DsKo7zWMy0kuXI5T7mbZohaKg0kQZYrMO6Z7dYjISXUG3n9ha3wpOZ7LhX
labjFjO58tSerEiAQA2MGQ4/0et0/2/S0z6sq3frvqGgO8FqDYDwpLvvgvFOtgY/
W6QRDaHcIgIGLn4jJEUL2acmlF7wFGbpLMLCDiHfLpbLQEblyAq9PA3gnwbIvk9d
omrAt7Ee4v3JTw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 13:47:40 2025 by rpki-client