Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: SeX8nMC4WDCd97s9GaR9o64ibHiKFLaZCwJdvKNJuU8=
Subject key identifier: 29:A4:CE:4A:9B:AE:29:AC:E2:8D:2A:C0:67:FA:1A:4C:75:C1:01:D9
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 01974F32EE775E230BFED4E252C0E0DAD6BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0824
Signing time: Sun 08 Jun 2025 11:00:27 +0000
Manifest this update: Sun 08 Jun 2025 11:00:27 +0000
Manifest next update: Mon 09 Jun 2025 11:00:27 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: Z31tNV0oZdTj2gheGNnjnrtNkWqE9j9eiqYLm/nbGok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:32:ee:77:5e:23:0b:fe:d4:e2:52:c0:e0:da:d6:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Jun 8 11:00:27 2025 GMT
Not After : Jun 9 11:00:27 2025 GMT
Subject: CN=29a4ce4a9bae29ace28d2ac067fa1a4c75c101d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:70:6e:2c:f4:3e:bd:c0:f0:9d:2c:f3:c7:92:
64:a7:6c:7e:c1:37:0f:9c:3d:ae:71:34:d3:7a:cd:
9a:4a:4d:55:4f:94:9c:5b:ea:4a:e2:88:0e:83:5b:
21:a0:4e:1b:cc:5b:0c:57:6e:e7:ea:ef:16:6f:42:
38:ad:a2:c3:7d:6d:78:44:04:e0:19:47:29:d6:26:
41:a1:02:19:4b:7d:04:c8:36:09:1f:53:ab:0d:4d:
68:bb:e9:a6:86:4b:ee:ab:46:ec:99:a4:00:f8:46:
64:d0:5d:65:2f:1e:51:93:f8:ac:b7:f6:b8:75:bc:
4b:4d:6f:b5:7a:09:62:6b:15:c7:21:c1:b8:90:e6:
48:c3:77:5f:a1:d8:1d:4e:f1:de:01:c1:ff:fc:5d:
c8:8c:88:b7:4a:f1:38:e2:25:7d:45:f0:19:1c:bb:
b7:f7:f9:87:5e:36:47:5f:3b:f6:da:4e:a1:9d:3c:
55:e1:9f:a9:5c:81:3b:eb:7a:6d:e5:59:bb:23:81:
46:2b:65:e4:5f:17:73:5e:91:af:74:08:0e:ac:ea:
75:8f:07:15:c8:58:71:8b:f9:af:0e:78:dd:90:6f:
ef:98:e7:af:a7:0a:87:6e:f2:7d:76:d3:bd:6b:fe:
88:f6:c8:5c:f4:a7:ae:05:8d:b4:b2:ce:20:47:29:
fb:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A4:CE:4A:9B:AE:29:AC:E2:8D:2A:C0:67:FA:1A:4C:75:C1:01:D9
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:14:92:87:df:a1:65:d3:0d:85:5c:36:5e:09:01:4c:d8:42:
01:72:08:b6:ac:4c:2b:40:6a:de:d6:28:e0:10:b6:99:5f:6f:
85:39:46:2b:06:63:12:de:64:bc:6c:c2:8f:0e:bb:19:94:44:
f4:99:b3:6d:fb:de:8c:44:32:9e:26:46:3f:da:5c:22:c8:d6:
22:01:06:fb:32:9b:c1:61:00:e0:ed:90:8a:06:4e:6b:e0:0c:
ee:f0:c0:b6:1d:d7:82:65:55:d5:fa:3e:3f:67:ea:e1:6a:99:
96:03:d2:7b:29:d6:5d:58:e6:a1:65:e6:31:4e:c7:0d:0e:ad:
f2:0a:98:a7:8a:a0:0e:57:52:3a:10:d4:53:ba:b6:ee:40:8d:
0e:e0:6b:bd:db:b6:26:d3:19:84:0b:4c:78:a8:46:a6:3a:16:
28:3e:b8:8b:57:3d:43:da:25:38:f9:bd:6c:87:f4:e6:77:56:
5d:1b:e8:be:b6:9c:54:fc:79:c3:0f:d5:31:8e:fe:d9:09:82:
37:ba:e3:86:cc:97:8e:9a:f9:35:46:df:c1:28:51:a5:a4:0c:
01:1c:05:bf:da:7d:9b:97:9f:45:99:28:b3:a1:d7:8f:56:58:
54:54:2f:55:1e:39:1b:9e:5a:4f:73:fa:2b:34:e2:2a:0f:bc:
b4:db:ce:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:24:07 2025 by rpki-client