Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: sWvSkG8JKT6raKUQ1+FSlcDRF7++CwkOK1Mq/uqE7CU=
Subject key identifier: 25:80:F7:4A:DD:4E:D7:ED:2C:39:01:FC:E6:98:61:96:EC:1A:A5:CA
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 019D34F6A60BD8DA4E0B20C374EE5C27AD06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0B33
Signing time: Sat 28 Mar 2026 15:01:12 +0000
Manifest this update: Sat 28 Mar 2026 15:01:12 +0000
Manifest next update: Sun 29 Mar 2026 15:01:12 +0000
Files and hashes: 1: H8_4w92WXuGkctjlJERZEe-5K34.roa (hash: WmS53pHwBk98gkS34NpilrfE1ZVelLUsA8l48EKHH6c=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: XFisqPzWE9Xc7wN/HWlDtHJcOkr7+ht5nnajXCcIY1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:f6:a6:0b:d8:da:4e:0b:20:c3:74:ee:5c:27:ad:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Mar 28 15:01:12 2026 GMT
Not After : Mar 29 15:01:12 2026 GMT
Subject: CN=2580f74add4ed7ed2c3901fce6986196ec1aa5ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fc:a8:49:7a:8d:2e:7e:e2:29:6f:88:3e:3b:
7f:d5:dd:01:03:c7:c6:e4:0a:46:9c:44:3a:e6:49:
b2:4b:13:91:b8:69:97:8f:c8:98:ab:ff:94:68:d4:
4a:b5:0b:72:4e:05:f3:dd:12:f6:3e:be:4f:9b:31:
df:cd:39:69:b0:d4:56:a3:fe:45:70:1b:8f:c7:8a:
3c:62:69:e8:27:bb:9f:04:93:a0:fa:88:7e:b2:e7:
42:42:a7:ea:b7:95:50:aa:2d:d6:3b:72:73:c4:d1:
c4:8d:c5:2a:5d:c9:02:75:b2:66:ba:1c:c5:bd:46:
ec:82:35:21:7c:d0:e3:06:28:ec:81:67:55:d7:85:
ef:5f:df:23:a0:4f:93:d0:c7:ff:21:69:14:ec:c6:
a6:62:7b:8e:4c:f5:27:f3:f1:84:89:42:26:82:2b:
95:10:e9:30:92:e3:1f:34:5e:96:e6:57:88:77:39:
ed:82:eb:d1:f1:6f:a5:be:96:2b:6a:8a:ec:03:e2:
7f:d1:c4:ed:4f:f7:6d:a4:01:0f:a9:09:ee:a9:b4:
8d:9f:01:31:61:db:87:20:66:85:4d:94:43:55:05:
a1:09:2e:bf:4a:0b:e4:e5:bb:e3:03:bd:25:ac:1e:
d3:10:d5:f2:1e:59:a3:80:18:1e:c0:8d:2c:f1:ce:
4b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:80:F7:4A:DD:4E:D7:ED:2C:39:01:FC:E6:98:61:96:EC:1A:A5:CA
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:e3:a2:d5:0b:30:f7:30:de:ba:e9:d6:90:e6:67:a8:22:30:
76:48:d4:a5:15:25:3a:23:fb:0d:d8:29:a1:a9:9b:10:09:82:
1f:66:20:6b:c6:b9:d6:d5:d9:ee:f4:6e:3d:1d:ce:df:95:49:
fe:35:e7:9d:7e:88:74:46:f7:02:ef:2c:ab:a9:a2:6c:e7:fc:
be:ba:38:78:31:9a:5d:e7:7d:6a:42:8a:6d:03:81:08:86:65:
bf:c0:02:55:c0:4a:da:c2:86:86:a7:e9:5f:01:b5:7f:75:ef:
23:0e:86:d1:1d:d8:aa:55:95:11:4e:58:5b:f0:55:0c:e9:ad:
e8:28:02:e2:96:1e:97:20:e8:e4:82:3a:69:ea:8b:9d:fe:e7:
3c:18:7c:40:50:40:39:bf:de:4c:66:cc:c3:36:0e:48:77:8b:
1b:d9:68:79:dd:41:95:be:e7:8c:21:5b:04:04:a4:48:e3:89:
b0:33:e5:84:8f:2e:75:03:d7:bf:b5:78:08:e6:88:f7:4c:5b:
14:63:9a:41:33:bb:80:a1:4d:53:ce:d3:1b:46:92:d9:39:99:
70:df:58:c6:30:5c:da:63:6c:c5:c1:34:c7:16:d0:02:ed:b3:
47:df:81:75:67:be:21:dc:37:6f:85:79:12:7a:8c:44:6f:85:
df:58:96:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 18:28:58 2026 by rpki-client