Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: BpsJ8jNd3M7/fMlvroETOhrsNLVOBCLcYIK1ZMkOv9U=
Subject key identifier: 85:E3:7A:2C:26:2C:03:45:92:2C:2A:94:9E:53:19:18:BC:AF:10:2E
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 019A30EA43B667B8F9573626765EE4389440
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 09A2
Signing time: Wed 29 Oct 2025 17:00:50 +0000
Manifest this update: Wed 29 Oct 2025 17:00:50 +0000
Manifest next update: Thu 30 Oct 2025 17:00:50 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: 7LgapkMCrDUQgO8kJMJj0/7vHBfuUANl/7peolT7J8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 16:27:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:30:ea:43:b6:67:b8:f9:57:36:26:76:5e:e4:38:94:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Oct 29 17:00:50 2025 GMT
Not After : Oct 30 17:00:50 2025 GMT
Subject: CN=85e37a2c262c0345922c2a949e531918bcaf102e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0d:40:fa:b2:80:7e:2a:69:19:c1:27:a4:99:
5c:ff:6b:6b:0c:48:11:c8:e4:98:f9:ba:c2:03:de:
c2:dc:db:14:4f:cc:de:09:20:b8:0f:71:9c:ad:78:
2f:9b:89:6b:43:fd:78:da:5c:d2:67:38:e1:dc:8d:
ac:3c:f0:2c:4d:e1:ac:d0:c1:e8:8c:5a:66:4f:50:
cc:10:ff:1d:46:dc:1a:3e:5c:2a:a5:89:89:e3:22:
09:40:46:80:cb:a0:1b:59:c1:11:3c:49:ff:fe:d5:
25:c1:3a:c3:b3:61:1a:86:c0:68:26:ae:18:58:30:
5a:59:26:e2:ac:7e:ee:58:f8:53:9a:b5:25:5f:16:
9a:ef:3c:97:a3:3f:8c:09:37:50:cc:36:33:d7:df:
01:fa:82:f2:71:39:6b:c9:b8:d5:f3:7d:12:fc:63:
7c:3b:eb:4d:90:eb:56:10:6b:eb:22:e5:3f:e6:a6:
17:c3:6e:17:c0:dd:ce:a2:fd:0a:e1:88:42:f2:dd:
96:07:1b:03:14:30:35:19:0d:2a:1d:d0:da:66:6f:
28:5b:b9:fe:e7:49:71:17:f4:c7:25:64:3b:5d:3a:
ce:34:64:1f:2d:a6:1f:52:52:73:b9:32:d2:c0:75:
d2:f6:f7:c0:15:58:64:20:d6:80:26:25:bf:e7:d8:
8e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E3:7A:2C:26:2C:03:45:92:2C:2A:94:9E:53:19:18:BC:AF:10:2E
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:6c:b5:f0:25:41:1c:47:49:ec:94:f8:08:af:d5:fa:19:73:
8d:8e:f2:2b:e5:cb:88:a3:ef:d5:ba:02:d0:37:8e:28:ce:6b:
df:9d:29:e6:f7:c0:41:31:dc:53:01:b3:37:6d:7d:57:5e:07:
17:8f:aa:63:fa:b5:89:6d:ea:88:e5:28:e0:5a:88:da:b5:60:
2e:85:30:bb:af:eb:ab:3a:6f:ca:f9:3a:10:33:56:ff:96:29:
5e:e4:c5:1d:f2:cb:34:6f:63:46:66:44:af:d5:e3:c4:58:7f:
95:62:1b:a9:97:e5:da:df:97:2c:17:11:f8:44:dd:26:47:73:
da:87:ba:36:ab:8b:35:ff:40:05:eb:cb:d7:92:ba:63:5a:27:
44:cd:78:47:6f:78:f3:da:65:30:80:5c:4e:45:1c:56:85:09:
6a:57:c8:47:25:8d:aa:ec:d7:e1:ed:15:32:88:81:4d:f3:84:
a5:23:a1:12:77:f9:e5:bd:a4:6e:e2:84:dd:c2:46:ce:a4:6f:
f2:11:c1:9c:a5:a2:aa:93:d7:05:3d:06:4c:2a:3e:b7:13:ed:
58:fd:35:1a:1f:6b:c2:dd:dc:0a:65:82:40:e3:fb:57:9d:ad:
32:45:93:ab:66:4e:9f:0e:fb:3b:ed:8b:1c:89:8f:16:45:f9:
f0:be:0e:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 18:49:34 2025 by rpki-client