Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: bb7MXY0BgI+Jcg+aHCUHz0YuRdtTuTl3TbhP8NKfLWc=
Subject key identifier: A7:8D:C7:CD:F2:7C:13:63:62:AC:3C:19:FE:4E:D9:76:D5:D4:19:C6
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 0199228C53490E6D1C8497AF497F0C00D682
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0916
Signing time: Sun 07 Sep 2025 05:00:45 +0000
Manifest this update: Sun 07 Sep 2025 05:00:45 +0000
Manifest next update: Mon 08 Sep 2025 05:00:45 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: u1YpbUzHONbCJiiek2Jw2iJ3cIhHfaAgkQ2Vc1Wxxd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:53:49:0e:6d:1c:84:97:af:49:7f:0c:00:d6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Sep 7 05:00:45 2025 GMT
Not After : Sep 8 05:00:45 2025 GMT
Subject: CN=a78dc7cdf27c136362ac3c19fe4ed976d5d419c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:dd:ca:81:8b:8a:6e:84:44:9a:75:9c:1b:97:
b7:3f:30:9a:c8:6e:ea:d9:6f:a9:1f:8b:4a:22:ed:
25:46:23:f9:fe:84:66:5e:83:4e:81:ce:54:80:f8:
6c:c9:45:6a:b2:b8:0e:dc:90:25:f5:3d:53:71:9c:
04:ff:28:25:4e:bb:71:8e:72:cf:ff:9a:fc:c3:c5:
e0:9a:e2:7e:35:02:3e:cc:e8:39:91:4d:23:d6:ed:
ac:6e:5b:40:9b:e0:84:d7:02:6b:03:8c:8f:ce:63:
78:80:81:49:49:5f:57:29:5c:c5:62:98:4f:40:97:
94:f0:79:9f:c2:1c:df:05:19:36:6e:2f:3d:5b:c8:
cb:9b:6b:ab:de:78:93:22:0f:bd:4a:a8:58:ce:51:
dd:e7:c9:d9:2a:09:6b:5a:54:99:d8:95:fd:cc:e5:
5f:b6:4e:e3:b4:17:43:1c:5e:0b:d0:1e:76:86:af:
b5:a0:49:31:72:99:d1:1a:16:1e:36:4b:9a:f9:e0:
04:9a:8a:00:c6:16:67:2d:e5:da:91:c0:b2:be:0a:
59:ab:4b:aa:83:a6:09:26:18:dd:6f:77:98:a3:b3:
0c:6c:40:7a:da:d6:79:f5:4e:ab:e0:23:40:be:95:
65:6d:77:75:ff:06:6f:4a:56:f3:48:14:15:86:db:
b0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8D:C7:CD:F2:7C:13:63:62:AC:3C:19:FE:4E:D9:76:D5:D4:19:C6
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:75:a9:c2:ea:ff:a7:47:dd:ed:1d:1f:08:59:3e:c6:e9:16:
75:fe:4a:92:08:de:de:4b:82:fd:1e:bf:df:73:64:ee:92:bd:
e1:44:4e:98:48:cb:ab:a7:4c:8a:a6:1f:7d:bf:0d:82:65:2b:
b7:85:20:ab:5e:f5:62:f2:7c:69:f0:5e:00:30:de:0c:9a:52:
04:be:07:b0:bf:7d:ca:5b:9e:94:40:ea:57:2f:b5:37:55:26:
4c:bd:81:3a:2f:14:6a:c0:47:6e:ba:ea:de:06:82:e1:a2:f7:
d8:a8:91:0a:b9:14:1f:34:71:89:96:39:db:50:9a:59:9f:d4:
26:33:2d:ac:93:5c:f7:8f:3a:49:18:3a:23:9c:8b:df:0d:05:
6b:44:02:3d:fd:70:64:67:1a:6e:5c:4a:ce:d1:43:d6:91:a5:
f9:c4:3a:c0:df:fc:d1:e4:89:d7:cf:8d:3d:c7:f6:a6:13:0f:
36:a7:dd:d9:93:fe:c8:10:40:7c:86:4a:3b:c6:63:ba:86:22:
4d:b1:74:2b:c8:ad:15:1c:d3:06:4e:47:d9:92:7f:97:b8:7d:
86:4e:3e:82:51:de:ff:1b:cf:6f:6a:6d:a3:79:49:6a:d3:2f:
52:af:51:fe:aa:0d:dd:86:27:c1:b8:21:bf:cf:23:c4:38:15:
6c:f2:ad:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijFNJDm0chJevSX8MANaCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjcyMDJjOTIzMGMyODk0NTBlZDVhNjJiMTczNjlhMDY1
OWJjNmIwHhcNMjUwOTA3MDUwMDQ1WhcNMjUwOTA4MDUwMDQ1WjAzMTEwLwYDVQQD
EyhhNzhkYzdjZGYyN2MxMzYzNjJhYzNjMTlmZTRlZDk3NmQ1ZDQxOWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkt3KgYuKboREmnWcG5e3PzCayG7q
2W+pH4tKIu0lRiP5/oRmXoNOgc5UgPhsyUVqsrgO3JAl9T1TcZwE/yglTrtxjnLP
/5r8w8XgmuJ+NQI+zOg5kU0j1u2sbltAm+CE1wJrA4yPzmN4gIFJSV9XKVzFYphP
QJeU8HmfwhzfBRk2bi89W8jLm2ur3niTIg+9SqhYzlHd58nZKglrWlSZ2JX9zOVf
tk7jtBdDHF4L0B52hq+1oEkxcpnRGhYeNkua+eAEmooAxhZnLeXakcCyvgpZq0uq
g6YJJhjdb3eYo7MMbEB62tZ59U6r4CNAvpVlbXd1/wZvSlbzSBQVhtuwqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKeNx83yfBNjYqw8Gf5O2XbV1BnGMB8GA1UdIwQY
MBaAFGG3ICySMMKJRQ7VpisXNpoGWbxrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDkt
MjE1ZmMzOTBiZmU0LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDktMjE1ZmMzOTBiZmU0
LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE3Wpwur/
p0fd7R0fCFk+xukWdf5Kkgje3kuC/R6/33Nk7pK94UROmEjLq6dMiqYffb8NgmUr
t4Ugq171YvJ8afBeADDeDJpSBL4HsL99yluelEDqVy+1N1UmTL2BOi8UasBHbrrq
3gaC4aL32KiRCrkUHzRxiZY521CaWZ/UJjMtrJNc9486SRg6I5yL3w0Fa0QCPf1w
ZGcablxKztFD1pGl+cQ6wN/80eSJ18+NPcf2phMPNqfd2ZP+yBBAfIZKO8ZjuoYi
TbF0K8itFRzTBk5H2ZJ/l7h9hk4+glHe/xvPb2pto3lJatMvUq9R/qoN3YYnwbgh
v88jxDgVbPKt5A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:14 2025 by rpki-client