Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
File: YbGV0TBQ_zxGihSXeHELU1giUdk.mft (raw, json)
Hash identifier: +mayOncSHqbtTAAaBjmsdfrSBheZsVYNoc3zKWPy8AE=
Subject key identifier: 44:A3:B4:14:50:21:ED:2E:F9:E1:FC:0E:74:CA:B0:A6:6A:8F:93:2C
Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9
Certificate serial: 019A7226339AA0E531B1B01D353E58472446
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
Manifest number: 1723
Signing time: Tue 11 Nov 2025 09:01:37 +0000
Manifest this update: Tue 11 Nov 2025 09:01:37 +0000
Manifest next update: Wed 12 Nov 2025 09:01:37 +0000
Files and hashes: 1: Wt3X3B6NcZ-mxrNPh2fG99PqrRE.roa (hash: q1LYdMsfXSEFkYw+v/2PtBLKm0CXtMVR1H0DEe1ErnY=)
2: YbGV0TBQ_zxGihSXeHELU1giUdk.crl (hash: xkiK3CiQcoNfjcHSQb5cWTkT5/5aBJ0ZUygZN8/doi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:26:33:9a:a0:e5:31:b1:b0:1d:35:3e:58:47:24:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b195d13050ff3c468a149778710b53582251d9
Validity
Not Before: Nov 11 09:01:37 2025 GMT
Not After : Nov 12 09:01:37 2025 GMT
Subject: CN=44a3b4145021ed2ef9e1fc0e74cab0a66a8f932c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:02:71:0a:1c:c6:39:2c:21:38:86:b0:1d:25:
29:57:25:12:3d:7c:a4:c2:45:e4:91:34:41:31:21:
bc:b7:ff:c8:a8:89:6d:2f:bb:b6:e5:76:61:00:19:
97:97:df:64:ac:ae:af:02:d2:0c:5a:9c:f9:d5:52:
88:1f:a8:0c:54:75:f0:2e:75:3a:dd:73:12:1d:33:
87:d4:ac:c4:ad:00:d0:6a:8b:14:8f:c9:fa:ba:aa:
ae:a5:cc:2c:41:ec:f3:c8:a4:77:8b:c9:86:91:c1:
7a:b6:03:94:98:3b:fd:a3:7a:62:34:f4:b9:5c:81:
8f:47:2e:a4:20:f1:d5:4e:17:07:20:82:29:82:c5:
f1:1b:90:9d:2b:9c:7f:78:8a:53:89:26:51:00:90:
8c:68:28:7f:f8:73:4e:79:8d:26:7b:6b:b6:eb:f7:
a3:26:be:12:a5:98:4c:bd:ff:53:09:e4:2b:b9:46:
f8:85:0b:cb:68:90:0c:54:a6:1f:99:c8:f2:05:cd:
67:12:e2:89:2e:ce:dd:46:0c:7e:ae:bc:5f:30:fd:
c3:a0:eb:b1:08:d4:3c:57:00:b2:90:2f:da:90:13:
22:7c:ed:b8:9d:8f:8b:1f:14:22:ff:d8:f4:17:97:
c1:68:3f:9b:96:18:5c:e8:2a:2c:85:49:3d:6f:6e:
92:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A3:B4:14:50:21:ED:2E:F9:E1:FC:0E:74:CA:B0:A6:6A:8F:93:2C
X509v3 Authority Key Identifier:
keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:ec:c8:d0:81:a2:6b:d8:72:95:ac:64:e6:74:44:00:d8:e7:
83:38:09:29:5e:ae:dd:5d:e3:fa:3b:84:4e:c7:6e:aa:0a:3e:
40:3a:c0:ba:5f:3f:0f:42:12:7a:e4:db:71:dd:2a:87:9e:69:
7d:d2:02:0d:09:7c:54:46:be:5c:aa:9d:f8:e9:5b:4d:4b:64:
67:6c:eb:bf:32:75:03:d1:ac:e2:d7:dc:5e:37:e4:51:91:cc:
65:4e:89:13:22:d0:2d:53:1a:14:ad:3e:ba:35:d1:16:34:de:
2f:39:dd:49:09:90:9d:cb:98:2a:88:10:2d:d9:7e:49:9f:38:
7c:d2:fc:ab:a3:16:a4:1f:4e:0f:61:79:29:71:9c:c2:6e:c2:
45:42:8d:cf:74:8d:1e:80:08:54:19:e5:27:06:39:21:a4:d7:
10:f2:57:39:42:16:26:53:f4:3f:8d:b0:ca:f5:8c:38:9c:67:
9f:32:0b:c2:a2:9b:77:8c:06:da:d9:31:e3:ab:bd:5c:4e:08:
46:e0:94:7d:8c:c9:d1:98:2b:4b:96:88:ee:fd:f6:07:b0:b0:
6b:c7:84:d1:c4:14:84:6e:42:19:f4:11:4f:e2:eb:f4:ee:3e:
26:b7:67:13:ae:fd:dc:25:c3:85:51:31:7e:9c:5a:aa:53:fa:
1f:5b:31:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:38 2025 by rpki-client