Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json)
Hash identifier: eSvGEBgYR4QtBp0zGwuvDn1Rz+IekT1yPtJw7WH0mpw=
Subject key identifier: 7D:F3:97:FD:A7:1D:31:76:54:5D:6A:F6:BC:A2:82:E5:AA:03:A2:FF
Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Certificate serial: 019A4E4FAEF52BCE6FB6C4511675D16060D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
Manifest number: 170A
Signing time: Tue 04 Nov 2025 10:00:36 +0000
Manifest this update: Tue 04 Nov 2025 10:00:36 +0000
Manifest next update: Wed 05 Nov 2025 10:00:36 +0000
Files and hashes: 1: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: 4kY/iWkkGRVzFrEH1qRgJE8VOobOZnapyNpmXYKeCsM=)
2: dZjzanZ5Xa3WwYz-n1bsR4-cdN4.roa (hash: x2Q62dC7uuAXO8D8ST0Y3bzPEAD8rzw3v3/5eqKnb5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:ae:f5:2b:ce:6f:b6:c4:51:16:75:d1:60:60:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Validity
Not Before: Nov 4 10:00:36 2025 GMT
Not After : Nov 5 10:00:36 2025 GMT
Subject: CN=7df397fda71d3176545d6af6bca282e5aa03a2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:81:d7:15:55:cf:39:c6:49:ee:cc:78:3f:f4:
38:8e:4f:fd:34:59:ad:a1:ef:d1:bc:8e:9c:3e:9c:
6f:7d:7a:99:ad:9d:52:a8:f5:34:cc:d2:84:6a:83:
57:64:6e:65:4e:f1:b1:25:57:13:a1:5e:20:5d:c8:
f0:0f:e1:64:26:a8:ca:43:3c:cb:03:cb:75:7b:83:
48:8e:c1:21:59:1a:5e:09:97:3e:58:c0:a7:50:85:
1e:dd:45:a5:da:36:f4:4b:2c:e5:89:6e:f8:c3:cb:
06:e8:92:f6:57:f8:de:0d:82:5e:37:f5:e4:c2:5e:
22:b9:12:60:a9:0e:13:5f:a7:57:5a:c9:fa:06:63:
b1:e3:b5:1b:54:0e:1b:a7:08:6e:5e:e5:e2:8d:fa:
fc:45:02:73:6e:24:4c:2c:4f:74:db:fa:ee:04:51:
aa:4f:87:29:4c:fa:11:96:96:de:6d:32:4c:58:ed:
93:c8:5d:9a:0d:f8:e3:e6:ed:88:3b:f4:5d:26:da:
bf:d8:42:23:85:32:0b:5e:85:46:6c:ed:d1:95:aa:
bb:49:2d:c3:95:fd:90:46:d9:f2:50:db:da:f2:aa:
66:4d:22:a9:38:bd:b1:84:18:a7:be:f6:a9:21:72:
55:b4:27:ac:84:9e:8e:cf:76:be:8a:84:f7:33:60:
45:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F3:97:FD:A7:1D:31:76:54:5D:6A:F6:BC:A2:82:E5:AA:03:A2:FF
X509v3 Authority Key Identifier:
keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:1f:5f:bc:e6:84:60:8c:4a:3e:14:30:ca:d2:b9:d4:e0:04:
eb:f4:20:59:30:c4:6f:ee:45:2e:d4:fd:26:56:43:21:52:1a:
d6:98:a7:56:f7:88:fe:9e:61:ca:bf:96:de:13:ac:04:5e:d7:
87:ea:7c:77:db:08:54:45:96:d2:50:40:94:90:3f:e9:a3:17:
39:d6:03:03:cd:aa:06:cd:f4:68:10:e0:94:15:f2:4f:1d:3b:
9c:e1:0d:78:26:55:f2:66:38:1d:18:e2:12:99:e6:74:d1:ba:
9f:cb:dd:4b:42:e4:ec:1e:25:c7:0d:da:92:5c:4b:c8:d9:05:
37:8a:2b:ac:e5:81:b4:43:3d:6e:16:05:89:cc:a1:d8:76:e9:
ed:9b:41:fd:c7:c0:c9:80:d5:73:31:9e:e8:5f:0d:46:fb:0f:
35:04:6d:43:66:96:f5:1a:15:43:4e:5b:c9:1f:fd:b4:5b:f1:
ee:39:71:90:34:e6:bd:06:af:5d:12:e8:ac:d5:2d:ad:dd:4f:
d5:87:28:6a:ff:bb:09:ed:cf:58:c9:0d:85:2b:9e:cc:83:67:
b8:ba:06:4f:e0:14:97:89:a8:f4:b3:01:18:b5:a8:fd:30:c4:
ef:5b:db:ea:39:d2:70:b0:f8:77:f8:86:4c:8d:6c:f1:65:72:
cf:40:25:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOT671K85vtsRRFnXRYGDQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZDZlNGJmZmEyYjRkMWJjNDBlOTJiMzBhZjBkMjFhNzRi
MGJiZDAwHhcNMjUxMTA0MTAwMDM2WhcNMjUxMTA1MTAwMDM2WjAzMTEwLwYDVQQD
Eyg3ZGYzOTdmZGE3MWQzMTc2NTQ1ZDZhZjZiY2EyODJlNWFhMDNhMmZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YHXFVXPOcZJ7sx4P/Q4jk/9NFmt
oe/RvI6cPpxvfXqZrZ1SqPU0zNKEaoNXZG5lTvGxJVcToV4gXcjwD+FkJqjKQzzL
A8t1e4NIjsEhWRpeCZc+WMCnUIUe3UWl2jb0SyzliW74w8sG6JL2V/jeDYJeN/Xk
wl4iuRJgqQ4TX6dXWsn6BmOx47UbVA4bpwhuXuXijfr8RQJzbiRMLE902/ruBFGq
T4cpTPoRlpbebTJMWO2TyF2aDfjj5u2IO/RdJtq/2EIjhTILXoVGbO3Rlaq7SS3D
lf2QRtnyUNva8qpmTSKpOL2xhBinvvapIXJVtCeshJ6Oz3a+ioT3M2BFrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH3zl/2nHTF2VF1q9ryiguWqA6L/MB8GA1UdIwQY
MBaAFGLW5L/6K00bxA6Sswrw0hp0sLvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDIt
ZjE1NTU0ZmE0YjBiLzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDItZjE1NTU0ZmE0YjBi
LzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjx9fvOaE
YIxKPhQwytK51OAE6/QgWTDEb+5FLtT9JlZDIVIa1pinVveI/p5hyr+W3hOsBF7X
h+p8d9sIVEWW0lBAlJA/6aMXOdYDA82qBs30aBDglBXyTx07nOENeCZV8mY4HRji
EpnmdNG6n8vdS0Lk7B4lxw3aklxLyNkFN4orrOWBtEM9bhYFicyh2Hbp7ZtB/cfA
yYDVczGe6F8NRvsPNQRtQ2aW9RoVQ05byR/9tFvx7jlxkDTmvQavXRLorNUtrd1P
1Ycoav+7Ce3PWMkNhSuezINnuLoGT+AUl4mo9LMBGLWo/TDE71vb6jnScLD4d/iG
TI1s8WVyz0AlKg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:56 2025 by rpki-client