Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: kDuMH+AA/mEK5GMjjMSs0aTFdiTja7YV6q065taR0xw=
Subject key identifier: 97:DF:5F:9A:1B:E9:10:FD:C2:78:51:35:51:07:DA:17:51:54:8B:85
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 0197684E023D58C567B6448F611276E06561
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0831
Signing time: Fri 13 Jun 2025 08:00:32 +0000
Manifest this update: Fri 13 Jun 2025 08:00:32 +0000
Manifest next update: Sat 14 Jun 2025 08:00:32 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: +ZHCQrcG/YssnnROjTFd4JFfIxJVEf7D6FkSUrIznFg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:02:3d:58:c5:67:b6:44:8f:61:12:76:e0:65:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Jun 13 08:00:32 2025 GMT
Not After : Jun 14 08:00:32 2025 GMT
Subject: CN=97df5f9a1be910fdc27851355107da1751548b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:05:14:6b:ab:1b:81:67:45:8d:1f:a0:68:75:
01:25:1b:c2:e6:b6:16:27:76:e5:11:36:87:bb:f1:
92:13:3b:b4:55:69:88:5f:51:8f:94:5e:eb:55:59:
2e:7a:10:39:e9:c2:9a:56:12:94:5a:fc:99:22:57:
f0:1f:fb:d2:64:7b:e8:a4:b8:b1:88:b7:10:8f:4d:
0a:a5:10:ee:c0:c9:81:1b:85:4a:ce:a9:c2:05:20:
46:bf:52:76:32:d8:e2:e6:dd:f2:2d:50:4f:64:7c:
9f:0b:95:1d:73:0f:ef:1e:ad:18:1f:5d:ef:b7:bc:
d0:17:f7:9b:43:2c:11:a9:30:3f:59:c2:8d:f6:68:
d3:d5:36:2d:63:b1:76:5d:9e:29:89:b2:bd:33:f8:
28:bd:22:af:34:0a:66:c8:4d:a8:dc:e2:9a:69:f9:
b2:5a:71:1a:1c:31:a9:6f:d0:43:64:4f:bc:d8:24:
80:ae:3c:eb:b9:09:19:bf:6c:7a:00:19:df:db:db:
39:4f:e7:41:bf:63:93:74:1a:f7:b2:ff:a6:1e:c7:
09:8b:5a:dc:09:ce:8d:8e:2c:1d:38:d3:4c:8f:81:
64:17:e8:43:b9:07:fd:b2:61:b3:9f:7b:5e:81:f4:
8f:a6:67:bd:90:f8:88:d7:63:83:de:82:cc:9b:a6:
e1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DF:5F:9A:1B:E9:10:FD:C2:78:51:35:51:07:DA:17:51:54:8B:85
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:3c:bf:92:38:c9:37:ca:a4:0f:89:8b:54:08:3d:c4:1b:a1:
2a:7e:83:f5:27:8a:a8:1a:d7:b6:c8:3d:6e:45:f0:73:5a:28:
cb:72:f9:a4:49:41:19:e4:a2:d4:6e:e8:67:e2:8f:89:89:3f:
b9:cc:5e:ff:e1:42:5e:ea:12:55:b7:d1:d0:2f:d5:21:b0:48:
1d:b9:45:73:fc:b2:1c:57:dd:81:de:61:a5:da:32:e8:0c:cc:
1e:54:c4:d4:b5:aa:d9:89:a3:88:eb:50:5b:42:60:08:03:89:
80:09:c3:6d:8e:8a:c7:98:51:73:24:21:85:9f:29:06:17:86:
d9:2e:3e:55:92:0e:b5:72:eb:aa:92:c0:df:81:73:3f:e4:54:
66:6f:b1:72:c5:a7:d7:d2:88:5a:12:09:bb:fc:d3:b5:44:66:
6a:36:0f:1d:ab:5c:2c:59:4e:a2:3e:da:b1:3f:a0:7f:89:92:
6b:b3:3c:61:78:bc:45:99:aa:5b:ae:27:f4:c2:f8:f7:9c:3b:
89:8f:ee:f4:2e:04:36:2d:88:bc:26:bf:90:bc:ae:12:55:b1:
e1:f4:a5:95:c0:42:c1:ab:47:fc:8b:3f:0a:ad:d9:ac:b9:4e:
f2:8c:06:5b:ce:da:cb:b2:48:0b:e4:73:67:3d:0c:c4:0e:de:
c6:f5:d3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:00 2025 by rpki-client