Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: yxvIeCE51W9mPo2X14FKGzxfSuC6OHvxuGiinbMUNoY=
Subject key identifier: CB:02:6E:07:89:37:49:A0:EF:6A:C2:39:DD:69:CE:C6:FA:0A:54:AF
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 01987C7792E27FCBB43D1087D505108CF8F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 08C0
Signing time: Tue 05 Aug 2025 23:01:07 +0000
Manifest this update: Tue 05 Aug 2025 23:01:07 +0000
Manifest next update: Wed 06 Aug 2025 23:01:07 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: pjZVu+jZWQKLLqb1A7kxhN+cESCoWk1qF+CLac6+jIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:92:e2:7f:cb:b4:3d:10:87:d5:05:10:8c:f8:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Aug 5 23:01:07 2025 GMT
Not After : Aug 6 23:01:07 2025 GMT
Subject: CN=cb026e07893749a0ef6ac239dd69cec6fa0a54af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:2e:39:c0:84:2e:dc:8b:c1:e3:fd:76:c0:09:
07:82:3b:8d:81:f9:32:b7:77:c9:ea:8e:7b:00:22:
c0:4d:55:1f:be:aa:69:ca:a7:43:51:5c:a1:1d:01:
db:b0:1a:0a:7d:ec:d9:36:b0:b9:a0:f9:54:e4:e8:
64:13:c7:bf:81:d8:07:98:25:2c:91:a4:31:84:47:
81:14:d4:e3:a4:70:61:8b:a6:6b:1f:0c:82:37:2e:
bb:e2:53:2f:9d:e4:c1:a8:aa:16:22:73:d1:31:1b:
79:12:64:d0:f3:11:d3:ae:09:db:27:d7:51:75:64:
00:1f:21:e2:ec:89:00:31:f4:b1:16:61:e4:86:8c:
15:4a:42:24:11:42:b5:55:40:ba:1b:25:aa:cc:c6:
c0:cc:88:11:9f:7c:ff:42:f4:78:fd:23:78:1e:e8:
09:41:01:c2:03:73:18:86:65:4a:b1:48:53:64:af:
9b:43:90:4e:fd:24:44:89:8a:b1:e5:42:da:1c:8f:
82:52:f1:2d:50:75:42:27:f8:33:13:f8:ba:f2:f6:
b5:55:c4:71:53:5b:9f:96:b5:46:70:51:67:b9:f2:
c1:34:e4:f1:57:35:ba:63:c1:3d:a1:57:2d:5e:af:
74:c5:f7:1a:fa:6c:3b:44:19:33:fd:e0:67:de:6b:
bd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:02:6E:07:89:37:49:A0:EF:6A:C2:39:DD:69:CE:C6:FA:0A:54:AF
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:0f:83:c6:d3:6f:9f:93:77:f6:8e:b8:bc:cd:03:08:c4:92:
cd:34:1b:1d:51:77:3f:59:c6:29:81:5d:70:54:dd:f3:08:0a:
9d:6c:31:b4:53:d7:72:4c:9c:3f:17:62:54:8a:36:3e:dd:f3:
ff:bc:7d:e9:f4:17:15:0e:ac:c0:a6:dd:12:70:3b:04:1b:69:
15:96:e5:ee:a7:be:43:49:d1:81:66:d1:6b:d3:b7:d2:92:49:
8c:1e:fd:54:fd:40:c6:70:95:10:67:e3:57:38:75:fb:1a:9e:
d5:11:c5:33:97:5f:09:6d:16:2a:9f:3e:24:a4:88:8f:61:e0:
4c:42:61:d6:f5:66:e7:ba:b9:04:b2:4f:8a:0f:ea:1d:66:0b:
43:88:00:2f:b0:9a:74:40:d0:6c:5f:65:3d:ac:72:96:e3:c1:
5a:01:15:17:14:91:f3:a0:e9:4d:13:b7:d6:5c:c9:c7:b4:09:
2a:26:84:a4:33:cd:c1:c4:77:6c:12:f0:6f:29:7a:46:2c:3d:
ec:90:19:27:a4:9c:ec:d7:c5:23:15:4a:99:76:5a:cb:5d:fa:
4e:8d:97:9d:d3:92:d8:02:da:30:24:9e:9a:00:2e:c5:21:2e:
39:7d:fe:c7:c4:93:db:83:2a:16:57:8b:ea:70:e2:3d:f1:7a:
0b:cf:96:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:22:38 2025 by rpki-client