Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: 3rmLOLXD4BYJ/zs0vMVq3Taz8sUMJ5yCu5XnJV7/KvE=
Subject key identifier: 7A:07:CF:B6:3B:65:1E:76:EB:16:E4:89:85:55:1A:2A:1D:39:C2:86
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 0199FCC65A3E95607157987CCF880F8BDC6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0987
Signing time: Sun 19 Oct 2025 14:01:21 +0000
Manifest this update: Sun 19 Oct 2025 14:01:21 +0000
Manifest next update: Mon 20 Oct 2025 14:01:21 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: g1dTrCSUg0LoM6VOt1xR2ToeqzhSkCRBcirlKbpaWiM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:5a:3e:95:60:71:57:98:7c:cf:88:0f:8b:dc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Oct 19 14:01:21 2025 GMT
Not After : Oct 20 14:01:21 2025 GMT
Subject: CN=7a07cfb63b651e76eb16e48985551a2a1d39c286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f3:b2:3f:1a:31:16:d1:36:ab:ef:64:5a:78:
09:81:ac:ab:54:b9:df:73:28:21:ac:22:f7:e3:6e:
b9:f3:65:8f:5d:86:d5:a5:16:e3:11:df:18:a3:43:
ac:27:86:e9:54:ad:c1:5b:a5:ab:4c:7b:46:a3:17:
3a:25:51:57:24:47:f1:02:87:e9:09:6b:26:3b:cb:
be:37:f4:19:11:74:94:66:42:25:b4:d7:a2:e8:56:
bc:5f:f4:f3:9d:dc:bf:d9:a9:a9:0a:fc:63:07:7c:
32:ac:96:48:fe:54:9f:1d:51:2e:86:4e:01:6d:16:
ad:d7:86:9a:73:56:2c:50:f6:b9:d7:10:39:ce:6b:
9b:81:cf:67:e4:c2:58:54:f0:e2:da:71:4b:bc:07:
40:c1:30:be:23:eb:8d:ad:56:fa:17:8a:10:7c:df:
e2:a5:3a:8c:e2:48:fe:9f:58:fa:98:78:0b:6b:47:
01:6c:ab:f3:dd:17:55:5d:c1:b7:ea:28:d7:15:08:
98:bb:64:c4:70:47:42:20:75:9a:d9:33:c5:4d:47:
0c:4a:a7:a7:db:25:9e:4c:01:6a:9b:36:16:e2:b9:
f5:94:5e:be:82:ed:2d:dc:8d:7e:ff:f0:f0:b1:ec:
fa:a5:ab:85:85:0d:a6:86:e0:65:4f:68:6f:60:70:
f2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:07:CF:B6:3B:65:1E:76:EB:16:E4:89:85:55:1A:2A:1D:39:C2:86
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:ea:4c:a2:4b:ab:17:3d:f3:a3:14:da:ea:57:5b:fe:de:56:
eb:53:20:d2:e9:e8:b0:08:46:f5:76:66:92:48:0b:c6:50:db:
1a:ac:22:71:0f:ba:a6:e1:5d:92:76:34:e7:64:63:0a:96:c3:
e4:60:64:43:34:45:32:3f:31:d4:1b:93:a7:ed:db:d7:55:a1:
8e:6b:03:d9:73:37:43:19:ea:2e:99:e4:60:70:99:3c:d6:72:
96:c5:18:22:71:b2:62:1e:cc:04:b6:2e:ca:02:a6:7a:fe:a2:
bf:9a:d7:04:e6:7b:6c:d8:f1:04:ed:ff:b2:03:c0:64:04:8e:
97:9c:c3:85:66:21:ad:72:69:bb:31:bf:97:23:13:e4:51:83:
88:87:61:84:86:b7:b0:d0:62:14:12:38:1f:4f:f0:49:89:9e:
32:93:21:25:0f:06:5e:b2:a7:59:5a:98:60:ed:d7:58:a2:86:
13:31:6b:c3:c6:36:c6:39:3a:ac:38:ae:89:5c:72:4d:c9:c7:
a3:c5:0c:5f:a2:e2:e5:70:38:c6:83:5c:06:ba:fb:fe:61:a4:
46:6f:ba:5f:7e:32:f2:82:02:39:fb:09:08:4f:15:53:ec:49:
f7:2c:a4:7b:05:30:52:d7:6a:95:3a:7f:73:5f:8b:76:bb:27:
8c:76:22:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xlo+lWBxV5h8z4gPi9xrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjcyMDJjOTIzMGMyODk0NTBlZDVhNjJiMTczNjlhMDY1
OWJjNmIwHhcNMjUxMDE5MTQwMTIxWhcNMjUxMDIwMTQwMTIxWjAzMTEwLwYDVQQD
Eyg3YTA3Y2ZiNjNiNjUxZTc2ZWIxNmU0ODk4NTU1MWEyYTFkMzljMjg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfOyPxoxFtE2q+9kWngJgayrVLnf
cyghrCL3426582WPXYbVpRbjEd8Yo0OsJ4bpVK3BW6WrTHtGoxc6JVFXJEfxAofp
CWsmO8u+N/QZEXSUZkIltNei6Fa8X/Tzndy/2ampCvxjB3wyrJZI/lSfHVEuhk4B
bRat14aac1YsUPa51xA5zmubgc9n5MJYVPDi2nFLvAdAwTC+I+uNrVb6F4oQfN/i
pTqM4kj+n1j6mHgLa0cBbKvz3RdVXcG36ijXFQiYu2TEcEdCIHWa2TPFTUcMSqen
2yWeTAFqmzYW4rn1lF6+gu0t3I1+//Dwsez6pauFhQ2mhuBlT2hvYHDyJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHoHz7Y7ZR526xbkiYVVGiodOcKGMB8GA1UdIwQY
MBaAFGG3ICySMMKJRQ7VpisXNpoGWbxrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDkt
MjE1ZmMzOTBiZmU0LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDktMjE1ZmMzOTBiZmU0
LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOOpMokur
Fz3zoxTa6ldb/t5W61Mg0unosAhG9XZmkkgLxlDbGqwicQ+6puFdknY052RjCpbD
5GBkQzRFMj8x1BuTp+3b11WhjmsD2XM3QxnqLpnkYHCZPNZylsUYInGyYh7MBLYu
ygKmev6iv5rXBOZ7bNjxBO3/sgPAZASOl5zDhWYhrXJpuzG/lyMT5FGDiIdhhIa3
sNBiFBI4H0/wSYmeMpMhJQ8GXrKnWVqYYO3XWKKGEzFrw8Y2xjk6rDiuiVxyTcnH
o8UMX6Li5XA4xoNcBrr7/mGkRm+6X34y8oICOfsJCE8VU+xJ9yykewUwUtdqlTp/
c1+LdrsnjHYi/w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:42 2025 by rpki-client