Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: oE8MmQ8GEErkc+j/e9wyfwdsfer+jeKTxKbBgoHiC6A=
Subject key identifier: 2D:B3:5C:D6:FB:7E:3E:34:4A:5F:8F:3E:26:BD:5E:77:73:0C:AB:78
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 019D2583A2C22BF1B1F395252D58FCDF83BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0B2B
Signing time: Wed 25 Mar 2026 15:01:16 +0000
Manifest this update: Wed 25 Mar 2026 15:01:16 +0000
Manifest next update: Thu 26 Mar 2026 15:01:16 +0000
Files and hashes: 1: H8_4w92WXuGkctjlJERZEe-5K34.roa (hash: WmS53pHwBk98gkS34NpilrfE1ZVelLUsA8l48EKHH6c=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: sMfbgzPfnRO1l5sRr4fuNs88NbjLTLUO40dHAEKqc7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:a2:c2:2b:f1:b1:f3:95:25:2d:58:fc:df:83:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Mar 25 15:01:16 2026 GMT
Not After : Mar 26 15:01:16 2026 GMT
Subject: CN=2db35cd6fb7e3e344a5f8f3e26bd5e77730cab78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:01:9b:c5:47:97:df:1c:04:b8:a1:2e:bf:85:
df:17:ba:91:a2:27:91:47:74:53:38:a6:e6:85:07:
ac:ce:b8:23:bd:f5:5d:3b:68:41:1a:1d:36:97:25:
4e:75:c1:9b:97:94:a4:c9:f0:af:82:95:af:ec:34:
4b:77:4e:e3:46:55:50:b0:c7:91:4d:f7:6f:ea:59:
af:a5:41:c5:64:d1:8f:8b:24:3f:67:44:97:fb:43:
2a:63:c0:db:28:15:94:cf:28:c6:91:a7:26:f3:18:
23:ae:79:b1:01:ad:bd:75:6b:b6:a6:a0:9c:30:ae:
b8:be:81:db:d0:8a:24:e5:ca:9e:2e:0f:79:7a:58:
20:a7:64:fe:ac:30:61:02:a2:54:a8:76:d4:d1:d0:
ed:58:b0:0d:e8:6b:d1:e0:2b:09:ac:04:6c:a4:91:
1e:be:9e:c9:46:19:c4:da:61:03:73:b6:a3:c7:a0:
a8:b4:a6:95:28:98:c6:5c:ed:2e:58:80:fa:3f:e3:
c1:74:39:a1:d0:6b:ea:a5:78:5a:f8:de:b9:ad:51:
a1:81:c2:2d:0c:e5:30:80:b0:25:c4:e1:4b:3a:2c:
40:dc:9f:47:4a:2b:ea:d9:c9:4b:5a:8f:0a:bc:4e:
c7:d0:0e:17:a6:a9:e5:5a:ec:0b:3f:c1:a7:64:89:
30:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B3:5C:D6:FB:7E:3E:34:4A:5F:8F:3E:26:BD:5E:77:73:0C:AB:78
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:d7:4e:b8:e6:7e:7f:cd:6f:1d:25:14:60:51:fe:7a:d3:bb:
67:fd:6d:26:dd:e5:f1:80:6d:75:22:69:47:b3:0d:ad:d7:f3:
d7:18:ba:a2:21:10:7a:94:e7:7c:2a:01:82:b9:2d:f9:6e:95:
11:bb:37:94:38:97:df:1d:20:7a:92:13:f3:17:b3:53:40:45:
94:9a:38:0c:00:d2:10:53:63:5a:6c:94:62:55:5a:07:88:63:
6e:aa:56:ed:0e:96:2a:55:23:63:0e:06:2c:bc:25:01:b6:c0:
31:df:dd:03:a0:ab:19:7e:48:d8:e7:ad:4d:ef:45:c5:63:64:
d6:b1:22:6f:9d:fe:cf:13:d1:a7:ac:8a:e5:0e:0a:04:be:a3:
0d:b0:78:bb:0e:9c:79:23:04:dd:51:7c:5a:2e:04:d9:a2:44:
06:93:39:da:6d:7e:bf:55:b3:34:89:46:f7:80:23:e7:c9:17:
c4:52:95:e5:63:cc:09:c6:bb:16:be:27:92:ce:41:6b:7e:b8:
ea:3d:9e:3c:90:02:2b:cc:17:7a:a3:55:81:09:68:ef:67:db:
ce:9c:e4:5a:11:4b:34:a1:d3:7f:7d:43:e4:95:db:70:29:0a:
52:20:e8:2b:c9:73:96:f6:05:9e:17:99:75:54:68:8b:fe:f2:
4d:66:ab:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:51 2026 by rpki-client