Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: i/ckgFBqcsnw4V7mUa4ewp7/lTBgS3T7TOv0kdkwvGM=
Subject key identifier: 46:27:9D:AF:9A:C2:E6:48:D8:BC:D3:CE:8F:AA:79:5A:7A:CC:26:E9
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 0197B77C8174757682F5F0317F0BC18814D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 085A
Signing time: Sat 28 Jun 2025 17:01:19 +0000
Manifest this update: Sat 28 Jun 2025 17:01:19 +0000
Manifest next update: Sun 29 Jun 2025 17:01:19 +0000
Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: xpRggKwd5BYCN0+ZdBmehjjO+aBSyVBx/QGNjcB5rjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:81:74:75:76:82:f5:f0:31:7f:0b:c1:88:14:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Jun 28 17:01:19 2025 GMT
Not After : Jun 29 17:01:19 2025 GMT
Subject: CN=46279daf9ac2e648d8bcd3ce8faa795a7acc26e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7e:d3:56:50:31:fa:2a:71:08:9f:62:37:80:
9b:a4:4d:79:44:1e:84:70:08:98:96:90:5f:e2:54:
5e:95:c7:6e:6e:03:5f:a4:1f:b9:bd:0a:3c:2b:5a:
42:f6:bd:33:88:f7:b1:4a:25:a7:9c:c6:f7:00:a3:
21:d4:9b:ce:14:c5:a6:ce:65:f1:3a:25:de:04:93:
4b:56:06:ae:95:c2:ea:98:3d:c3:cf:fa:82:07:22:
3c:d4:d9:07:68:5a:77:0c:e8:85:4e:ff:d6:d0:14:
cc:d9:72:8f:90:b5:5a:2c:12:18:1d:a1:8d:42:5e:
af:4d:ce:6b:3e:4a:28:2b:c5:9b:df:1f:14:88:0e:
dd:7e:0c:5f:60:fc:8c:27:0f:7a:71:af:a8:48:7b:
44:a9:b6:40:dd:2a:89:d3:f5:dc:b5:0b:0a:72:d3:
d3:7b:dc:13:3f:73:e2:f7:6e:e9:48:76:67:2e:f5:
1a:b1:bb:35:14:b8:0c:33:f4:7e:d9:15:e5:79:a0:
68:87:68:f8:85:eb:93:01:d9:99:ec:51:c0:85:b5:
50:8b:2a:84:e8:92:51:69:46:5f:22:b7:6e:b5:d3:
17:20:8a:f2:3d:e8:ed:cf:b5:c1:c8:77:60:e3:ba:
54:cf:dc:94:18:54:29:75:b3:a4:e7:67:cc:4b:6b:
66:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:27:9D:AF:9A:C2:E6:48:D8:BC:D3:CE:8F:AA:79:5A:7A:CC:26:E9
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:6f:46:8f:3f:0b:50:80:aa:47:8b:2b:8e:3c:22:47:d1:ed:
40:39:ec:3d:ab:c8:c0:78:3f:40:23:e6:87:f9:5d:32:65:d8:
15:6e:3b:ba:8e:e2:77:bd:5e:db:1a:17:2d:19:64:94:a8:e6:
28:57:c1:0f:cb:e1:65:bb:65:7f:00:cf:c2:e3:9f:d3:48:44:
4b:3d:a8:11:7c:13:6f:e5:70:d0:d1:8f:60:8d:0b:38:67:f4:
c8:b6:62:7f:97:e0:14:28:5d:1d:59:70:05:c8:4d:8e:d9:14:
a1:18:9e:d2:d7:19:59:3a:b3:63:9a:8d:d2:64:c7:99:c7:7f:
be:fb:4d:af:80:3f:cb:cb:ac:59:0a:49:aa:1f:1c:a5:10:ba:
4e:43:f2:ff:28:ba:f4:2d:77:3c:8f:6f:d5:5b:93:43:3f:1c:
5d:b9:6d:f4:11:f1:02:11:cc:0a:31:3b:c6:ad:12:58:04:3e:
39:2b:44:85:59:b1:7c:44:fa:d9:ce:76:b0:0d:61:e2:68:5c:
8e:4a:2f:09:c2:1d:f2:0d:bb:a9:2b:b2:e1:4c:50:7e:31:17:
80:de:79:0f:20:be:d1:3c:a2:9e:33:c9:d1:42:90:69:0e:d7:
ec:a3:e1:a6:61:b8:a5:c9:09:01:15:91:a9:f2:63:59:8c:22:
3e:31:0e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:47:41 2025 by rpki-client