Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: ZzqzQ46Dj9cAzJYQ32NJGZAYvRSLImYC3rE4OeZxa/A=
Subject key identifier: 89:D4:B4:17:53:4F:12:C7:43:F4:A3:0F:DF:27:8D:75:F8:90:B1:A4
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 019A4DE1D3C1CAB48C3CD0465668BA1A4801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 12FC
Signing time: Tue 04 Nov 2025 08:00:36 +0000
Manifest this update: Tue 04 Nov 2025 08:00:36 +0000
Manifest next update: Wed 05 Nov 2025 08:00:36 +0000
Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: psqlDjBVbaWetaOY8TIl55uVqQrI5WnkvoWb18EL5/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:d3:c1:ca:b4:8c:3c:d0:46:56:68:ba:1a:48:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Nov 4 08:00:36 2025 GMT
Not After : Nov 5 08:00:36 2025 GMT
Subject: CN=89d4b417534f12c743f4a30fdf278d75f890b1a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fb:20:59:d8:77:d9:93:fc:30:36:aa:60:42:
af:83:d3:5e:d5:9e:44:f6:d7:5d:29:fd:b8:ea:e3:
7a:5b:64:9d:c7:13:6f:6a:28:ea:aa:b4:0f:c5:7f:
a3:2c:03:39:45:b4:cd:01:ee:91:eb:18:e7:a8:26:
79:a7:18:b8:00:c9:85:ea:16:f5:22:81:ce:c3:cd:
39:37:2c:00:ce:7f:b4:b1:07:6f:9b:f4:16:d0:70:
eb:1a:72:1a:86:7d:6f:c5:d7:cc:e5:6f:24:1f:58:
c8:6b:1f:b8:d4:b9:64:5a:0c:f5:5f:a8:ce:d2:bf:
1d:f4:f1:ad:43:f8:5d:3a:d4:e4:84:71:9c:13:db:
c7:d0:84:7f:d6:03:6c:87:dc:f8:b1:9b:95:a8:f4:
f3:be:9c:a1:dd:a3:97:b7:80:6d:ce:d3:d5:4e:cf:
ed:43:9a:61:22:ec:8d:f4:ba:3d:04:06:df:6c:26:
3c:10:be:da:93:87:e4:1c:a0:e8:89:b5:a5:5a:da:
2a:0c:c6:30:1f:fa:69:3b:e9:9e:f8:f1:d3:e1:be:
48:1c:fc:20:23:dd:e1:67:2e:53:d9:d2:5b:e0:63:
e3:d6:6b:07:62:be:64:56:a4:0f:d4:e2:5b:91:a4:
ca:ec:14:bb:cc:0c:83:97:80:06:7f:0b:dd:e9:8a:
b7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D4:B4:17:53:4F:12:C7:43:F4:A3:0F:DF:27:8D:75:F8:90:B1:A4
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:4e:cb:2b:7c:72:95:5b:6a:20:b1:06:d8:2d:8c:30:18:88:
cc:d4:8b:64:36:94:33:ce:4a:e8:e8:12:d4:6c:cf:ae:6f:30:
a0:11:0b:c3:bc:c3:15:6f:8f:c9:b2:61:2f:86:3b:4b:db:86:
cb:ba:63:7e:33:8f:07:28:a7:09:22:71:ea:ab:d6:dd:44:bb:
12:f9:b7:a3:3a:ec:2d:8b:db:c5:54:83:c6:78:07:88:4a:7b:
6c:b1:cf:e8:91:5b:3c:ce:ae:e0:ec:e9:9b:ff:41:be:fa:27:
c8:f8:d0:e3:b7:73:bc:3b:7f:12:a3:4f:8d:3c:cb:15:b0:46:
4a:43:01:50:e4:af:49:5d:ab:76:94:68:70:e7:61:32:db:ff:
54:bc:b2:8c:cd:6d:6e:5a:97:ae:dc:dc:ba:05:72:9d:f1:52:
4b:7e:35:48:ac:c6:1f:06:e6:df:c7:a9:00:e9:9c:b3:5f:0b:
0d:0d:61:d0:24:1f:ae:a6:9d:90:40:0a:17:8a:b9:8d:03:4c:
ae:5b:3e:67:7b:5d:76:10:75:45:08:41:87:2a:6a:62:bd:35:
a6:d5:d5:7c:92:f9:82:a7:9e:8a:be:bf:2a:89:33:69:7d:23:
a1:1e:9d:9f:8a:03:42:18:4b:ac:0a:1e:7e:be:db:d1:88:97:
76:38:b9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:09 2025 by rpki-client