Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: W7JsMwrJPLqsu+m5HFq/e825I+NwIl9lUEOigCOgosE=
Subject key identifier: 56:48:0F:04:57:11:38:FE:1D:31:C9:26:21:E1:6B:22:0C:A9:3F:D7
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 01989592C831D28670D17E99A596959EEFC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 1218
Signing time: Sun 10 Aug 2025 20:01:21 +0000
Manifest this update: Sun 10 Aug 2025 20:01:21 +0000
Manifest next update: Mon 11 Aug 2025 20:01:21 +0000
Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: KFgXRC7QQVB131PxMhdGtC5Pjg4+CShH4r0W0y6NWGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 20:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:92:c8:31:d2:86:70:d1:7e:99:a5:96:95:9e:ef:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Aug 10 20:01:21 2025 GMT
Not After : Aug 11 20:01:21 2025 GMT
Subject: CN=56480f04571138fe1d31c92621e16b220ca93fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2c:2e:32:d4:32:c3:96:a9:32:b6:bf:d7:94:
53:e9:e3:47:02:d6:90:e5:c7:20:9e:c5:17:9b:da:
ef:6c:97:aa:22:74:19:7e:46:f9:3b:ee:de:f7:04:
70:f4:5a:57:45:51:ae:43:61:0c:6f:d0:7b:23:e5:
cb:4c:c0:26:ec:37:44:11:e7:91:26:83:46:76:99:
19:2e:66:4d:67:fb:28:0e:15:f3:e5:c7:90:14:a6:
fa:42:d3:a5:6b:43:66:ee:93:bd:48:65:ee:48:db:
7d:19:5c:92:b6:8c:f7:61:8d:d9:a2:3a:f2:66:75:
a1:b1:6e:a7:28:1a:20:5c:dd:55:aa:69:0d:98:0a:
ff:f1:f3:82:f0:07:c7:70:14:9e:54:0b:7b:7b:98:
9d:87:59:6c:fc:a1:ad:e0:c5:70:94:fb:dd:5e:bd:
79:39:fa:2a:b2:ec:52:9d:6c:01:99:e3:15:dc:10:
b2:f6:70:d9:7b:c1:f2:08:8e:10:2c:ae:66:b1:94:
4a:28:c7:6a:8c:16:55:21:54:90:a9:7b:d5:ce:cf:
23:64:d2:7b:56:e8:3d:68:3c:a1:79:50:b1:f3:7f:
b1:84:4e:77:2b:03:0e:02:74:18:8f:bf:de:fe:cd:
f2:e3:56:3c:8b:d0:65:22:4b:aa:3d:c3:7b:5b:1f:
de:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:48:0F:04:57:11:38:FE:1D:31:C9:26:21:E1:6B:22:0C:A9:3F:D7
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:9c:e5:06:2c:13:86:c1:7d:78:2e:ea:8a:b3:88:d0:21:e4:
92:c9:98:cb:2a:6f:0c:2a:3a:36:95:b6:47:c3:46:d3:3e:16:
8a:ff:1e:5b:01:c9:80:9c:c7:b6:49:ff:1e:73:ac:97:55:99:
5b:46:e9:1f:cb:2a:ad:da:dc:bf:4f:59:33:4d:1c:85:0f:15:
67:1d:0c:6a:12:17:98:02:d0:c0:2f:1d:36:4a:16:e7:ed:c9:
d4:46:c9:9e:13:68:85:f0:b4:0f:33:40:0c:96:eb:97:c8:cc:
df:af:c2:7c:0c:79:d1:0f:23:62:6e:4d:11:dc:57:98:94:e5:
0b:1a:55:57:fa:83:d1:a5:e6:f4:f0:d0:e2:dd:eb:15:f2:46:
a7:8b:e1:f7:6a:51:f1:af:91:1d:78:3c:d0:69:a4:62:93:10:
c3:80:37:71:ae:ad:26:fe:03:b0:36:c8:90:6e:87:db:10:eb:
c7:b1:38:d0:ca:c1:cc:54:7a:e9:8a:64:78:5f:6d:fe:01:e1:
ef:58:f6:0e:7a:11:7a:44:d9:e4:45:81:05:9b:7c:cc:5b:ce:
0f:78:98:fd:66:0c:5b:e6:37:ed:68:54:df:78:7b:d2:09:be:
bd:c9:2e:ed:b6:6b:8e:e2:2b:0a:aa:2f:17:f7:fc:f4:a2:c0:
6b:14:45:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:59:05 2025 by rpki-client