Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: kt7jsgmUVn7HJ4u0N/lf/4UY3wSIqBE62b4NnmJYDC8=
Subject key identifier: A9:C9:BF:9F:CD:AD:69:57:4C:D7:8C:1B:A4:02:B3:05:B2:AF:5E:71
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 0198A04D88A186D6695D636C485681971CDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 162A
Signing time: Tue 12 Aug 2025 22:01:32 +0000
Manifest this update: Tue 12 Aug 2025 22:01:32 +0000
Manifest next update: Wed 13 Aug 2025 22:01:32 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: cZmz0xpZVMvKCsQA4YYaJWYOa9krpI1AOecqgaucppg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:88:a1:86:d6:69:5d:63:6c:48:56:81:97:1c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: Aug 12 22:01:32 2025 GMT
Not After : Aug 13 22:01:32 2025 GMT
Subject: CN=a9c9bf9fcdad69574cd78c1ba402b305b2af5e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:01:52:8e:a0:9b:41:36:3b:3c:5f:82:76:27:
d0:6b:99:40:a4:0e:15:39:2d:ba:ff:0b:37:2c:2d:
cb:2e:b1:9c:6b:f6:02:38:14:22:44:57:75:ed:e7:
47:a7:71:6e:44:74:0f:1c:59:07:eb:b7:8f:5b:51:
cd:5b:64:ed:db:b0:b8:79:5d:7e:6c:db:34:ce:5c:
19:c2:d8:92:09:25:92:ca:15:5d:b2:fd:84:cf:16:
28:e4:58:92:22:0c:1e:a2:01:67:02:b6:a3:27:92:
75:07:03:92:a0:c9:af:38:22:b2:bd:4e:43:f6:99:
35:4a:41:bb:db:2f:93:6a:f9:2c:b1:60:e4:83:c4:
b4:fc:ca:6b:6e:50:2d:87:84:55:a0:dc:24:86:f2:
41:e5:be:b2:8c:94:26:bf:88:d1:c5:1f:81:68:d7:
81:32:44:91:ee:0b:a8:89:0b:86:cd:da:0f:d6:98:
31:49:03:f0:16:8b:3d:05:39:a9:22:4e:d0:91:ea:
1c:3f:a9:df:27:9a:78:b8:d9:58:8d:b0:44:94:0b:
77:4d:44:78:93:f1:96:02:35:35:3e:d1:3a:b5:7a:
b5:27:ab:b2:72:df:87:69:c4:8f:3e:01:84:ad:7d:
b6:61:4d:8d:6f:f5:42:aa:f2:3b:4c:e2:69:94:dc:
60:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:C9:BF:9F:CD:AD:69:57:4C:D7:8C:1B:A4:02:B3:05:B2:AF:5E:71
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:81:c4:0f:10:d0:88:23:05:b7:b1:aa:21:5c:47:c6:fd:8a:
96:f6:fb:f9:c8:94:40:2d:3b:1a:b1:a2:a7:d4:5d:59:e6:3f:
1d:13:e6:05:55:7d:1f:79:4f:5c:fa:5d:fc:de:80:79:24:e7:
a9:de:1d:34:92:33:7b:5c:c2:38:dd:5e:15:d6:e3:4d:15:70:
b6:92:9f:41:e2:76:3b:5d:b0:4b:40:61:f2:1f:cf:15:3c:66:
5a:6a:e3:84:83:43:91:4a:01:93:0a:8f:ba:70:b2:c5:b8:d0:
84:70:20:49:2a:9f:8f:90:c9:8c:14:65:e7:74:e0:19:52:64:
76:24:4c:e8:4d:cc:07:75:f4:36:78:95:5e:77:fe:47:7a:96:
3a:bb:a2:9b:ae:02:70:a6:6d:f9:78:3f:74:d8:b0:ec:e9:ed:
78:3a:cf:00:f6:b1:5f:dc:64:9b:fb:21:f0:02:9c:bf:f6:8c:
4b:5b:76:c6:3d:fd:80:58:a8:0d:66:50:7e:c5:a0:f0:0a:fd:
29:fe:15:68:c5:c4:f5:de:64:8e:07:5d:99:7b:30:a0:70:3a:
3c:47:18:01:a7:81:99:49:69:ab:07:28:84:4a:b1:66:dc:2b:
41:2e:fe:6c:95:a2:a5:aa:ce:0b:4c:94:88:0f:d4:52:97:92:
44:0b:72:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZigTYihhtZpXWNsSFaBlxzeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwZjMxZDgyMGMzMjQwMGRlYzBjNjA0OTYxNzg5OTRkNTc3
NTJhY2MwHhcNMjUwODEyMjIwMTMyWhcNMjUwODEzMjIwMTMyWjAzMTEwLwYDVQQD
EyhhOWM5YmY5ZmNkYWQ2OTU3NGNkNzhjMWJhNDAyYjMwNWIyYWY1ZTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAFSjqCbQTY7PF+CdifQa5lApA4V
OS26/ws3LC3LLrGca/YCOBQiRFd17edHp3FuRHQPHFkH67ePW1HNW2Tt27C4eV1+
bNs0zlwZwtiSCSWSyhVdsv2EzxYo5FiSIgweogFnArajJ5J1BwOSoMmvOCKyvU5D
9pk1SkG72y+TavkssWDkg8S0/MprblAth4RVoNwkhvJB5b6yjJQmv4jRxR+BaNeB
MkSR7guoiQuGzdoP1pgxSQPwFos9BTmpIk7QkeocP6nfJ5p4uNlYjbBElAt3TUR4
k/GWAjU1PtE6tXq1J6uyct+HacSPPgGErX22YU2Nb/VCqvI7TOJplNxgvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKnJv5/NrWlXTNeMG6QCswWyr15xMB8GA1UdIwQY
MBaAFGDzHYIMMkAN7AxgSWF4mU1XdSrMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVBNZGdnd3lRQTNzREdCSllYaVpUVmQxS3N3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9hMjg1NTMtODk5Yy00MDY4LTk2NzMt
ZGVkMjExM2I5MDYwLzEvWVBNZGdnd3lRQTNzREdCSllYaVpUVmQxS3N3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9hMjg1NTMtODk5Yy00MDY4LTk2NzMtZGVkMjExM2I5MDYw
LzEvWVBNZGdnd3lRQTNzREdCSllYaVpUVmQxS3N3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcoHEDxDQ
iCMFt7GqIVxHxv2Klvb7+ciUQC07GrGip9RdWeY/HRPmBVV9H3lPXPpd/N6AeSTn
qd4dNJIze1zCON1eFdbjTRVwtpKfQeJ2O12wS0Bh8h/PFTxmWmrjhINDkUoBkwqP
unCyxbjQhHAgSSqfj5DJjBRl53TgGVJkdiRM6E3MB3X0NniVXnf+R3qWOruim64C
cKZt+Xg/dNiw7OnteDrPAPaxX9xkm/sh8AKcv/aMS1t2xj39gFioDWZQfsWg8Ar9
Kf4VaMXE9d5kjgddmXswoHA6PEcYAaeBmUlpqwcohEqxZtwrQS7+bJWiparOC0yU
iA/UUpeSRAtyjw==
-----END CERTIFICATE-----
Generated at Wed Aug 13 05:58:23 2025 by rpki-client