Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: n8YDyqipLehNuFQ2an9R6zKn0f9pbrH5tgw3xyG1mTw=
Subject key identifier: CB:A2:88:F4:CD:82:73:1A:A5:C6:0F:BB:76:87:8D:B3:6C:C9:8B:7A
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 019776E54D3B6B48D36F03F3FBDD8C07F8DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 1593
Signing time: Mon 16 Jun 2025 04:00:28 +0000
Manifest this update: Mon 16 Jun 2025 04:00:28 +0000
Manifest next update: Tue 17 Jun 2025 04:00:28 +0000
Files and hashes: 1: KXik7lH7rXobKNDojQJvsYz5RkY.roa (hash: OmHOyyMTUBadMMSlHfFTN/cjiEKBhDbZve1q3aoF8Wg=)
2: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: rPBNy+lb2Kndig9CrhbMB94/2195lfKWEz+79R68Snk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:e5:4d:3b:6b:48:d3:6f:03:f3:fb:dd:8c:07:f8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: Jun 16 04:00:28 2025 GMT
Not After : Jun 17 04:00:28 2025 GMT
Subject: CN=cba288f4cd82731aa5c60fbb76878db36cc98b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cc:10:0f:8e:45:27:ba:91:4f:7b:85:f2:3e:
78:d8:45:d0:a9:81:96:c3:74:c0:aa:b2:32:cd:b4:
9e:cd:59:64:dd:cc:d5:22:b3:cb:71:46:40:67:bf:
b9:d4:4c:84:76:29:37:41:3e:e4:4c:49:03:06:b9:
a5:ae:4e:ca:ee:5d:ca:95:9f:ad:c6:52:04:0b:aa:
b3:33:f3:ea:d7:e9:53:bc:1b:d1:c2:61:5e:11:7a:
54:b9:8f:43:3e:10:b7:ac:0c:54:b2:65:fe:f2:3b:
2f:00:a0:09:83:9b:d7:a8:83:18:0c:ed:b4:e5:9c:
b9:94:c6:9e:f5:93:95:8b:92:b3:65:c7:7b:f2:56:
41:4b:66:4a:71:6c:76:b8:36:36:4e:5f:8c:0f:59:
60:5e:ab:28:47:22:52:d7:28:3e:1a:c9:7e:b9:af:
71:23:3a:d5:80:af:63:10:cf:ac:2d:6f:46:d4:ad:
f3:cd:2c:dd:18:75:3a:c8:25:d5:b1:9e:4f:92:e1:
e4:16:a6:fd:1e:69:d4:36:5e:17:3c:ff:98:d4:e6:
2a:f5:d4:a9:72:3c:eb:62:6c:2c:88:9b:8a:8e:4b:
08:71:53:6b:b0:0d:ab:fa:d7:a6:c5:06:a1:f2:48:
0a:06:ec:b1:1b:6f:7b:b9:f9:9b:63:9c:1a:77:25:
51:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A2:88:F4:CD:82:73:1A:A5:C6:0F:BB:76:87:8D:B3:6C:C9:8B:7A
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:0b:32:0d:57:5e:52:5f:37:35:12:22:06:45:bc:5a:20:3c:
6c:14:61:aa:68:06:19:c8:a3:c9:28:bd:f2:cf:be:db:e8:3d:
12:ae:24:8a:68:ab:6d:6c:83:bd:bc:d1:50:bf:48:da:bd:87:
0e:47:3d:f3:12:8f:71:94:eb:08:1b:05:1c:f3:e8:d1:0b:d9:
39:a8:e8:c5:ca:e1:d2:b5:4c:05:ac:af:15:7d:8f:a6:43:e1:
27:41:d1:eb:a9:25:72:13:fa:6b:52:90:ee:96:4f:84:b3:33:
54:1f:2e:a2:49:b2:b7:34:ef:65:68:ed:6b:2f:84:3c:ad:58:
da:cb:da:a0:8a:25:0f:9e:51:f3:a3:3c:fd:a0:07:04:1c:1b:
d5:0a:ee:e3:36:61:12:36:86:26:bb:79:ed:35:dd:dc:80:53:
69:4d:e0:7b:f9:5e:43:6d:ec:eb:0e:74:54:e8:3b:9a:8a:5d:
ae:ef:48:62:d9:62:17:c2:bf:ec:87:83:60:b3:3e:6f:18:cf:
5c:30:68:a4:b7:74:0c:fa:be:38:aa:36:3e:75:13:7b:fe:25:
8e:1e:34:4c:96:48:d7:1b:55:2c:27:d0:70:60:50:00:cd:eb:
bb:d1:b6:43:54:0b:fa:2a:a1:d1:85:b6:b6:f0:29:63:c2:78:
32:b7:24:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 08:21:49 2025 by rpki-client