Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: nFy+6eShIuQIRhHiL0BEMS5uBjVFVAxHdQMU8uybwdY=
Subject key identifier: AE:89:B0:5A:21:12:1A:02:64:33:35:F8:3D:30:E2:62:2D:B3:E5:01
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 0198D54EC61C067186C45BB0C979EDBA9799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 1239
Signing time: Sat 23 Aug 2025 05:02:46 +0000
Manifest this update: Sat 23 Aug 2025 05:02:46 +0000
Manifest next update: Sun 24 Aug 2025 05:02:46 +0000
Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: zbj3unhL/743h5SFn9rMXdie4T5AIts/U4cL8BBw3f0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:c6:1c:06:71:86:c4:5b:b0:c9:79:ed:ba:97:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Aug 23 05:02:46 2025 GMT
Not After : Aug 24 05:02:46 2025 GMT
Subject: CN=ae89b05a21121a02643335f83d30e2622db3e501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5a:ba:27:07:a2:23:ed:1c:2e:09:86:24:c4:
13:b4:85:31:d6:f3:9f:62:a0:e3:54:53:e6:7a:24:
ea:bd:25:30:56:56:67:95:6a:72:17:81:b9:fd:8f:
e9:58:9e:8a:07:81:04:1b:66:0f:29:b0:ed:73:8d:
65:94:c9:51:f4:2f:41:b6:62:9e:99:f3:c8:03:41:
ce:a7:b0:38:db:a7:fb:f4:ea:f6:54:8f:1d:8b:29:
e4:e6:93:9d:6b:b1:52:b1:26:37:52:ef:5f:61:77:
c9:a2:2e:28:cf:4d:25:de:15:0b:31:31:78:c7:6e:
41:8e:45:7d:9e:b4:46:2f:67:6d:ea:fa:d5:01:1d:
81:e1:5e:44:1b:b7:6f:4e:9e:da:be:ec:54:5c:8e:
b2:fd:c3:c7:29:6e:c3:d4:33:34:c0:38:4a:60:88:
85:97:75:ae:f9:38:31:54:f4:86:3a:78:03:71:82:
ad:8b:78:4e:2b:60:3f:e4:dd:96:44:0a:f6:5d:6b:
0a:82:61:04:68:79:f7:a7:ed:71:0e:40:63:c6:32:
27:94:e0:d9:79:1f:a0:e8:a2:0b:93:45:26:b3:68:
f3:0b:da:64:a6:f7:06:03:99:c7:17:00:73:ef:f7:
84:51:40:7c:92:04:c5:81:9c:90:e2:b0:65:03:78:
73:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:89:B0:5A:21:12:1A:02:64:33:35:F8:3D:30:E2:62:2D:B3:E5:01
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:27:74:7a:4a:12:77:c5:6a:fa:1a:a0:f4:70:c8:e4:47:d8:
c0:42:f0:b6:a8:a2:38:ff:62:32:cc:e3:92:e2:2e:93:a0:61:
19:7d:7b:3a:d2:71:c9:dd:da:2a:3e:1c:4e:ed:88:05:0a:c2:
55:fa:40:98:c5:5a:c5:8e:35:25:ba:18:f9:0c:9e:d7:4b:fd:
a5:8d:1e:68:45:84:84:5d:65:fc:4b:8d:7d:2a:02:60:71:00:
57:b8:1c:30:91:52:e1:59:af:2a:67:e3:af:db:f7:aa:56:bd:
62:f7:1d:f9:a6:a1:44:c3:00:c8:01:6f:08:e7:0d:5d:2a:95:
fb:3c:ef:7d:1a:d8:bb:f7:9c:17:9d:ab:20:00:e8:5b:ac:74:
ae:61:5c:79:22:30:95:1e:9b:42:b4:05:86:9f:dd:23:a5:a8:
f6:6e:94:cf:c9:d6:61:f6:a6:2c:e3:35:ba:6c:5f:80:76:6a:
40:8f:82:80:ad:39:1e:4a:3d:e4:67:78:de:b5:c1:f1:61:03:
b2:ad:84:60:8c:19:5d:55:a3:63:32:57:f6:e1:1a:55:e0:a2:
7c:4e:f4:10:fc:bc:22:0f:10:b3:a1:f0:2d:b8:c1:7b:c9:62:
a9:59:de:b6:6c:d0:46:87:2a:70:6e:35:3d:cd:04:62:fd:00:
ab:a0:66:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:42:34 2025 by rpki-client