Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: 1tB2I8rZhr0kEbwmvHvWY/QD0y4rgfs88HYa8X/iKdw=
Subject key identifier: 68:35:18:3C:88:CD:D4:E6:68:88:14:0B:76:46:94:C1:D7:8C:33:FC
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 0199FCC6A41F9F24D9397B22B3CDF668BC1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 12D2
Signing time: Sun 19 Oct 2025 14:01:40 +0000
Manifest this update: Sun 19 Oct 2025 14:01:40 +0000
Manifest next update: Mon 20 Oct 2025 14:01:40 +0000
Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: eTgmQ+lB1Tbk170f1Qx95iZeSveUnDYFLfTSD5BTEZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:a4:1f:9f:24:d9:39:7b:22:b3:cd:f6:68:bc:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Oct 19 14:01:40 2025 GMT
Not After : Oct 20 14:01:40 2025 GMT
Subject: CN=6835183c88cdd4e66888140b764694c1d78c33fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:81:a2:87:d9:8c:db:cc:7b:19:a6:11:d1:3e:
c6:3c:4a:0e:40:63:b0:65:a3:f8:d9:13:fc:cc:3b:
85:fa:96:f7:78:64:22:6b:73:08:25:c1:f6:35:4a:
59:73:98:e8:41:e7:71:4f:ac:b8:85:48:51:09:52:
87:3b:45:5d:12:6e:9f:8e:6b:e6:62:27:40:b2:92:
bf:0e:4d:46:fb:8b:4c:b2:0d:59:c6:09:9b:ee:b7:
39:67:c7:eb:72:79:93:15:87:f6:6b:70:76:de:4e:
3a:3c:4c:72:e5:6d:06:f8:90:8b:db:51:d3:26:eb:
d7:9f:a7:0d:38:1c:35:fc:04:58:cb:d6:9e:5a:b2:
c4:2c:cc:60:c0:c9:da:e9:94:6e:91:82:50:7d:80:
06:d5:e8:85:d3:ba:5b:6d:83:7f:fa:ba:40:76:78:
26:10:3a:15:fa:48:45:2a:40:de:d9:bb:fb:19:dc:
f5:a4:1f:1b:51:53:de:28:18:e5:a9:86:f4:9e:37:
06:c6:93:e7:d2:b8:4f:be:da:3d:d7:09:4f:a3:51:
b5:7e:3e:9b:5a:de:fa:00:c4:1d:2b:5d:08:e5:2d:
8c:15:95:57:c9:d5:05:b2:55:dc:43:6c:bb:3a:57:
7e:8f:1b:59:7d:fd:bf:35:96:1b:48:74:71:36:05:
07:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:35:18:3C:88:CD:D4:E6:68:88:14:0B:76:46:94:C1:D7:8C:33:FC
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:74:f3:3a:2e:d3:d9:ca:aa:ae:52:f3:0b:94:7a:3c:50:91:
8f:e8:13:e0:ae:a4:f2:84:da:ec:3d:63:ea:12:a9:9c:2e:ad:
14:39:77:68:bf:9c:3d:db:20:fb:f5:40:f4:5c:25:f5:29:36:
6c:59:49:8c:a7:20:ef:db:33:13:43:59:35:0b:1f:b3:ac:ab:
09:0b:ea:54:13:60:1d:0d:66:96:1a:09:3a:43:6e:1f:73:84:
53:33:35:71:1c:e8:53:f7:1e:46:d4:82:c5:74:65:fe:6c:be:
4f:63:27:a0:00:1c:42:82:01:d3:b2:f6:cf:c5:b6:2d:01:3c:
36:c2:55:03:4a:cf:d2:a8:63:fd:87:53:26:9e:a0:46:54:fa:
84:57:ff:cd:39:3a:21:04:0f:89:ea:ac:7b:30:23:e0:5f:2e:
47:72:0d:ab:4f:ee:49:12:9b:1f:95:d3:13:2c:15:e1:4b:e8:
8a:36:b0:1c:f5:6d:c2:ae:9b:55:56:2d:80:92:37:fb:6b:21:
d7:51:36:af:0f:1c:e8:33:f9:b2:f1:3c:00:74:68:6b:67:74:
dd:dd:a1:a7:7c:0f:20:9a:bc:6b:15:2f:75:46:90:2a:37:60:
fd:8c:17:cc:d9:bc:8e:ab:c2:53:32:b9:d3:a4:a3:0e:49:b7:
52:df:e2:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:55 2025 by rpki-client