Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: HLZxGlZ1TeHeuM6eSaE4jhZdsxP3uFy+kAkarjdKehU=
Subject key identifier: D3:0A:33:08:ED:35:A9:5D:25:17:4C:77:1E:39:AF:47:30:CD:B7:C4
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 0197B77C581E1872441406895C543BA52447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 11A5
Signing time: Sat 28 Jun 2025 17:01:08 +0000
Manifest this update: Sat 28 Jun 2025 17:01:08 +0000
Manifest next update: Sun 29 Jun 2025 17:01:08 +0000
Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: zGTWBQWIe/8/MRgBpT5WGvk3kn1pQ34UrYzx1XybWaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:58:1e:18:72:44:14:06:89:5c:54:3b:a5:24:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Jun 28 17:01:08 2025 GMT
Not After : Jun 29 17:01:08 2025 GMT
Subject: CN=d30a3308ed35a95d25174c771e39af4730cdb7c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b3:a4:ab:9c:cb:20:94:fb:44:69:f3:94:f9:
a4:f1:32:47:cf:0c:f7:80:57:18:8f:f4:d7:0b:41:
84:bc:0c:19:40:58:0f:59:93:ff:21:75:c5:1e:66:
40:30:9d:26:b6:5a:81:36:9f:6f:0e:99:0e:9e:30:
f3:05:9b:75:36:f4:5d:ba:23:53:37:d5:c7:87:2f:
c7:97:72:cd:69:6b:6f:8d:5e:d7:91:54:31:91:73:
f9:c3:c3:1c:07:01:53:e7:12:ad:3a:e0:bb:97:f9:
4f:83:e1:d8:bc:bc:b0:59:ac:81:38:d7:98:87:be:
f7:62:00:0a:a5:70:44:16:b6:03:9b:2d:32:7d:ba:
cd:08:f1:85:10:8a:cd:64:c7:b9:8d:93:aa:04:46:
87:48:be:85:f7:87:b8:26:76:3c:5c:1a:7a:d7:4e:
30:ba:5e:54:1a:5f:e9:a3:f0:89:31:5c:13:88:46:
28:3a:49:a3:f0:a2:27:d3:bf:04:94:52:69:6f:b8:
6b:36:73:46:b3:ce:2d:6f:58:a0:09:10:8c:f9:d4:
dc:53:87:ed:67:d6:61:21:84:98:51:06:b8:bc:bc:
e0:0f:90:c3:1c:24:17:68:b2:7e:33:99:00:ff:d4:
13:44:72:0f:ed:ec:69:4b:0e:c5:50:d1:84:de:8d:
ff:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0A:33:08:ED:35:A9:5D:25:17:4C:77:1E:39:AF:47:30:CD:B7:C4
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:e3:c3:5b:70:f8:8e:ad:cf:43:3a:7a:90:cf:be:a1:5b:3e:
52:d8:36:05:21:bf:94:d6:53:36:53:59:f6:44:5d:42:b0:53:
be:78:5b:79:2f:4e:32:da:7b:3b:58:97:97:a7:e1:15:3c:55:
5a:89:71:41:f6:07:90:ec:d7:d7:a3:5b:0f:dc:57:e4:04:54:
3e:98:9b:fb:a4:14:60:ae:6b:d0:a3:22:af:df:df:89:1a:6f:
9c:7f:97:66:f8:bb:6b:36:02:22:af:18:27:ef:a4:37:46:a8:
a0:1c:dc:06:06:92:3d:15:21:3a:28:ac:0e:bc:b2:10:44:a4:
17:27:04:71:5f:fe:a8:6c:58:96:b1:1b:14:0e:f9:40:06:2a:
2a:ca:de:2e:d7:8a:ba:53:78:0b:c7:26:58:ad:df:59:0a:3c:
ee:eb:a5:ca:49:a3:c5:ce:2a:03:57:1e:d7:31:32:c0:2a:6e:
6c:24:12:22:86:37:f8:2e:d1:37:e2:98:bb:4a:33:5d:ca:2e:
94:1e:a1:10:33:04:00:0d:28:1f:4f:2d:9e:ce:6c:a6:90:cf:
88:b5:82:5e:c8:43:58:ca:97:6e:98:c0:37:be:3b:29:64:8d:
39:c0:1b:04:50:db:9b:d2:86:c1:56:c3:b1:b3:6c:9b:7c:69:
af:b2:14:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:37:09 2025 by rpki-client