Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier: 5Ys517tnQrkMCUgS70rAKCD7vFvF6lEBUiX1u79XkdM=
Subject key identifier: 86:26:84:30:3C:76:9E:50:DE:9C:AC:D3:38:48:32:CD:29:B2:F9:56
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial: 0199FCC65FE908A4E76BC46E9DB55E0143A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 14:01:22 +0000
Manifest this update: Sun 19 Oct 2025 14:01:22 +0000
Manifest next update: Mon 20 Oct 2025 14:01:22 +0000
Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: v6B/yhmLxWNw9uIcw+p77EueWTqAb6ihlU+7LZkAw1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:5f:e9:08:a4:e7:6b:c4:6e:9d:b5:5e:01:43:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
Validity
Not Before: Oct 19 14:01:22 2025 GMT
Not After : Oct 20 14:01:22 2025 GMT
Subject: CN=862684303c769e50de9cacd3384832cd29b2f956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:97:12:82:a7:40:09:8d:f3:7e:a1:52:e4:0b:
82:97:30:65:bb:00:47:2c:84:39:13:65:04:a8:86:
98:54:f9:1a:94:af:3a:96:6c:18:41:99:ed:a6:92:
4d:1f:80:06:ab:34:e6:72:a4:fc:79:2f:7d:65:4f:
87:c8:7b:cd:f4:d2:13:cc:20:ce:be:d0:d3:42:f4:
6b:83:56:4f:35:70:61:c9:88:65:18:06:1b:e5:a5:
b6:55:ad:f2:7d:17:5d:c8:91:e6:22:c6:7b:b7:aa:
9f:0e:3e:b3:a8:ee:11:3c:f7:a6:ae:f3:01:1f:f4:
40:69:67:db:60:a1:ef:41:28:f6:c2:8c:fd:ab:74:
b8:36:dc:c8:69:a2:18:f8:a2:bc:ea:7b:73:67:75:
f7:a4:28:f3:a1:7a:36:52:9a:ca:4c:95:19:91:86:
c5:4b:55:f2:64:5a:4f:d6:aa:eb:d6:59:a2:98:c2:
aa:c7:5d:f2:23:b4:73:07:4e:f1:3b:94:a4:9f:0a:
c5:1e:c9:c9:74:f2:76:36:9e:d2:94:a3:37:ef:c6:
69:85:ba:73:57:c4:94:f6:1b:00:f7:62:0c:b5:d1:
2f:e2:7c:0e:70:55:40:73:73:86:bf:29:b0:95:b0:
e6:3f:2d:2f:bb:74:42:5d:bf:bd:97:7e:a0:05:75:
ee:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:26:84:30:3C:76:9E:50:DE:9C:AC:D3:38:48:32:CD:29:B2:F9:56
X509v3 Authority Key Identifier:
keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:e4:01:1b:41:9a:07:ef:97:c7:22:2c:ce:3e:33:27:55:0f:
92:b3:d6:42:ca:e0:e5:f2:15:4f:b6:a0:68:ce:53:58:53:6f:
89:13:c3:17:e9:6d:9f:9b:d7:d4:01:88:e2:a7:d7:6a:51:d9:
fa:41:71:01:a1:e7:3c:dc:47:a6:c7:ca:6d:39:af:79:ce:55:
4d:c4:c7:ab:ad:4b:df:13:33:e6:a1:6c:6c:68:fc:64:85:1d:
b3:c5:2c:2e:1c:e1:3d:97:6d:72:c7:1a:b5:be:8b:a6:55:bc:
2a:50:69:51:e0:ca:12:92:80:d8:11:0a:d3:56:6d:8c:94:83:
63:dd:93:7d:6b:43:29:97:c1:13:6f:53:93:d0:f8:88:09:0a:
fd:c4:42:2c:c0:d2:8b:38:fb:98:9a:14:8e:31:34:f5:14:e1:
9b:a0:76:8d:aa:57:ee:02:11:ee:6a:b1:ab:27:c2:87:ae:9d:
e4:13:70:33:24:04:81:d8:93:53:f4:c4:79:eb:5e:60:0e:df:
77:a2:ac:b4:2b:d6:f6:28:d4:ce:bd:65:b1:0d:54:26:79:74:
c6:ac:bc:44:14:d1:90:70:b5:cd:0f:99:24:3e:58:8e:2b:a5:
8e:b8:2e:c6:e9:2c:0f:04:6c:eb:f2:ad:11:de:c5:6b:46:e8:
e2:35:bd:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:41:49 2025 by rpki-client