Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: 0P50iNxLPlYx8coHi9UiJOXSUOprKbKtqMSnorDyE5Q=
Subject key identifier: 60:BC:7D:A2:66:0B:8E:C5:2D:A9:16:FE:CB:66:0A:E6:F0:0B:0F:D0
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 0199FE103DBF25D9E9DEC3BA584C7EF471F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 0103
Signing time: Sun 19 Oct 2025 20:01:41 +0000
Manifest this update: Sun 19 Oct 2025 20:01:41 +0000
Manifest next update: Mon 20 Oct 2025 20:01:41 +0000
Files and hashes: 1: ExSTOwE1cgjVjy4QOn4fnsEg6yk.roa (hash: BWruwZ2sPPFJNl0LTAZ/6PggnfvgGee+556evIuwLT4=)
2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: 91WKjfIsfCgiYy9g0oYlWij/zgrD8g0WB51Y0gJFIzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:3d:bf:25:d9:e9:de:c3:ba:58:4c:7e:f4:71:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Oct 19 20:01:41 2025 GMT
Not After : Oct 20 20:01:41 2025 GMT
Subject: CN=60bc7da2660b8ec52da916fecb660ae6f00b0fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:06:07:03:a5:87:c1:91:7a:f3:34:f9:33:
5f:33:d9:e0:c8:25:d9:91:c6:f3:35:e1:ad:7d:af:
0a:ae:66:f6:9a:d1:7e:85:73:62:0f:51:63:f0:24:
e5:d2:f3:b2:8d:45:63:24:b6:16:b1:7c:5d:d7:79:
7e:a6:67:78:90:40:d2:e2:55:59:9d:39:70:1d:b5:
9b:cb:76:c5:ea:9f:4e:19:f6:cf:ec:27:c0:dc:e0:
11:ed:39:63:45:ed:c4:32:66:bb:24:6b:c8:a0:4b:
b1:3d:be:f9:ac:0e:bd:fa:22:d9:d2:79:b2:ce:2a:
a4:4d:57:43:13:32:af:a4:20:46:cb:8a:85:0e:00:
d9:09:c4:2c:0a:c9:8f:7d:20:e0:27:76:ee:15:73:
0e:64:d5:47:3b:ba:8c:07:f2:2b:7e:c9:85:3f:fd:
ae:ef:e0:00:dc:f5:be:df:34:b9:9d:d5:a4:e7:1c:
31:5b:fa:70:d3:1a:22:71:59:5c:67:37:b8:fa:5d:
1d:d3:01:a6:69:78:f7:b7:1a:21:02:e8:44:06:76:
94:0d:2f:ba:07:b6:c6:23:39:7c:1a:c6:7f:2f:12:
53:6a:e1:98:5a:9f:5c:fb:45:1c:cc:47:7f:da:38:
98:79:af:f4:3d:05:b1:f6:fe:32:99:65:1c:b8:05:
82:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BC:7D:A2:66:0B:8E:C5:2D:A9:16:FE:CB:66:0A:E6:F0:0B:0F:D0
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:bd:e1:0d:ab:98:8f:72:70:18:c3:18:98:a6:85:44:c2:10:
08:2b:25:f6:5b:a9:cf:54:a7:10:ee:49:3e:8c:0f:e5:cf:c6:
7d:12:6f:b5:f9:c6:aa:8a:fb:92:c1:be:ab:34:2f:cb:cb:30:
e5:4d:b1:fb:cf:b8:97:01:84:8e:1b:88:0b:34:95:e9:1c:e9:
17:6f:a9:a5:54:6e:23:dd:3e:ac:f9:f4:8b:1c:b1:1c:a7:4a:
33:0d:cc:0d:9d:04:54:f1:8f:d3:e3:a2:17:e4:52:3e:af:14:
02:03:72:ae:6a:51:19:d8:8f:d9:bc:5d:d2:fb:1f:f6:0d:f9:
db:a2:bd:bf:c8:6a:6d:05:98:03:54:93:bb:ec:b0:75:f6:32:
ce:89:21:2c:1f:a8:d1:22:ee:fd:0d:a2:5a:2d:53:ba:f6:b3:
c7:71:65:8b:e0:d3:ab:15:ad:47:9d:42:d4:59:8f:98:08:65:
1b:40:86:41:81:6b:04:53:a3:80:bf:ca:5f:c9:23:39:c5:a7:
34:33:c4:ab:2f:ca:c2:cb:07:4a:b9:4b:e1:86:49:4a:8d:95:
66:eb:55:e5:b6:93:c3:1b:ff:6e:b1:34:e0:c4:5c:b4:d9:38:
04:e9:70:dc:04:6e:b8:13:d2:a9:10:a9:77:fb:ef:0f:97:c8:
0b:ed:f5:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+ED2/Jdnp3sO6WEx+9HH5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNjE0NzhlNGQ2NTliZWNlODIwM2M1ZThiYThlOGY4MmYw
NDcwZDcwHhcNMjUxMDE5MjAwMTQxWhcNMjUxMDIwMjAwMTQxWjAzMTEwLwYDVQQD
Eyg2MGJjN2RhMjY2MGI4ZWM1MmRhOTE2ZmVjYjY2MGFlNmYwMGIwZmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1kGBwOlh8GRevM0+TNfM9ngyCXZ
kcbzNeGtfa8Krmb2mtF+hXNiD1Fj8CTl0vOyjUVjJLYWsXxd13l+pmd4kEDS4lVZ
nTlwHbWby3bF6p9OGfbP7CfA3OAR7TljRe3EMma7JGvIoEuxPb75rA69+iLZ0nmy
ziqkTVdDEzKvpCBGy4qFDgDZCcQsCsmPfSDgJ3buFXMOZNVHO7qMB/IrfsmFP/2u
7+AA3PW+3zS5ndWk5xwxW/pw0xoicVlcZze4+l0d0wGmaXj3txohAuhEBnaUDS+6
B7bGIzl8GsZ/LxJTauGYWp9c+0UczEd/2jiYea/0PQWx9v4ymWUcuAWCmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGC8faJmC47FLakW/stmCubwCw/QMB8GA1UdIwQY
MBaAFMphR45NZZvs6CA8Xouo6PgvBHDXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTIt
OTQ2ZGE1ZjVlZmJiLzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTItOTQ2ZGE1ZjVlZmJi
LzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVr3hDauY
j3JwGMMYmKaFRMIQCCsl9lupz1SnEO5JPowP5c/GfRJvtfnGqor7ksG+qzQvy8sw
5U2x+8+4lwGEjhuICzSV6RzpF2+ppVRuI90+rPn0ixyxHKdKMw3MDZ0EVPGP0+Oi
F+RSPq8UAgNyrmpRGdiP2bxd0vsf9g3526K9v8hqbQWYA1STu+ywdfYyzokhLB+o
0SLu/Q2iWi1Tuvazx3Fli+DTqxWtR51C1FmPmAhlG0CGQYFrBFOjgL/KX8kjOcWn
NDPEqy/KwssHSrlL4YZJSo2VZutV5baTwxv/brE04MRctNk4BOlw3ARuuBPSqRCp
d/vvD5fIC+31Ew==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:18:31 2025 by rpki-client