Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: jvjSzphhE+wGDh7UBjvYOhGf2JQezX3MNBEeNiy04sQ=
Subject key identifier: 7C:54:78:6A:8C:33:0F:31:B2:0F:F5:E5:F4:36:15:90:01:1B:83:DE
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 0199FBEA7EB3FAF9D06786E00BE559E0197C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 10:01:13 +0000
Manifest this update: Sun 19 Oct 2025 10:01:13 +0000
Manifest next update: Mon 20 Oct 2025 10:01:13 +0000
Files and hashes: 1: KXik7lH7rXobKNDojQJvsYz5RkY.roa (hash: OmHOyyMTUBadMMSlHfFTN/cjiEKBhDbZve1q3aoF8Wg=)
2: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: zBZmn3vQG548H+bPtoS4uAxMLp+ObN6yy+tcxmkQxrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:7e:b3:fa:f9:d0:67:86:e0:0b:e5:59:e0:19:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: Oct 19 10:01:13 2025 GMT
Not After : Oct 20 10:01:13 2025 GMT
Subject: CN=7c54786a8c330f31b20ff5e5f4361590011b83de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:45:6f:55:61:3c:db:eb:d6:89:77:17:6c:43:
34:47:1a:4e:6a:5e:37:4e:b0:13:cc:3c:12:07:34:
c3:cc:85:92:33:de:98:39:ef:d1:7c:67:a6:34:99:
cf:ac:8d:67:d5:3b:b7:82:cd:af:de:13:ff:af:b3:
d1:9f:db:b0:8a:01:1e:98:bf:e7:75:96:73:4f:cf:
29:12:0e:ba:13:dc:29:fc:cc:d2:19:05:5b:46:95:
d3:f9:20:91:09:38:24:65:a3:e7:1f:9d:ea:9b:d9:
55:98:2b:40:bc:f8:29:cd:71:9c:9c:86:32:0f:2f:
5e:38:aa:b6:12:88:cf:7b:5c:c5:d3:37:6b:54:c5:
1e:ef:11:69:51:ae:1e:26:d5:6e:ce:52:b4:d2:48:
98:f8:22:fa:a0:37:d4:8f:d4:c2:6f:21:96:7f:ae:
7c:0e:cb:66:be:aa:81:53:03:c6:03:f3:d9:e8:f5:
34:33:54:23:12:b7:9f:38:1b:f4:79:c6:86:48:83:
9c:88:db:78:7a:30:d9:ea:12:d6:ab:11:18:c5:c0:
72:7b:05:1e:d4:63:79:cf:9a:12:94:1f:be:db:82:
a3:a9:1a:f5:8c:ab:b8:54:63:76:de:00:1a:3f:0c:
8e:8d:77:5e:09:c9:01:a7:09:8a:51:66:0d:53:44:
e0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:54:78:6A:8C:33:0F:31:B2:0F:F5:E5:F4:36:15:90:01:1B:83:DE
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f3:af:84:6d:d3:0d:df:60:42:ba:9d:fb:a6:71:a2:f1:ae:
24:38:72:57:87:a2:86:ca:c5:ae:93:89:9f:38:11:61:3f:fc:
39:fb:39:76:2e:8c:ac:67:92:56:7b:97:7b:fe:fa:92:82:3b:
76:ff:03:0b:e2:4d:35:6d:63:e6:2c:ee:fc:77:28:c3:22:91:
77:63:db:2a:f2:5b:b4:da:f8:57:19:19:6b:99:b9:1f:f2:1d:
b1:2f:d8:41:2c:5f:c7:38:f7:3e:b6:99:2c:94:56:d0:89:f6:
f1:4b:dd:a2:3f:93:ac:e2:90:05:3b:8d:bb:a8:eb:59:b5:a0:
34:31:68:b1:c5:b8:62:70:a0:e8:2e:90:86:c0:ea:fa:38:70:
ac:85:00:71:16:c4:1b:18:a2:48:14:fc:16:18:36:0c:8d:6d:
af:3a:65:68:1f:8a:a6:4f:67:34:14:68:00:89:78:48:87:c4:
e1:f4:a1:2e:b3:6e:49:f1:3e:77:76:9d:46:c7:d9:77:20:49:
fb:20:8a:6c:1b:c4:8b:d9:98:c7:39:44:b5:ff:dc:17:46:dc:
1a:fd:49:bf:a5:53:8a:c4:4f:3c:d2:15:c6:6c:0a:09:21:60:
a4:d5:bf:f4:9b:b1:11:d3:ec:36:a3:40:0b:d9:25:0c:08:43:
0d:4a:21:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:42 2025 by rpki-client