Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: lwB2jtKBhHDJ1+y459zE8UcKnBjHyLK7QS+mEPHyLzg=
Subject key identifier: 0D:7E:3D:C3:52:F6:E0:3C:59:FC:18:38:4B:C7:A5:E8:6B:DF:FC:83
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 0198D4740A9277206A1A219462F3A1F0BD31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 01:03:51 +0000
Manifest this update: Sat 23 Aug 2025 01:03:51 +0000
Manifest next update: Sun 24 Aug 2025 01:03:51 +0000
Files and hashes: 1: KXik7lH7rXobKNDojQJvsYz5RkY.roa (hash: OmHOyyMTUBadMMSlHfFTN/cjiEKBhDbZve1q3aoF8Wg=)
2: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: xHJGcpkdg4yMe70rUCceFycxsnOEL4k2+IBmNK4LqPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:0a:92:77:20:6a:1a:21:94:62:f3:a1:f0:bd:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: Aug 23 01:03:51 2025 GMT
Not After : Aug 24 01:03:51 2025 GMT
Subject: CN=0d7e3dc352f6e03c59fc18384bc7a5e86bdffc83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d4:a7:af:26:65:ef:34:b4:e1:7c:8e:7b:ca:
bd:1d:d1:2e:dc:5e:15:be:ce:de:e8:99:1d:da:1c:
ce:e1:de:de:91:f8:fc:d1:78:66:1d:61:3f:dd:d7:
f9:1c:41:d5:0f:7d:91:bb:b2:37:b4:d1:52:27:ec:
31:df:40:e9:c1:cd:6f:39:81:3d:f2:14:62:b2:0a:
6a:61:f4:e4:9c:a5:61:30:b4:3b:cc:be:78:63:36:
4d:20:f6:21:a4:6a:02:f4:20:07:28:25:30:1c:d8:
55:44:ff:42:4a:89:53:58:43:0e:62:66:52:f2:61:
af:56:5c:ca:4d:a8:bf:3d:74:fc:8d:63:98:87:53:
00:e1:01:96:f0:c6:69:64:4f:11:c7:b8:fc:40:30:
86:8d:51:10:e9:45:e7:a1:07:7f:9c:51:ea:b0:6a:
eb:98:d0:d2:7b:1b:3a:a6:ce:6b:f1:1c:1c:88:7b:
6f:2a:fc:e6:e8:f6:98:50:78:23:48:60:8f:26:f3:
e3:3c:31:a1:4c:49:ea:bd:12:df:d5:a6:64:5d:28:
54:5d:13:43:a6:f1:fb:3d:74:11:a0:52:5c:31:eb:
1a:2d:eb:0f:7c:bf:43:9c:70:f6:7d:0f:81:94:77:
19:ad:08:24:54:6d:61:e1:5d:9e:9c:53:13:0a:71:
b7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:7E:3D:C3:52:F6:E0:3C:59:FC:18:38:4B:C7:A5:E8:6B:DF:FC:83
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:0e:42:a7:d3:3e:06:f2:2a:8f:ff:7e:d2:e2:44:60:8d:88:
b2:ba:64:8b:f5:fa:27:3c:52:b7:ab:35:8c:3d:76:6a:53:ab:
40:37:ed:aa:04:c5:5f:8b:a9:e5:c2:45:6b:75:35:27:da:a5:
40:23:e6:b6:29:b4:e4:7b:ea:3e:2c:af:34:26:92:6f:d0:56:
36:50:86:38:d6:54:32:b2:a4:8a:4d:f3:4e:c8:af:9f:75:b6:
cc:25:f9:05:be:13:60:59:ce:46:39:1d:55:bc:b6:6f:5e:d6:
dc:d9:f3:61:fc:1e:ef:96:3a:60:52:b2:b2:4b:ca:aa:c7:f8:
48:99:e5:40:ae:94:93:af:31:af:ea:8e:7f:94:63:b1:09:86:
4e:aa:55:83:8c:85:04:92:ef:87:a7:06:f8:a1:e5:35:dd:a5:
14:74:10:e1:39:16:f9:51:a2:e0:fa:b2:b3:5c:f9:c9:93:ff:
05:b7:0e:f7:00:9c:1c:b2:74:8e:4a:2a:da:68:10:20:eb:b2:
40:6f:06:3b:85:54:71:8a:72:fb:e6:85:e2:05:28:14:22:07:
0e:fe:98:11:e5:64:90:31:d0:1e:ea:1a:dc:c4:f2:dd:c1:07:
9c:60:94:6d:c5:af:46:d2:dc:46:ae:7f:8f:ab:61:d6:ec:21:
37:a6:5a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:40 2025 by rpki-client