Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft
File: YNJSouMVOM2lhXutCYPIvfVYsXs.mft (raw, json)
Hash identifier: dOI2gh2pizA4BMADnMRKpWajMLKO22J2pSXC+doWAgo=
Subject key identifier: 6C:86:76:95:8B:50:16:74:10:26:C4:03:3A:CB:C8:D1:5C:7C:89:4F
Authority key identifier: 60:D2:52:A2:E3:15:38:CD:A5:85:7B:AD:09:83:C8:BD:F5:58:B1:7B
Certificate issuer: /CN=60d252a2e31538cda5857bad0983c8bdf558b17b
Certificate serial: 0199FDDA3780A7A6E0124AF2D9697B6D7584
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNJSouMVOM2lhXutCYPIvfVYsXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft
Manifest number: 0A24
Signing time: Sun 19 Oct 2025 19:02:40 +0000
Manifest this update: Sun 19 Oct 2025 19:02:40 +0000
Manifest next update: Mon 20 Oct 2025 19:02:40 +0000
Files and hashes: 1: YNJSouMVOM2lhXutCYPIvfVYsXs.crl (hash: 5iG54K2S9dFIWof+dRLMqy6bm0S2CGyPM3mZCdlhVEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNJSouMVOM2lhXutCYPIvfVYsXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:37:80:a7:a6:e0:12:4a:f2:d9:69:7b:6d:75:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60d252a2e31538cda5857bad0983c8bdf558b17b
Validity
Not Before: Oct 19 19:02:40 2025 GMT
Not After : Oct 20 19:02:40 2025 GMT
Subject: CN=6c8676958b5016741026c4033acbc8d15c7c894f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:dd:19:3e:52:f4:aa:4e:97:85:90:42:76:
25:17:fe:3a:03:88:7c:66:34:18:ff:82:df:31:35:
6e:1c:f4:d7:50:5a:58:00:ed:e2:9b:92:52:a5:4e:
46:82:a7:21:09:7f:6e:fa:2b:22:19:7f:7c:7b:6a:
bc:42:ca:8a:4e:e7:37:7d:02:e2:88:08:ba:05:7c:
9d:0c:e8:d1:84:4b:cb:db:63:7c:d8:91:e1:85:fe:
03:45:20:c8:51:6e:34:89:ca:59:80:cc:fd:23:d3:
15:48:c5:93:e4:1d:ab:35:f6:ee:29:04:de:36:30:
6f:e9:b0:66:ac:0d:c6:7b:1d:a4:d3:a7:4d:4d:d5:
17:76:83:8f:12:19:80:43:9c:98:f4:07:0b:3e:2a:
a0:a2:1d:ff:b3:65:cb:cf:38:ee:1f:97:fe:45:0b:
41:af:7c:1a:31:d1:b0:8a:42:eb:ca:53:08:0d:92:
4f:d3:4a:38:bd:30:61:75:20:68:2b:c3:81:0b:52:
e8:1f:e6:4a:ff:d3:6f:16:40:12:fc:a2:b1:9a:5e:
22:4b:d9:1f:a1:85:99:88:76:6a:17:99:5e:b7:03:
cc:68:5f:f9:35:76:01:00:eb:4c:53:ee:fe:b3:d0:
c5:16:f3:8b:40:5b:72:79:40:d4:de:d2:9c:e9:94:
7c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:86:76:95:8B:50:16:74:10:26:C4:03:3A:CB:C8:D1:5C:7C:89:4F
X509v3 Authority Key Identifier:
keyid:60:D2:52:A2:E3:15:38:CD:A5:85:7B:AD:09:83:C8:BD:F5:58:B1:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNJSouMVOM2lhXutCYPIvfVYsXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a17ddf-9ba6-4395-aae6-566f6cf431c0/1/YNJSouMVOM2lhXutCYPIvfVYsXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:89:78:ae:9a:b3:93:cd:33:0d:ba:9a:01:aa:ee:bc:44:65:
9e:b5:94:a1:c7:3b:fb:f1:11:78:35:16:5d:82:55:7e:9c:da:
79:fb:9e:f8:47:97:24:f7:ca:7d:5c:90:02:cb:8e:1c:2c:d0:
31:7c:0f:b2:9d:5d:94:dd:57:2f:42:0e:29:25:c0:7b:3f:a5:
a8:91:ad:99:1a:b0:31:1d:2a:e8:9f:6f:2a:8d:63:0e:aa:76:
e6:9e:c3:7d:f9:59:35:39:11:85:d9:b0:4d:ec:63:d1:68:3e:
ff:c4:25:44:47:d2:03:c7:45:1a:82:db:34:f3:76:11:17:7a:
b9:77:cb:75:b6:97:8b:f3:ae:6a:19:92:cb:e5:d5:e0:22:bc:
b9:ee:06:bf:3e:fb:21:74:f8:a5:70:4f:b7:d1:95:b6:9f:e0:
08:ab:f4:18:da:04:60:cc:3f:87:06:b4:50:34:ec:7c:95:a3:
a4:04:e0:6b:08:65:c5:52:b1:f7:36:ff:aa:61:48:83:25:6a:
fc:a1:de:57:91:8c:a7:10:3e:06:6b:99:27:7a:28:01:4a:e0:
12:60:4c:b7:af:79:83:1b:27:72:ae:ea:48:9c:ce:80:15:5d:
a4:26:82:c6:de:02:3a:a2:dd:95:6c:69:96:12:ae:4f:dd:c0:
68:59:e3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:27:18 2025 by rpki-client