Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json)
Hash identifier: hNwo2Rxtc508VGLk595xfajnZVXOTupjRyvNKHOYfw0=
Subject key identifier: 79:66:19:74:A5:58:6C:3B:AF:33:35:73:21:C2:FD:CC:BE:0B:56:18
Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848
Certificate serial: 0199228C386C908AC1044BA79420FFE87004
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
Manifest number: 1672
Signing time: Sun 07 Sep 2025 05:00:38 +0000
Manifest this update: Sun 07 Sep 2025 05:00:38 +0000
Manifest next update: Mon 08 Sep 2025 05:00:38 +0000
Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=)
2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: fLpSGVxMAuEEsFwV5Orn+zvCZAEdDTVA9gQ4pknjiUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:38:6c:90:8a:c1:04:4b:a7:94:20:ff:e8:70:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848
Validity
Not Before: Sep 7 05:00:38 2025 GMT
Not After : Sep 8 05:00:38 2025 GMT
Subject: CN=79661974a5586c3baf33357321c2fdccbe0b5618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fa:59:41:8e:79:63:16:90:69:d0:b5:c1:e4:
fc:ce:ca:b1:62:ec:3c:08:da:c6:80:d6:56:13:9f:
92:89:08:75:e7:4e:ba:66:f6:9a:52:81:eb:48:82:
4c:bc:96:0d:17:4f:ad:3b:95:65:68:6c:7a:dc:02:
fc:81:90:38:16:0f:ca:bf:42:17:0b:c0:94:f5:fa:
6f:4e:cc:ee:73:50:ce:14:c0:f0:45:ec:0e:19:9c:
0f:af:7a:3a:c0:70:b1:0c:70:29:78:be:c5:a1:41:
9f:4e:01:27:76:5e:e3:8f:1d:76:65:fa:6f:0e:58:
d9:5a:26:8b:7b:fe:42:93:36:93:0d:61:19:50:35:
5b:b0:a3:a0:c5:6b:18:dd:19:3a:4a:e4:55:19:e3:
24:49:2f:a2:c8:24:7a:1d:c5:f4:a8:38:da:33:9d:
d5:56:6d:80:ac:37:e8:03:73:4f:32:ef:38:dd:46:
65:76:64:5b:d2:f9:67:09:7d:62:10:35:cf:ad:b0:
15:d5:c3:07:94:12:f2:cd:e8:01:56:cd:ff:ac:f5:
73:d4:d9:7a:b3:a8:43:f7:d7:5e:d9:eb:77:c1:57:
db:8e:9a:d6:16:0e:15:ca:cf:3c:ea:91:fb:8f:58:
51:9e:9a:1b:67:b7:cb:92:6c:5a:35:0c:32:e8:39:
fe:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:66:19:74:A5:58:6C:3B:AF:33:35:73:21:C2:FD:CC:BE:0B:56:18
X509v3 Authority Key Identifier:
keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:0e:97:85:a5:b3:f3:9c:6c:8e:a8:f1:2b:68:82:3e:23:6e:
03:65:11:17:9b:02:a8:4c:84:6e:5c:2f:fd:50:c5:52:18:3a:
31:ef:9a:a9:87:64:22:85:08:82:56:1b:91:84:0c:0f:55:c7:
ff:46:b0:61:ed:a9:00:03:46:0e:23:8c:47:35:d0:ff:58:81:
ba:60:09:40:56:ba:45:e5:70:86:1a:fe:d1:df:aa:80:29:8e:
eb:fc:50:77:73:a7:f3:36:fa:ae:c4:52:55:9e:a0:28:ab:ea:
50:ae:1c:8b:0d:a9:18:11:02:bb:7f:37:e6:22:0d:ca:b6:9e:
cb:a9:58:1f:8b:05:8a:f3:37:97:1a:cb:ad:cf:fb:ec:31:dd:
39:14:e7:a9:c0:10:9f:36:5d:95:20:15:a8:82:9a:12:80:46:
ab:1e:db:4c:9c:09:ed:39:a3:b4:83:4c:12:c4:d0:e2:6b:01:
dc:39:00:d1:2d:d9:31:22:ab:ba:a5:58:af:7f:14:18:ea:05:
bc:c4:b8:3a:7c:1e:93:2c:3b:4a:aa:ed:d8:20:49:4a:a9:23:
f0:e4:77:eb:6e:56:69:60:9e:3e:e5:c0:f2:34:4a:5a:a2:d9:
25:69:d5:d0:34:83:e0:b9:a7:61:b5:78:92:d9:a8:2c:97:fa:
41:0e:ac:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:02:56 2025 by rpki-client