Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
File: YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft (raw, json)
Hash identifier: aihuX7YL5LXX3GTqlAomqEq4AyYZFh4OiKZqlJXEIQI=
Subject key identifier: BB:C4:51:E6:D0:EC:B3:4D:4D:17:B1:6E:DA:9A:DF:AB:C0:22:E1:31
Authority key identifier: 61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3
Certificate issuer: /CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3
Certificate serial: 0199221F3AFB1CC42DDF68629F53CD4DF90A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
Manifest number: 0D36
Signing time: Sun 07 Sep 2025 03:01:35 +0000
Manifest this update: Sun 07 Sep 2025 03:01:35 +0000
Manifest next update: Mon 08 Sep 2025 03:01:35 +0000
Files and hashes: 1: YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl (hash: 3UTvHHzrEYhE/IkPbBPTR013iDH/m8ExXFy8CoNDGtY=)
2: tm8Rt7Sc2c1PcYKasPfyO3eBX9M.roa (hash: fWTds4doBQAqbglPwbw6IGwEFIO7de7/7OMc6gbtl08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:3a:fb:1c:c4:2d:df:68:62:9f:53:cd:4d:f9:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3
Validity
Not Before: Sep 7 03:01:35 2025 GMT
Not After : Sep 8 03:01:35 2025 GMT
Subject: CN=bbc451e6d0ecb34d4d17b16eda9adfabc022e131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:58:38:cc:ac:62:3e:d8:e7:96:67:81:ac:00:
47:66:0b:16:23:31:80:98:b6:19:5d:ac:7f:a0:50:
06:c8:ee:9d:60:89:62:58:72:5e:e7:6c:45:de:d2:
87:10:85:ae:80:2c:79:0d:26:50:dc:84:da:5d:fe:
18:3a:a8:10:7a:65:4e:b9:b0:67:14:34:69:be:47:
9f:9f:46:66:f6:1c:4c:d7:d4:ad:1d:2a:9f:1c:e1:
b1:95:36:c0:c9:35:d9:03:6e:38:63:f3:67:a8:df:
f7:b9:10:f5:18:eb:fd:fc:f7:e1:f2:be:85:5d:b4:
a8:c7:91:f3:70:8d:cb:1c:b2:53:5c:0a:87:45:2f:
0d:3c:ff:bd:a0:cb:c2:8b:ce:28:3a:e8:14:58:fb:
18:bb:f9:cb:ff:f9:88:2d:e0:b7:f9:34:f9:a8:39:
e1:7a:e9:f0:50:7a:f9:84:2b:c4:36:82:aa:a0:e0:
30:c5:59:3d:c5:66:be:f3:50:bb:20:2b:75:64:04:
31:b6:d4:a2:71:ec:0e:6f:ae:33:52:e8:c6:68:0f:
e1:c3:9b:23:78:c7:a7:65:52:d3:ad:14:fc:31:18:
53:ef:f4:5c:65:71:65:51:5b:0e:21:16:cc:9e:ec:
6c:34:3d:d6:83:e9:cc:3a:26:d3:7b:62:57:50:60:
80:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C4:51:E6:D0:EC:B3:4D:4D:17:B1:6E:DA:9A:DF:AB:C0:22:E1:31
X509v3 Authority Key Identifier:
keyid:61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:3b:c1:ee:c9:63:7f:4b:e4:6c:1a:a8:27:aa:84:25:52:49:
40:50:a2:e1:76:d2:a5:8a:12:8f:63:2c:44:57:95:4b:6e:f3:
ab:d4:3b:5f:7c:8e:b2:f3:ee:6a:59:f9:71:2d:44:22:22:6a:
6b:16:4e:77:68:45:ac:b8:f9:39:7b:39:82:0b:5e:40:0f:c4:
d7:c6:4c:46:98:8f:f0:bb:76:31:0d:41:55:91:f9:93:51:0c:
e3:e4:7f:f4:7f:dc:37:a4:4e:df:22:d8:0f:80:56:be:fd:7f:
d9:f5:55:f2:1a:f9:2b:17:67:d7:a8:64:97:b3:83:cb:ba:a7:
72:3d:7c:cb:45:40:bc:6f:f4:04:92:96:54:37:a5:60:9f:c3:
f4:3d:b4:c7:58:cd:12:7c:12:5c:62:1d:c5:87:e2:ae:bc:03:
1d:e6:7b:8a:41:a5:d0:bd:5e:75:cb:b1:8e:4c:99:7c:66:b6:
79:21:1a:d4:4c:50:a9:9d:86:3a:12:af:34:96:44:9a:13:40:
6d:a1:c8:53:d0:fe:9a:5a:dc:64:96:11:58:58:78:f8:9a:cc:
6d:85:e9:ba:74:86:2d:85:82:b0:22:be:3d:e6:a0:ff:0d:ab:
c0:8a:85:4c:7b:5f:83:25:e1:1c:7f:0a:5a:c2:dd:33:bf:af:
ee:c6:fd:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:41 2025 by rpki-client