Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: idUNo45hijSRQIsaLW23l7SYWUKHEQpD3Lc/WaF9zow=
Subject key identifier: 40:3F:00:8D:0F:AF:72:26:9A:FC:F0:55:BA:A8:9F:34:EA:34:7E:ED
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 0197B6D768AE5D9CDD4074947A696778F50D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 02AE
Signing time: Sat 28 Jun 2025 14:00:59 +0000
Manifest this update: Sat 28 Jun 2025 14:00:59 +0000
Manifest next update: Sun 29 Jun 2025 14:00:59 +0000
Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: /wvPi7XDb7WpunYT3QM+TlxfWEfiO/A1EhRmDc8bY6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:68:ae:5d:9c:dd:40:74:94:7a:69:67:78:f5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Jun 28 14:00:59 2025 GMT
Not After : Jun 29 14:00:59 2025 GMT
Subject: CN=403f008d0faf72269afcf055baa89f34ea347eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c8:fe:32:37:be:cc:ba:57:69:bd:c1:ab:15:
f8:1d:97:d0:fd:5c:e0:81:3a:a9:db:6b:94:be:6d:
dd:85:f2:f0:76:29:28:d3:0f:38:30:b7:96:30:51:
16:1a:bd:06:1a:9f:8a:5e:d8:cc:25:05:88:69:3d:
f5:35:b8:22:9e:53:b5:0d:49:d8:48:e8:68:c3:2e:
10:ce:53:07:70:60:24:61:8e:41:2a:ed:7b:72:de:
87:de:c2:d8:23:8c:10:6f:ad:90:66:af:e4:16:5a:
f7:da:fd:b0:8b:8b:85:e1:56:64:ae:7b:94:5e:56:
34:8c:08:64:a6:64:dd:1c:13:10:2c:44:d1:9d:2e:
9c:d3:b9:23:f4:c3:de:48:ca:d6:7f:4b:3c:3e:46:
8c:c4:b3:52:8c:a6:92:c1:6d:c7:5f:c3:cd:45:07:
5d:d2:32:ef:a8:74:f1:d5:04:d5:29:7e:e4:60:7d:
69:9b:6e:ec:1b:85:72:79:0f:a5:2b:a6:5e:ba:bb:
a3:52:0a:55:eb:db:26:d2:18:ae:83:68:da:e1:1e:
f1:aa:9e:e7:0f:4d:51:d8:3c:24:3e:3b:1c:e4:d8:
dc:25:03:f2:7a:74:50:e6:e5:05:50:c1:93:78:c3:
83:66:81:08:0a:f9:6d:d7:5f:6d:3e:d2:9e:ef:5e:
93:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3F:00:8D:0F:AF:72:26:9A:FC:F0:55:BA:A8:9F:34:EA:34:7E:ED
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:cb:5e:74:31:de:be:43:4d:0d:e6:83:76:3d:58:06:e1:41:
b0:64:92:98:6c:a7:50:89:6f:6c:de:77:a9:f9:dc:0a:c0:44:
f3:32:fd:9d:93:42:95:ad:e3:2a:23:45:0f:b3:94:0e:eb:9f:
a2:ed:ca:c7:1b:e7:9b:d3:ed:64:e5:b3:c4:6c:d1:60:61:88:
f5:e3:8f:39:61:ab:5c:7d:e0:7f:14:40:9b:f5:52:65:9b:97:
e4:e2:96:be:9a:01:da:a6:72:3a:53:6b:61:19:08:9d:67:3e:
9e:3e:95:a3:0f:9c:2c:c7:a8:2c:97:1c:31:e1:56:a1:8c:2a:
f9:cb:f1:fb:c6:ac:fe:89:b9:96:e8:fe:08:a4:c5:0a:aa:f5:
5f:1a:01:3e:92:33:5d:39:66:bc:d9:fd:75:e8:34:e1:c9:1b:
b6:3a:66:90:ed:7e:97:dc:60:64:8c:f4:19:97:87:81:ea:e5:
80:15:6c:0a:cf:36:ea:e5:4b:a5:d8:2d:4e:6e:3e:b7:b2:da:
8b:32:f9:88:44:53:75:37:8a:03:37:ae:72:a9:84:5e:0e:ec:
35:e5:77:6e:1b:4b:c5:e5:82:54:e4:85:f3:77:b1:07:a5:a2:
7d:71:69:b6:1f:6d:78:b0:6d:7b:33:db:1f:d5:3c:83:a5:f3:
60:94:55:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:17:59 2025 by rpki-client