Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: mzg7pvKxGuDDM/4iKABFs8EWgmkC/jW/CWythSK0Css=
Subject key identifier: E2:78:48:FE:60:C2:EF:1D:98:92:AF:6B:53:4D:80:D3:6F:E0:11:23
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 0198D6988B44382FF4C70B21A689B13E171E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 0343
Signing time: Sat 23 Aug 2025 11:02:57 +0000
Manifest this update: Sat 23 Aug 2025 11:02:57 +0000
Manifest next update: Sun 24 Aug 2025 11:02:57 +0000
Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: kRfdEpRhLjsom8nDqUcbDjynbcfoj/K74Mrkh/GdY3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:8b:44:38:2f:f4:c7:0b:21:a6:89:b1:3e:17:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Aug 23 11:02:57 2025 GMT
Not After : Aug 24 11:02:57 2025 GMT
Subject: CN=e27848fe60c2ef1d9892af6b534d80d36fe01123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:60:d1:9f:d4:5e:45:1d:2b:52:2e:47:32:c8:
dd:0e:12:3f:fa:9d:49:19:e9:b1:06:cd:5e:9d:07:
e6:3a:1e:58:ba:74:9d:e3:45:f9:12:c2:b6:bd:81:
11:ed:de:d8:22:c6:3f:23:77:6d:5b:66:f4:ff:c5:
92:a2:cc:f3:ad:e2:49:40:40:5a:52:30:bc:d3:49:
84:2a:46:e8:d2:eb:af:9e:09:32:6b:25:de:4d:46:
a0:7a:4e:c3:89:a7:89:34:62:61:c8:43:ad:e5:30:
8c:34:06:a0:a7:47:8f:b0:78:59:98:bc:9f:72:ea:
58:f6:0a:64:b2:8a:12:a5:db:cb:2c:53:dd:1a:88:
e8:e2:ce:38:90:c5:2f:2a:29:10:ca:25:1b:5b:50:
02:00:ed:72:b7:3d:ea:ad:cc:92:84:bc:1a:6b:e9:
5c:ef:15:ba:fa:34:b2:7f:b4:ed:b2:82:06:50:9a:
53:93:22:15:0f:f6:78:6c:8e:7d:a3:91:68:75:d2:
31:38:b7:7b:e1:7b:26:06:dc:e4:2c:29:a3:1b:51:
4b:50:88:0b:a1:88:58:32:75:31:c1:7a:a3:34:80:
9d:2f:fb:34:f2:20:7e:7d:ba:a4:62:03:20:46:74:
6e:c6:39:bc:38:f4:77:fd:b1:9b:d8:33:ed:e5:40:
3a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:78:48:FE:60:C2:EF:1D:98:92:AF:6B:53:4D:80:D3:6F:E0:11:23
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:04:5b:54:c0:00:f4:69:02:71:3e:5a:b2:a8:b1:a2:bb:5a:
32:20:cd:28:ab:38:a3:72:a6:36:5e:4c:ca:1c:b7:f1:b1:a5:
b4:c8:33:c2:00:55:99:68:b4:39:91:04:d2:a0:c2:c4:4c:e5:
80:4a:ed:af:8c:fe:bf:e1:99:8b:ca:83:2a:14:c8:3b:72:a8:
4b:ba:07:d5:79:40:e9:bd:d0:cc:a7:95:9a:9e:85:e1:a3:2f:
12:6f:a8:98:b4:c9:89:d3:20:0d:f5:f8:7f:86:a6:9e:4c:ea:
48:f4:8e:aa:01:f9:c2:44:30:e8:8b:e3:e6:2b:e2:06:78:7f:
02:82:23:d8:6d:cf:98:90:34:8e:3e:f4:a2:00:24:50:ad:2f:
d7:88:4f:9f:9b:77:21:4d:ed:ed:19:52:14:41:de:70:1c:90:
76:2e:e3:5f:e0:96:ee:fb:9d:7a:a4:1c:d6:8f:15:c6:77:bf:
56:ef:93:ec:fa:73:7d:dc:a2:c2:69:b1:90:71:60:7f:e9:bd:
2a:57:ae:a1:47:99:b7:de:4a:e9:c1:89:f7:06:85:06:9f:e5:
fc:2d:77:5d:ed:cb:0b:b9:7f:28:2c:ad:ce:57:1f:0f:e5:fd:
e6:d9:18:9f:dc:11:d4:e2:69:0f:02:18:88:49:f4:65:c3:6c:
7c:21:02:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:34:57 2025 by rpki-client