Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: n8voJXpbL0G6nh/J8ck86QXv9fhNeWudyiWwiI0w8us=
Subject key identifier: CD:2D:1B:83:EC:77:A0:4A:A5:A4:D5:0D:D4:69:96:FE:8E:65:6B:63
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 0199FFFE9F8CC79B30C1C9434D73C295C931
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 03DD
Signing time: Mon 20 Oct 2025 05:01:41 +0000
Manifest this update: Mon 20 Oct 2025 05:01:41 +0000
Manifest next update: Tue 21 Oct 2025 05:01:41 +0000
Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: L9pEqDnYx5qZAtYGJEueQy0UamPbGF3SK4QqPRmuQaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:9f:8c:c7:9b:30:c1:c9:43:4d:73:c2:95:c9:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Oct 20 05:01:41 2025 GMT
Not After : Oct 21 05:01:41 2025 GMT
Subject: CN=cd2d1b83ec77a04aa5a4d50dd46996fe8e656b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1d:9c:6d:ce:f8:03:78:42:6d:40:97:7c:50:
85:b8:58:6b:fd:e9:c6:36:e1:47:5d:dd:35:80:81:
33:f7:80:48:5b:8a:71:06:37:06:16:55:1f:18:ef:
65:e8:84:b2:1e:6d:69:5e:7c:5f:1e:a2:98:4b:48:
fe:9c:3a:38:fa:44:ad:f0:76:32:fd:5f:b0:6f:28:
8d:21:b3:56:57:99:9d:ca:38:72:6d:39:ae:98:79:
e6:b7:5a:0a:8b:a4:27:d9:77:30:fa:ba:50:cb:2a:
1d:0c:18:5a:77:e2:20:7e:68:2b:24:43:59:ae:25:
f9:35:f6:c2:15:e9:32:ad:2c:a3:1f:6d:13:ff:7c:
25:03:fd:07:ce:f4:25:bd:c6:c9:a2:8c:9e:14:35:
ee:67:f9:ce:60:3a:e3:b7:96:68:8d:e4:27:39:25:
73:7e:bc:af:1c:17:6f:b5:0c:ed:19:10:2d:bf:fd:
7c:1b:f0:f5:61:e5:c4:9f:64:fe:04:ae:b7:2f:6d:
29:a0:14:0b:ec:33:8f:36:3b:55:b8:4e:f5:9b:5c:
e0:4f:d1:75:15:90:9e:96:f1:27:76:b5:cb:5e:67:
7a:c0:ff:2f:d4:2f:b0:c7:db:e4:96:b1:ff:c5:8a:
64:76:b8:69:a3:57:af:18:2f:66:08:2b:60:4e:d6:
0a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2D:1B:83:EC:77:A0:4A:A5:A4:D5:0D:D4:69:96:FE:8E:65:6B:63
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3e:53:c4:bd:b7:f3:51:cd:3c:37:5e:57:eb:c1:8d:56:13:
da:05:2b:1b:ea:ea:f7:b0:8f:f7:f8:ef:48:70:84:84:a3:9e:
e0:10:b1:79:46:70:c0:38:92:ac:bb:e1:ff:e4:e6:53:fa:83:
a3:3b:6f:15:81:10:61:10:f1:08:b0:1b:40:eb:3b:01:d1:b2:
96:f1:69:63:8f:3e:8e:e7:1c:61:d0:74:1c:c7:af:2e:ea:40:
51:5d:59:13:c7:44:a9:f7:29:98:de:5d:d2:a6:ea:d3:43:9c:
a1:25:aa:3b:63:a9:35:3c:42:ff:f3:ce:42:85:ac:9c:ae:d5:
a0:d5:2e:c1:21:4f:b9:05:b7:a7:67:7d:26:ec:5e:ca:4b:2c:
6e:64:17:fd:85:ab:46:59:51:4a:e2:03:2d:43:ec:e7:a7:38:
65:17:c2:ec:4a:36:68:96:06:a6:06:c4:fa:c1:44:0e:9f:41:
95:69:c6:a8:b8:44:d5:3d:22:c3:6b:90:57:30:fc:e8:0c:68:
73:83:1d:7a:d3:91:5d:0c:a1:eb:60:4f:bd:33:85:7c:29:36:
41:f3:52:20:3a:7a:1d:66:fe:ff:dc:3c:4d:94:c8:e8:f3:c5:
1f:ca:30:63:33:1e:69:2a:e1:4b:90:db:6e:ae:22:eb:b3:96:
d0:ad:8b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 10:06:33 2025 by rpki-client