Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: tufrW3/24feexurmhj7UQG1y0Q5+Qw0pp/+4hzDw5HE=
Subject key identifier: A3:6D:CB:87:43:46:66:AF:FF:AC:CD:69:A8:9D:4A:AE:E3:28:43:9B
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 0196B032B5B64EEDD1F1090A44766A0666CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 0226
Signing time: Thu 08 May 2025 14:00:35 +0000
Manifest this update: Thu 08 May 2025 14:00:35 +0000
Manifest next update: Fri 09 May 2025 14:00:35 +0000
Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: wJ6j55kjXPht5UB8gXj+rH03W/CFuK5jUA+3YKh19dI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 14:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:32:b5:b6:4e:ed:d1:f1:09:0a:44:76:6a:06:66:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: May 8 14:00:35 2025 GMT
Not After : May 9 14:00:35 2025 GMT
Subject: CN=a36dcb87434666afffaccd69a89d4aaee328439b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b4:a8:e4:ee:96:99:57:2c:0e:82:67:4a:11:
ef:b5:bb:61:ec:66:c5:d4:35:ec:43:f1:b9:cd:b4:
24:60:1d:d1:3f:f6:2c:2d:9c:3e:75:a8:da:e2:13:
ee:55:9c:84:7a:cb:74:41:17:5c:48:01:1c:0f:a2:
76:d1:48:37:67:fb:fa:e1:30:46:85:8d:2b:1b:42:
35:31:2e:ff:cc:84:9d:3b:1d:bb:d1:78:7b:52:b8:
74:18:23:24:d2:ef:9a:d6:e6:7f:1e:6f:01:24:9e:
1e:0e:6a:d2:5c:68:29:90:87:31:de:dc:70:4d:29:
af:4c:9e:1f:e1:61:1c:b7:6c:4d:f8:61:fe:4f:d3:
ca:90:67:be:56:47:02:69:c4:d2:a0:36:45:86:1e:
f5:d3:6f:9f:ab:15:83:a8:3f:1a:29:4b:c8:ee:2b:
71:91:f8:b7:dc:eb:05:e1:a1:aa:af:8d:0a:5d:e0:
af:8f:a9:d0:6d:a8:af:cc:65:41:e9:db:62:10:58:
24:96:c9:81:9c:03:28:8c:01:59:63:e6:3c:9d:be:
79:c9:35:66:fc:aa:66:1e:de:50:fe:aa:89:bf:77:
20:f8:a3:33:5a:2f:e9:2a:cd:cd:7e:e9:8a:79:7a:
4f:14:66:83:ce:40:7a:55:48:dd:29:ea:d1:75:62:
e7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6D:CB:87:43:46:66:AF:FF:AC:CD:69:A8:9D:4A:AE:E3:28:43:9B
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:30:7b:70:0b:9b:37:65:ed:3c:26:f0:f5:db:29:37:2d:90:
87:62:05:2f:84:7b:2b:bd:a6:4e:79:c0:ba:73:7d:a4:76:eb:
e8:0c:7b:4f:8d:a4:9c:0d:28:1f:49:23:ed:a1:ea:bd:90:bf:
ed:26:78:59:8e:61:1a:92:ec:6e:6b:55:3b:10:f8:07:d1:7d:
44:ca:9c:68:fd:ca:8c:ff:dd:69:35:e3:1f:63:c7:1b:85:c5:
06:a2:c3:c9:a8:ce:b8:a3:a2:72:df:bd:78:67:71:99:95:db:
3d:26:82:66:96:14:43:cc:5c:f7:c5:ff:7b:bf:df:a2:aa:68:
af:91:65:57:0c:fd:b7:9e:16:6d:88:ed:3a:fd:0b:fe:ee:01:
6c:d6:ce:42:74:51:79:98:bf:22:d9:be:ea:65:e5:33:fd:bc:
16:8f:3a:13:ee:a8:e0:15:6c:22:25:cf:c2:e0:44:ac:56:ba:
0e:11:6c:09:1e:d8:83:0d:72:06:1b:12:f3:cf:22:f2:47:34:
c3:83:5f:0d:ff:fd:b0:30:27:59:b9:0b:15:37:65:e5:96:6b:
ce:81:b1:f1:86:bc:aa:04:3a:38:fb:a8:49:89:52:f1:2e:e3:
2a:a9:17:eb:43:13:1a:1d:48:2a:4a:cc:6e:b0:b1:bc:8e:af:
95:e6:ef:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 18:33:11 2025 by rpki-client