Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: 5S1PYPRQOpaNvirqw2mB3jnSm28v7LWcx7LmK5V9xXs=
Subject key identifier: 44:B5:B1:67:E2:95:23:60:B1:D5:77:21:E1:A0:83:7E:BB:2D:C0:BE
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 0197B74562E9330E15014FFCE39C2DCD75A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0BE3
Signing time: Sat 28 Jun 2025 16:01:07 +0000
Manifest this update: Sat 28 Jun 2025 16:01:07 +0000
Manifest next update: Sun 29 Jun 2025 16:01:07 +0000
Files and hashes: 1: gZMQxr61w0P4Si-B6lBsVj_b8vM.roa (hash: 3Vc/pW8ygtdQIimX5iqQ/MSW6PLhJ2nbGCIzRJsZshI=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: cgCAV7koaF1osmfIZRwk7ECNY/zxVoFy75BYb+9Gzj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 16:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:62:e9:33:0e:15:01:4f:fc:e3:9c:2d:cd:75:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Jun 28 16:01:07 2025 GMT
Not After : Jun 29 16:01:07 2025 GMT
Subject: CN=44b5b167e2952360b1d57721e1a0837ebb2dc0be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:05:c0:dd:4b:a2:e8:5d:c6:97:d0:d7:fe:d4:
71:1b:06:a1:53:e6:9d:25:ec:d3:f0:b0:b3:7d:6d:
aa:4c:b3:4d:be:45:57:66:d0:92:c9:09:85:3a:0c:
cb:fa:44:36:b8:e4:0f:3d:0a:3c:f3:8b:8d:ab:a7:
6e:7b:16:02:cf:fd:73:5c:f5:60:16:77:38:30:df:
d3:f3:3f:33:fb:24:b3:80:d5:57:66:13:91:a8:d5:
7a:26:cf:b1:48:87:57:43:b0:6a:86:a2:78:bf:9e:
5f:81:4d:45:5f:15:63:f2:d0:4e:bc:78:3d:25:8b:
85:99:55:9b:eb:fb:6c:b2:79:d2:b8:2f:38:b1:bc:
3b:c5:e1:18:7d:74:2f:93:0d:33:3e:3e:72:6d:58:
bb:9a:70:e1:4a:f5:61:ac:d5:02:a0:ac:46:33:01:
70:9d:21:eb:51:d1:76:97:3d:e6:aa:c9:08:cd:a9:
29:d3:11:b3:2a:ac:9d:82:79:45:e8:d5:f4:35:2c:
a4:21:bf:0e:26:11:1c:d4:0c:bf:e8:4b:41:d1:95:
d1:d0:ef:b1:73:a6:88:3b:2e:d8:13:81:e3:1a:eb:
85:65:0b:1c:06:c4:f1:03:0e:cc:b2:34:42:cd:c0:
0c:55:9e:5b:07:8b:1e:b5:15:02:cd:8a:c4:c8:a5:
15:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B5:B1:67:E2:95:23:60:B1:D5:77:21:E1:A0:83:7E:BB:2D:C0:BE
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:bd:b2:70:db:1a:ba:b0:be:76:3c:16:a1:3d:5d:90:c5:9a:
2d:22:a6:4f:72:e9:01:5f:67:c9:d1:8b:2d:56:42:66:18:7b:
08:11:4a:9e:78:eb:f8:c3:68:f7:8e:a8:c2:a4:96:78:af:89:
fc:87:dc:21:dd:94:74:a3:07:ac:3e:92:98:14:f7:3c:a4:3d:
92:13:d1:53:47:bd:83:0e:d4:c3:9b:32:1c:3f:0f:e6:37:53:
3e:92:9f:cd:b0:2f:bb:44:75:c7:c4:84:99:5c:aa:7b:44:ba:
34:c6:2e:88:80:fd:77:6a:72:9a:bd:66:db:cd:84:7a:e0:a8:
41:02:d8:a8:3e:f8:b4:87:c4:de:3f:4a:df:f5:ca:b9:75:e6:
70:34:2b:59:17:4e:bb:cd:1c:cc:ee:ef:b7:f2:c6:f6:6e:71:
8a:02:03:c5:65:6c:25:03:26:4d:a2:69:08:ec:8f:48:91:89:
85:6e:2c:7d:00:aa:4b:c9:1c:11:41:67:1a:63:a3:af:11:f2:
69:67:4c:a4:90:2d:c6:18:9a:4e:fb:ee:0c:31:12:d0:8c:5a:
e3:16:d2:dd:58:04:d0:a2:02:90:1c:40:c9:b4:5f:4a:72:0f:
00:86:f4:a1:8f:97:c5:79:33:9d:01:55:c9:1b:db:ac:9a:ee:
db:5f:69:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:42:54 2025 by rpki-client