Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: KSEBfmYXgbT4v7ebd6OirndRvxWR8AkHdIb1rALAvZE=
Subject key identifier: 28:0E:E6:E6:8B:CC:1A:0F:4E:7E:FB:89:67:AA:32:9F:71:C7:D0:9E
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 0198D515AE4927ED9AA2D788B67ABDE7F9D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0C77
Signing time: Sat 23 Aug 2025 04:00:24 +0000
Manifest this update: Sat 23 Aug 2025 04:00:24 +0000
Manifest next update: Sun 24 Aug 2025 04:00:24 +0000
Files and hashes: 1: gZMQxr61w0P4Si-B6lBsVj_b8vM.roa (hash: 3Vc/pW8ygtdQIimX5iqQ/MSW6PLhJ2nbGCIzRJsZshI=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: 94Ol2xaqLr1NgW3nFzb83x/KvnqPGbqwKVENFhqKLRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:ae:49:27:ed:9a:a2:d7:88:b6:7a:bd:e7:f9:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Aug 23 04:00:24 2025 GMT
Not After : Aug 24 04:00:24 2025 GMT
Subject: CN=280ee6e68bcc1a0f4e7efb8967aa329f71c7d09e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3e:c4:fe:69:83:63:d5:32:5e:cd:2e:3d:de:
12:31:87:6c:ab:02:b8:4a:52:18:c2:d9:85:96:45:
86:78:67:78:8b:b7:78:01:9a:f9:18:d1:26:71:6f:
fd:78:ae:5d:ab:43:2b:98:f1:73:f7:7e:57:d1:be:
82:2e:ab:7c:12:7a:3e:59:31:39:6a:4d:55:fc:50:
15:41:7f:b9:0d:ad:82:2a:3e:95:79:70:d7:cd:a8:
c6:7e:20:21:cc:14:1d:91:ba:bb:ea:6d:ed:2c:c4:
bb:8c:11:9b:42:0a:59:03:1e:57:37:00:13:de:78:
37:97:42:4b:30:58:99:4d:c2:b4:4e:b7:55:ae:5f:
63:44:ea:4e:de:87:f2:7c:fe:b2:f5:d4:5f:f3:b0:
14:c9:36:9a:ed:25:a2:02:81:82:9f:fb:90:fd:48:
5b:de:15:d8:1e:e6:40:29:6f:c1:47:9e:0f:6f:9f:
ff:6e:63:aa:33:93:37:1a:f5:b6:40:89:df:10:6d:
d6:6e:b7:fd:4f:9a:58:1b:d8:63:0e:98:e5:73:f9:
40:a6:6e:a6:16:b1:79:82:48:07:b8:3e:d9:c4:4e:
f6:e9:25:4f:72:f8:fe:20:30:ca:42:b3:61:27:d1:
3d:b9:53:e5:7b:a3:27:70:74:31:62:80:15:e8:c8:
78:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0E:E6:E6:8B:CC:1A:0F:4E:7E:FB:89:67:AA:32:9F:71:C7:D0:9E
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:62:01:0f:85:79:02:84:62:51:4b:85:30:7a:d3:bb:a2:b6:
ec:b0:33:9e:d7:dc:e2:bb:bd:a2:cd:a5:8c:ac:96:4f:25:86:
a4:f6:98:63:40:80:a1:7a:9c:05:77:2f:af:8a:8e:07:1b:da:
80:70:dc:07:04:06:a7:62:42:0c:8e:88:10:fa:a2:61:2a:f0:
de:c1:04:ce:76:26:21:5c:5f:80:7a:21:81:05:95:c9:6a:9e:
5c:3f:cf:0f:db:78:44:ac:6f:43:e0:2c:78:fc:63:41:09:96:
4d:6c:c2:62:b2:61:76:36:43:dc:b6:75:ea:61:d0:8e:86:2a:
d3:ca:f2:26:93:20:cf:cf:1b:9c:de:7a:01:04:8c:1a:a9:cc:
ad:89:3b:be:28:af:97:02:a9:d8:26:c3:2e:d9:b2:ad:81:d8:
59:8a:e6:61:7d:08:b8:19:e2:f3:1a:f8:66:3a:e8:b9:05:d5:
b0:d2:14:7a:ed:27:b2:58:fd:8a:ab:fe:a7:df:0c:00:02:eb:
52:3b:55:e3:36:34:6a:30:16:19:8d:2d:af:d4:18:58:69:59:
72:92:6e:39:29:ad:27:e4:a7:54:9b:a4:50:b3:04:7c:a7:a9:
c7:56:d3:9a:2c:ac:16:8b:34:9a:91:a6:6e:bd:31:0d:89:63:
66:e2:ed:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:10:37 2025 by rpki-client