Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: Pbau4E95BKz4jIvi2L5JO9UdTLgVXBM8K6Vz0Y9cYZc=
Subject key identifier: 65:D3:5F:B9:EF:67:86:CC:A0:F1:5C:E7:48:79:5D:45:42:2C:E7:87
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 0198499C125C8F055D82253D52F4F0930A93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 02FA
Signing time: Sun 27 Jul 2025 02:00:21 +0000
Manifest this update: Sun 27 Jul 2025 02:00:21 +0000
Manifest next update: Mon 28 Jul 2025 02:00:21 +0000
Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: puF6GunUlWW7EM7e4u2OyT+0N+HWzUYSnumlojZTn/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:9c:12:5c:8f:05:5d:82:25:3d:52:f4:f0:93:0a:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Jul 27 02:00:21 2025 GMT
Not After : Jul 28 02:00:21 2025 GMT
Subject: CN=65d35fb9ef6786cca0f15ce748795d45422ce787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:04:8b:1a:93:72:8d:f0:56:ba:f8:49:13:ae:
9c:8b:a8:57:ac:78:df:5e:4a:f5:55:a5:8f:38:0d:
f4:b2:ef:40:e0:d8:bd:9e:b3:94:10:20:fd:b8:ec:
fa:e2:44:d4:dd:95:a8:20:76:1f:2d:ed:ad:c9:61:
86:ff:d3:ca:42:70:be:5c:f4:04:ba:fc:37:2f:ba:
58:86:88:80:df:2f:a6:bb:40:0e:8c:c8:7c:6c:11:
a5:46:55:0b:57:0b:a7:67:42:50:69:fc:27:ce:bf:
3b:e6:e7:ac:f6:b4:7a:bf:cb:6c:ff:f3:36:b3:8e:
89:84:b5:5b:d0:37:32:5e:95:0e:ab:df:89:91:a2:
17:6d:54:a5:68:42:e8:77:6a:c4:1a:00:1b:1f:a5:
5a:59:f7:dc:51:20:ca:47:75:ac:cd:a9:11:f2:ae:
f1:43:0d:98:0b:65:5c:6d:32:c9:08:d7:d2:43:57:
e8:65:e1:70:14:61:a2:15:d3:69:16:6b:07:e4:2d:
0e:2b:29:41:16:30:67:72:2d:99:d7:4a:c6:f6:07:
5c:a7:00:cf:98:96:cc:c3:8e:39:d1:3c:ed:47:70:
2c:16:b0:7d:4d:f6:eb:1b:1f:4e:45:88:44:c2:80:
32:cf:7b:87:03:78:b8:e6:0d:b4:89:43:29:d6:d2:
9c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D3:5F:B9:EF:67:86:CC:A0:F1:5C:E7:48:79:5D:45:42:2C:E7:87
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:d9:66:eb:9c:d3:fc:fd:8f:ef:f4:42:a4:e7:54:e1:6c:87:
5e:78:1a:8a:5f:e4:83:92:6f:f0:be:f7:b6:68:91:54:af:dc:
bb:5a:67:44:ed:9b:e4:e2:52:91:88:1a:b2:06:fa:f1:37:c6:
31:a4:84:9a:f1:ad:27:aa:a3:7d:2b:da:ef:ad:0c:b7:ab:fe:
5c:07:6e:2b:f4:17:ba:b5:53:c6:c9:e1:06:5b:ed:aa:0b:a2:
e5:cb:8e:35:a7:6f:e6:79:e7:c4:ac:f6:28:46:20:b9:aa:4a:
b5:fb:a4:97:30:48:06:61:9d:51:52:72:49:45:e7:f9:c0:8c:
df:f6:78:c5:cb:d7:c2:ac:72:30:b9:60:1d:f4:c5:e3:3b:4e:
8b:fe:8b:e4:54:59:5d:88:54:04:b2:40:de:d7:a9:5d:8a:59:
50:41:54:56:61:fd:9a:9d:b0:5d:a3:4a:43:08:11:f6:a6:da:
db:c5:b7:c4:51:b2:75:ba:0e:f2:c2:2b:68:75:b3:da:68:e7:
f8:9d:e6:9f:af:61:aa:a3:11:3d:e0:86:f1:7e:16:1a:2e:fb:
70:74:8b:6b:c0:5b:93:55:e1:61:20:d5:c5:7c:75:a7:11:e0:
77:80:b7:a6:c4:ee:39:b9:09:0e:b2:d6:6c:fd:b0:a2:ec:df:
f2:e0:f1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:50:12 2025 by rpki-client