Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
File: ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft (raw, json)
Hash identifier: nl9h4mzj1lfIIsi9fcaAm5zvcvjwyU7ryKemQbbwuJc=
Subject key identifier: AB:77:88:3C:1B:C1:AB:63:B1:BE:3B:22:95:B7:9D:4C:5F:62:C7:DA
Authority key identifier: CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
Certificate issuer: /CN=ca09149f34784f5b202c56761b01d35dd02569cd
Certificate serial: 01984A41667487D3629F91721972C9111B2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
Manifest number: 03A4
Signing time: Sun 27 Jul 2025 05:00:56 +0000
Manifest this update: Sun 27 Jul 2025 05:00:56 +0000
Manifest next update: Mon 28 Jul 2025 05:00:56 +0000
Files and hashes: 1: 9hSS_TvQhCvC8fhsSyJYV-rq3kg.roa (hash: IKnNzHp7XVRMYKLUBlGGbOEdrSNJK7VVnYm2JR8nfXc=)
2: ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl (hash: +0Orn/t1TLDqXMZujIy6uaERW2wYy59O27kAGd9dZTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:66:74:87:d3:62:9f:91:72:19:72:c9:11:1b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca09149f34784f5b202c56761b01d35dd02569cd
Validity
Not Before: Jul 27 05:00:56 2025 GMT
Not After : Jul 28 05:00:56 2025 GMT
Subject: CN=ab77883c1bc1ab63b1be3b2295b79d4c5f62c7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:82:22:bb:fb:4a:ff:d1:35:da:af:68:bf:86:
5e:56:d1:32:3d:ea:0e:1f:1f:0f:38:34:28:e1:07:
f9:cf:bd:93:76:e3:2d:bb:0e:8c:6d:05:19:e9:13:
a3:c1:ce:e0:a6:f2:04:67:67:ac:8e:59:f7:33:58:
b4:f4:28:a7:93:74:96:04:6d:29:bd:c6:c5:64:57:
0f:03:ff:73:02:4d:39:45:35:6f:07:f7:08:84:84:
6a:a5:5d:c3:f1:41:35:15:83:fb:bc:ed:a7:94:5d:
da:8b:18:69:6c:9d:97:3b:a8:03:25:bc:bf:4a:95:
c7:0a:02:e9:a0:51:2f:d5:23:c7:43:ca:c4:48:47:
3a:2b:7f:5a:c4:e7:48:62:f2:64:a3:40:3b:a3:1f:
14:f3:0e:a1:a0:cc:e0:91:e3:a2:6a:71:0a:04:eb:
9c:e2:72:09:cc:3e:d0:4a:1c:22:ee:a7:59:8c:d3:
0a:b5:df:9b:f7:f1:d3:35:8a:52:cc:df:f7:26:8c:
a8:c0:e9:11:bd:00:0d:60:ac:86:a0:df:bb:fa:00:
87:c0:a4:84:0e:35:c0:40:91:20:eb:c4:b7:f4:cd:
2a:1c:20:4d:68:5f:5f:c7:f8:e6:b0:bb:72:9e:ef:
ff:53:c6:6b:af:13:eb:08:ee:02:1e:17:d6:8e:af:
d9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:77:88:3C:1B:C1:AB:63:B1:BE:3B:22:95:B7:9D:4C:5F:62:C7:DA
X509v3 Authority Key Identifier:
keyid:CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:4c:71:22:68:00:e2:fe:41:d6:b8:48:b2:cf:e7:c2:1b:b3:
b2:fe:70:c0:59:e2:1b:ca:69:da:e3:c4:bc:7d:41:4b:e5:7a:
ff:c7:4a:da:e7:8a:66:0b:be:0e:93:b6:34:33:a0:fe:ad:8f:
21:54:9d:6b:ab:7c:72:71:5a:f9:b8:32:16:52:a3:8e:32:f9:
f8:c0:d1:f5:c4:ef:ce:83:05:2a:3f:c6:fd:a5:8b:9f:b0:61:
03:64:b6:da:2d:c7:73:b9:60:64:49:99:3f:fe:58:08:b7:f5:
f8:cc:5b:b1:2a:01:3f:c6:15:b8:a1:10:d3:c1:23:10:96:8e:
e2:4b:4e:c1:5d:d7:a1:bf:70:fc:19:83:1b:94:52:d7:1d:49:
37:2e:cc:85:e6:03:8c:9b:35:71:67:00:bd:f5:26:67:30:ae:
b5:0d:7c:51:df:98:0d:33:32:dd:6d:4a:02:11:3a:f1:42:0a:
6e:62:e9:ac:2a:60:58:89:93:03:db:d3:8e:07:fa:a6:0a:f0:
45:2f:dc:fb:39:01:fd:cb:70:5f:c1:1e:64:0b:ea:3f:60:56:
2d:d5:2c:45:6a:e1:70:ac:32:49:fc:0b:5f:6e:a7:0a:f7:32:
69:38:3f:50:9c:8c:bc:ce:c3:bb:12:7a:cf:23:83:41:11:9e:
9b:15:97:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 08:23:51 2025 by rpki-client