Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: ju4cqLzJsYs8aWAG8Lbe0ArhD0G4zttxcbmDnVt5Zhc=
Subject key identifier: 5A:85:A2:FD:B6:FC:EC:93:77:C5:BA:73:AE:48:FA:EB:CF:A0:00:33
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 01974B1FA3498E77F3226A2261F9E7C03E98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0BAB
Signing time: Sat 07 Jun 2025 16:00:54 +0000
Manifest this update: Sat 07 Jun 2025 16:00:54 +0000
Manifest next update: Sun 08 Jun 2025 16:00:54 +0000
Files and hashes: 1: gZMQxr61w0P4Si-B6lBsVj_b8vM.roa (hash: 3Vc/pW8ygtdQIimX5iqQ/MSW6PLhJ2nbGCIzRJsZshI=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: o7DrRVv3oYgN9i9aL2dOAkMS2X9NHREAg4MTCYMNxtY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:a3:49:8e:77:f3:22:6a:22:61:f9:e7:c0:3e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Jun 7 16:00:54 2025 GMT
Not After : Jun 8 16:00:54 2025 GMT
Subject: CN=5a85a2fdb6fcec9377c5ba73ae48faebcfa00033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:58:06:55:b8:c3:4c:d8:be:f1:80:79:bd:63:
c6:a2:77:27:2f:56:f7:ee:ea:46:e9:ef:f4:d3:fc:
32:5b:62:51:2f:63:ae:a1:a0:0f:04:3b:aa:c8:bf:
8f:58:85:71:2d:cb:eb:fd:aa:0e:27:a1:20:3c:45:
75:e9:e8:ee:c3:35:42:bc:5b:df:6a:f4:f7:bb:a1:
e1:9a:a8:dd:af:23:c3:54:42:c6:55:24:f6:18:c7:
50:59:aa:8c:a8:36:3e:23:38:9b:89:92:f5:51:fc:
36:5f:70:d0:a6:9f:36:54:d0:7c:99:42:67:c9:d8:
34:ca:ce:46:60:d6:3d:c1:62:b8:76:81:43:91:c2:
18:df:65:5f:27:de:f2:01:e7:1e:65:b2:9e:f5:b9:
7d:73:84:4b:c9:78:9e:63:47:77:f1:77:c0:5d:f8:
9d:97:8c:f2:3b:6c:ac:cc:b6:fe:70:7a:42:66:4c:
55:ed:7d:1b:a9:67:d1:4d:23:20:36:36:aa:11:0e:
e1:ba:67:15:0c:a8:95:d4:3e:9c:3f:6e:3a:01:c2:
56:4e:0a:3b:6f:18:e3:13:86:85:38:f5:58:d5:bb:
3c:37:2f:a4:53:2e:40:72:fa:54:aa:16:7c:b6:9b:
5c:4c:c5:f2:51:bb:23:ed:c3:dc:17:cf:5e:f5:13:
f1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:85:A2:FD:B6:FC:EC:93:77:C5:BA:73:AE:48:FA:EB:CF:A0:00:33
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:97:8e:02:64:ac:96:c4:fe:90:ee:76:c7:0f:21:6a:8e:c2:
3c:7b:4a:a5:05:ba:59:4c:12:2a:c6:a3:98:c5:ab:9f:10:10:
13:11:36:d2:2e:39:1e:00:88:fa:49:a3:0e:04:09:6f:c0:09:
b2:6b:19:0b:3c:13:16:c9:1a:cc:20:e7:0b:db:b5:e4:10:6a:
f6:b5:11:5b:5c:df:ae:c8:ff:df:51:f2:4d:97:81:da:df:36:
d3:82:cc:cc:22:9f:8b:fe:09:bd:37:c4:0a:61:51:ef:b3:30:
8b:c6:fb:c9:07:45:3c:99:87:13:18:30:f4:c7:ad:2f:54:12:
14:44:49:49:f1:f5:41:7a:6e:30:1f:a0:29:a4:2c:af:a1:a6:
0a:56:2a:29:97:89:4f:a2:ff:04:c8:ad:70:63:cf:70:14:9d:
2d:4f:52:1a:52:95:62:bd:68:4e:b3:6c:3c:b9:f5:f8:de:95:
4f:ea:6e:8b:40:4e:31:18:5a:a7:24:95:76:bd:51:ee:ad:02:
e3:fe:98:16:c9:ab:66:ca:32:3f:f1:f0:18:f4:e6:08:7f:1e:
cc:67:55:7e:53:a5:2f:f6:1f:91:66:42:04:fb:41:8d:af:65:
20:c5:eb:47:0f:3c:44:d3:e1:bd:0c:78:db:bb:6c:87:c6:bf:
80:db:a2:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:57:23 2025 by rpki-client