Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: 42iADxI1EstTv1kRly5gz66GCRaKxifDL0I1QXuLc78=
Subject key identifier: D8:4E:83:2E:96:E1:C6:22:2A:A8:5B:36:1B:9D:BC:55:0C:9D:CA:2A
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 01976997BBBF61DC9ADA763200D8AC8E4DAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 0286
Signing time: Fri 13 Jun 2025 14:00:41 +0000
Manifest this update: Fri 13 Jun 2025 14:00:41 +0000
Manifest next update: Sat 14 Jun 2025 14:00:41 +0000
Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: /JdHw6vuCCASaZGArRlbBwsh+ZqcGdKr3O+9kU/0dK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:97:bb:bf:61:dc:9a:da:76:32:00:d8:ac:8e:4d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Jun 13 14:00:41 2025 GMT
Not After : Jun 14 14:00:41 2025 GMT
Subject: CN=d84e832e96e1c6222aa85b361b9dbc550c9dca2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9b:53:89:e6:65:33:b3:c8:15:e7:ec:21:0f:
a1:7d:c6:e6:13:84:e7:c8:8a:a6:3f:73:9d:4c:df:
fe:69:2c:f7:64:4f:3b:5d:04:72:60:1b:e3:aa:0f:
99:8f:4c:13:8f:b4:4a:03:33:b9:6d:3a:dd:b6:e0:
aa:1f:12:6b:dc:da:da:e3:7b:01:cd:c9:ca:98:42:
17:2b:ec:9c:ab:4a:5b:4d:28:47:54:ec:a6:23:1a:
16:71:cd:7f:22:c9:d8:03:59:24:3a:62:7b:14:04:
c5:78:f5:fb:b3:a4:f4:d3:48:99:5d:6d:dd:2a:f9:
9a:38:40:5f:1a:97:61:10:c2:f2:b7:23:c3:79:11:
19:bd:ed:c5:af:57:c6:a4:9c:f3:ed:72:48:ef:72:
7e:2e:af:1f:92:cb:4f:52:7b:d1:8b:40:e6:a4:37:
53:14:0b:39:c4:69:a7:89:4d:eb:ab:6a:46:ca:a9:
a5:47:4b:59:fe:bf:c8:94:73:66:af:6b:55:5d:3f:
fc:9e:b8:bc:fa:50:4b:e3:bb:2f:d7:06:46:f5:1d:
c5:16:a0:1c:b2:72:ca:28:e9:0f:75:0f:51:b5:36:
31:9c:98:38:b4:d9:d5:a8:9b:e3:8b:b1:ac:ec:72:
7e:12:08:b5:14:f6:d0:fe:d7:0d:e5:13:77:b1:31:
83:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:4E:83:2E:96:E1:C6:22:2A:A8:5B:36:1B:9D:BC:55:0C:9D:CA:2A
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:fc:c0:8a:fd:fc:08:68:31:fc:98:7b:4b:c5:db:df:9f:b4:
7d:b1:7b:34:6b:19:db:8d:ab:c1:4b:52:1f:3a:68:c2:74:0d:
5c:46:1f:9e:06:c0:7e:dc:2d:7c:a7:ea:2c:2e:9c:7e:45:1a:
72:ab:20:ef:ab:f2:8f:83:92:dd:2f:4c:9b:db:0e:f5:eb:5b:
28:1f:d6:4e:49:e4:30:84:55:7d:3a:9b:28:74:54:d0:02:8c:
20:b0:4a:e0:f5:96:c3:de:83:a0:fc:6d:63:0b:2d:37:94:2f:
aa:f7:54:81:78:f1:c2:a0:47:b7:a9:22:c3:9d:b6:bf:6b:31:
e7:dc:1e:50:f5:df:c4:9f:bf:aa:e9:76:5e:72:1f:68:42:0f:
7c:37:93:cd:49:9e:a0:23:23:ac:10:8a:c5:e5:e6:34:c7:48:
29:7e:47:32:da:a6:21:61:f0:76:4a:0b:e4:7b:52:34:d7:3d:
05:21:c9:22:86:6c:73:8b:6e:39:0d:74:f5:77:9a:a8:9b:dd:
9e:b2:6b:7d:36:2d:c2:eb:ce:64:f6:d5:01:3b:5d:d1:2f:cd:
fd:80:9a:0b:98:0b:22:fe:e8:4c:c9:00:28:57:2f:b6:50:29:
3e:45:0e:b4:59:e1:d3:ba:0e:a5:c6:49:83:f8:fc:3e:bc:d3:
e8:39:99:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpl7u/Ydya2nYyANisjk2uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMDA0NmEyNTM0MWNkMTEwM2I2MGNjZTBiOTllYTM3NTRi
YTVjNDEwHhcNMjUwNjEzMTQwMDQxWhcNMjUwNjE0MTQwMDQxWjAzMTEwLwYDVQQD
EyhkODRlODMyZTk2ZTFjNjIyMmFhODViMzYxYjlkYmM1NTBjOWRjYTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZtTieZlM7PIFefsIQ+hfcbmE4Tn
yIqmP3OdTN/+aSz3ZE87XQRyYBvjqg+Zj0wTj7RKAzO5bTrdtuCqHxJr3Nra43sB
zcnKmEIXK+ycq0pbTShHVOymIxoWcc1/IsnYA1kkOmJ7FATFePX7s6T000iZXW3d
KvmaOEBfGpdhEMLytyPDeREZve3Fr1fGpJzz7XJI73J+Lq8fkstPUnvRi0DmpDdT
FAs5xGmniU3rq2pGyqmlR0tZ/r/IlHNmr2tVXT/8nri8+lBL47sv1wZG9R3FFqAc
snLKKOkPdQ9RtTYxnJg4tNnVqJvji7Gs7HJ+Egi1FPbQ/tcN5RN3sTGDxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNhOgy6W4cYiKqhbNhudvFUMncoqMB8GA1UdIwQY
MBaAFMoARqJTQc0RA7YMzguZ6jdUulxBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAt
NWU3NjNkM2E0ZDFkLzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAtNWU3NjNkM2E0ZDFk
LzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApvzAiv38
CGgx/Jh7S8Xb35+0fbF7NGsZ242rwUtSHzpownQNXEYfngbAftwtfKfqLC6cfkUa
cqsg76vyj4OS3S9Mm9sO9etbKB/WTknkMIRVfTqbKHRU0AKMILBK4PWWw96DoPxt
YwstN5QvqvdUgXjxwqBHt6kiw522v2sx59weUPXfxJ+/qul2XnIfaEIPfDeTzUme
oCMjrBCKxeXmNMdIKX5HMtqmIWHwdkoL5HtSNNc9BSHJIoZsc4tuOQ109XeaqJvd
nrJrfTYtwuvOZPbVATtd0S/N/YCaC5gLIv7oTMkAKFcvtlApPkUOtFnh07oOpcZJ
g/j8PrzT6DmZcA==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:18:50 2025 by rpki-client