Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: uUYUwXQwmps8252dEcjof3elZgfrSaOJikcXxOPIsnQ=
Subject key identifier: 36:03:5B:02:06:3F:16:9B:90:F2:43:97:B0:5D:B3:88:6D:D7:47:60
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 01987418EB06141DEF8A936A06298F2E8911
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 0310
Signing time: Mon 04 Aug 2025 08:00:46 +0000
Manifest this update: Mon 04 Aug 2025 08:00:46 +0000
Manifest next update: Tue 05 Aug 2025 08:00:46 +0000
Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: DaTn1KD9mOOHFfzq93weDLT5W0DeEiIqVee0lPQq8wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:18:eb:06:14:1d:ef:8a:93:6a:06:29:8f:2e:89:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Aug 4 08:00:46 2025 GMT
Not After : Aug 5 08:00:46 2025 GMT
Subject: CN=36035b02063f169b90f24397b05db3886dd74760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d6:25:f2:9a:37:3a:96:9c:dc:dd:3b:1d:50:
30:07:11:f6:87:1c:4f:91:6f:56:38:19:0c:79:c7:
13:e0:28:5f:7a:b9:21:1b:7f:cd:d0:d6:10:31:37:
03:91:fd:6a:97:65:bb:c0:6d:67:cf:3a:fe:e8:4f:
aa:30:69:00:22:b4:e7:7d:2a:7d:55:6c:30:31:42:
40:c2:6d:1e:9c:9a:d9:19:88:30:19:b7:73:ac:2c:
6d:a7:57:5b:d2:02:a1:aa:e7:a6:2a:41:90:5d:72:
e6:9a:a2:66:9e:fa:83:83:04:a2:b0:a8:45:91:1f:
eb:47:1b:9d:e6:f8:15:3b:5a:f2:2a:bf:01:c1:f3:
80:b8:17:b3:85:8c:de:3a:9d:b8:a1:de:56:e2:59:
f5:63:d8:14:6e:46:76:00:60:8b:68:7a:92:47:52:
34:2c:03:89:c7:36:5a:da:22:73:3a:18:37:44:fc:
81:3c:e1:7d:b4:52:1c:f9:8b:c8:5c:b0:41:f5:26:
80:49:34:cb:30:2d:9f:bb:c0:39:6d:8d:97:52:96:
77:30:9c:14:e6:9d:89:9f:d8:b7:8e:57:ac:13:1e:
42:6d:0c:0f:51:d8:27:7c:2b:e4:90:2f:7d:65:0c:
68:20:43:74:73:68:6b:52:f5:3d:89:ba:00:90:63:
9f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:03:5B:02:06:3F:16:9B:90:F2:43:97:B0:5D:B3:88:6D:D7:47:60
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c9:bc:60:f6:a7:07:45:fd:9e:16:76:df:77:36:35:a3:b2:
b3:51:15:4b:b1:64:a5:bf:01:52:e9:35:0c:61:f4:4e:cf:95:
db:ef:c6:29:b1:4a:54:8c:87:9d:60:c8:9f:06:3a:e2:eb:7d:
80:3d:68:fb:1e:6c:a1:bb:76:9f:14:98:d2:e7:b7:9c:ac:f8:
18:c5:d8:34:88:f8:5d:39:38:2e:a6:7a:12:aa:c1:3b:00:85:
f4:4b:97:49:09:4e:96:ee:5c:83:53:3c:82:f8:97:9b:a8:3e:
bb:fd:2c:47:eb:00:d2:64:4e:c3:38:7d:77:31:2f:6b:9f:77:
34:d1:27:06:e4:95:fb:6b:ce:97:77:d5:c3:50:d3:a6:eb:c1:
6f:23:a0:6c:8d:5e:cb:e4:d1:6b:a3:ca:6a:f7:71:c1:c4:6a:
2a:72:57:2a:f1:96:6a:a7:45:b3:04:da:bb:8b:2d:b5:91:cb:
8c:bc:49:7d:6a:7a:b1:bb:e3:3f:73:41:86:cb:e3:44:73:3f:
a6:6a:8d:8d:3e:ed:e7:90:27:da:f5:cb:e7:fa:3f:1b:c7:79:
61:67:1a:69:41:66:a6:65:b2:0a:16:9b:b8:27:ce:f2:ac:02:
d3:a2:97:22:8b:4f:c1:83:10:11:da:fc:50:a3:c4:d7:54:e7:
33:23:4a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:18 2025 by rpki-client