Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: 4MIhlmHNDwxT4S1l6XlpZTauMYo/3KkiWDUKCHYDjoE=
Subject key identifier: 88:73:1F:90:64:AF:C2:16:50:14:DE:1F:75:47:72:F0:FC:8E:D1:68
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 019872CFDD35B717FE6A1CBA83CC06D75B9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 043E
Signing time: Mon 04 Aug 2025 02:01:21 +0000
Manifest this update: Mon 04 Aug 2025 02:01:21 +0000
Manifest next update: Tue 05 Aug 2025 02:01:21 +0000
Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: lg+YxydGFyS7Sxi9sDyTpO9MqzGz/jzi8f1Hq33sCVw=)
3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=)
4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:dd:35:b7:17:fe:6a:1c:ba:83:cc:06:d7:5b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Aug 4 02:01:21 2025 GMT
Not After : Aug 5 02:01:21 2025 GMT
Subject: CN=88731f9064afc2165014de1f754772f0fc8ed168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:da:52:6f:2e:4f:e1:73:a0:00:df:52:cf:6c:
97:8b:12:0c:e3:20:06:25:54:11:22:58:4d:d9:46:
5d:1a:11:6b:bc:a9:ce:2c:70:16:df:d5:91:40:f8:
f3:6a:de:89:62:5e:97:b4:01:b3:93:1d:fd:0b:49:
f2:0e:e1:3f:bf:ee:fc:71:15:35:56:da:ce:d9:3e:
df:54:a2:1e:32:de:ef:cb:01:d2:f8:c2:3e:70:82:
a6:68:9b:37:13:96:90:13:de:b0:27:00:15:25:cd:
6a:d1:79:68:b7:9a:b1:17:31:6b:69:7f:42:30:2d:
33:34:76:69:e2:d4:44:7f:4f:b4:69:fe:7a:b6:c9:
57:b5:c8:ef:43:5a:94:96:8f:a4:75:9e:0e:c7:85:
91:95:11:1a:02:bd:24:72:8a:4a:c3:b9:13:ae:c9:
fd:2c:9f:64:68:1a:87:6b:f9:ee:8c:cf:d1:3e:f3:
d2:e5:40:b4:22:c6:d0:42:45:20:f2:28:34:0f:a6:
21:2e:c4:8a:93:e9:67:58:b2:22:5f:69:c6:39:0d:
12:7c:fd:f8:6f:30:53:75:b2:68:81:8a:d1:88:1a:
a2:68:73:69:99:f0:d9:9e:85:fd:22:70:c1:e9:ac:
c2:62:f7:a9:07:6d:d4:a0:f8:bd:6e:8c:7c:91:f9:
93:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:73:1F:90:64:AF:C2:16:50:14:DE:1F:75:47:72:F0:FC:8E:D1:68
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:ae:c4:15:c1:6f:7d:96:01:18:40:54:14:9e:07:61:31:25:
53:d4:be:4b:5f:b3:19:9b:85:ef:ca:5a:74:c3:30:45:5d:51:
79:8c:07:36:51:1b:d0:17:39:b4:fb:7d:e3:52:e5:44:b7:cf:
80:3a:1f:7d:a3:99:ed:af:ce:09:f4:8b:ae:12:ed:9f:bc:fa:
69:f6:3a:27:a6:c1:48:a1:f6:c6:7b:18:34:bd:18:39:5c:8e:
1d:0b:66:54:59:52:d4:3f:05:c9:98:45:44:40:96:8b:45:84:
0b:33:20:f4:b2:63:2b:a7:f7:10:11:31:d0:93:1a:e2:e6:76:
0c:68:07:be:f5:3a:3b:e2:1d:40:5e:cf:38:81:03:25:cd:a6:
ab:5c:06:ce:69:46:e6:8f:b9:5c:6f:85:d9:15:0a:b6:ab:1f:
b3:d3:c2:d4:de:36:5f:cf:0c:01:10:60:cf:00:0b:38:fb:f4:
c6:9f:dc:e7:6a:96:60:50:fa:a4:be:9c:b6:e2:3c:cb:38:53:
e3:50:29:e3:b9:1d:b8:69:bb:45:21:61:40:7f:16:c7:5e:1b:
d1:24:62:84:a1:ea:d3:36:ac:d6:38:0e:94:19:04:3a:df:88:
4a:1a:5e:26:39:a1:71:c0:56:76:02:f9:ee:a0:b9:56:39:be:
ac:29:fe:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:16:05 2025 by rpki-client