
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier: bPsK+OTutcJFumsRrrk0sakVS8jwbNVxaO3MXki2BPo=
Subject key identifier: 89:FC:6A:D4:AE:9D:1D:11:24:EC:6C:73:FB:84:80:16:0B:13:73:40
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial: 019758DB054F43FFF1FAAE203FEF85D3C5F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number: 158B
Signing time: Tue 10 Jun 2025 08:00:38 +0000
Manifest this update: Tue 10 Jun 2025 08:00:38 +0000
Manifest next update: Wed 11 Jun 2025 08:00:38 +0000
Files and hashes: 1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: 0LnSLdn2j1vn38cJmKvSXUz5TTie5kiXojpXUBerZ4k=)
2: _ez--C0KRSwSRmH4lyGu5zUk1HU.roa (hash: KFrEJZmjOcmfSBpY7GDcoqxz0mSObldiNHL67FlKf8w=)
3: bHl4gP55LgKhhE_L1xho4xppPEo.roa (hash: rqcbN4+Al2DH9m3ppJi1E488vxtH8t3M86sJsdVuXgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:db:05:4f:43:ff:f1:fa:ae:20:3f:ef:85:d3:c5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
Validity
Not Before: Jun 10 08:00:38 2025 GMT
Not After : Jun 11 08:00:38 2025 GMT
Subject: CN=89fc6ad4ae9d1d1124ec6c73fb8480160b137340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:2d:c1:91:9c:0b:ab:fe:b1:64:8c:e5:4e:
c1:5b:76:92:6d:7d:88:27:99:db:87:f6:4c:db:b9:
9f:f9:91:2e:5a:57:79:c5:93:63:89:63:6f:9b:57:
28:e1:26:23:41:63:33:ec:4e:5a:1e:f2:01:b8:61:
b7:43:35:05:6f:3d:ea:81:97:7d:d6:f8:38:73:23:
7f:68:61:50:8f:2e:ea:86:cb:24:70:60:f8:58:6e:
27:00:8c:77:5d:9c:fd:89:4f:98:11:28:b3:9a:61:
e4:d6:11:0f:ec:87:b4:c6:df:54:36:2d:a4:19:86:
1a:80:03:20:a3:00:77:4b:71:48:6d:1c:8f:09:78:
23:dc:fd:4e:cb:89:3f:0a:ff:87:f5:42:1e:3c:98:
97:b8:25:8e:bd:cc:7b:bd:d0:dc:25:af:c5:8d:77:
b1:02:64:86:34:e5:65:08:33:11:03:e3:1f:0d:c3:
8c:80:26:cb:d8:b5:53:8e:6b:55:65:23:4c:d4:66:
a0:38:4b:63:7f:f9:38:d8:a8:b8:0f:3f:e6:8e:0f:
90:8c:6e:8d:c7:29:57:77:6e:a0:7f:e5:42:ab:90:
e9:90:3d:93:ae:22:60:65:e3:4c:1f:dd:7a:0b:6e:
cb:b2:f3:f0:10:d6:e8:a8:dc:28:1b:56:4a:dd:66:
50:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FC:6A:D4:AE:9D:1D:11:24:EC:6C:73:FB:84:80:16:0B:13:73:40
X509v3 Authority Key Identifier:
keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:2a:b9:c2:da:33:05:e6:bb:09:8d:ad:92:2c:ca:c0:5c:e1:
bf:1f:7f:b5:58:b6:f2:85:d1:96:d3:67:c4:b8:a4:e0:70:10:
0c:b8:85:cd:fe:32:2a:34:e5:c6:a5:fe:0f:36:7f:95:66:4d:
f5:d1:d9:e9:a6:32:2c:dd:bf:02:a8:79:86:7f:c9:2f:44:8d:
51:3f:57:fa:4b:77:7d:b3:62:78:2f:56:6c:62:7b:07:1e:d4:
99:91:9e:30:7e:28:50:92:69:ee:99:e0:03:eb:c6:f0:cf:0b:
e0:48:eb:8d:50:17:be:4c:39:f6:57:d4:3e:77:b6:ad:5a:b9:
82:a5:ac:a9:fd:22:61:66:e0:cc:c9:70:86:34:a4:34:a2:03:
4b:bf:3d:ef:3e:72:a8:8c:57:0e:79:8f:0f:8d:8d:6d:da:12:
5a:89:a9:d9:58:b9:5e:e6:fa:0d:e7:92:a3:85:99:f3:22:e8:
cb:56:41:ae:18:ee:54:1b:1d:b9:e8:9c:7b:d0:a0:1a:73:e4:
3d:ed:83:8e:9d:d1:b8:96:9b:3a:6e:55:8d:20:f2:5f:ed:7a:
66:95:70:1e:23:93:51:4a:47:b7:a6:cb:65:cc:63:02:ad:4f:
a1:dc:b0:cb:fb:21:23:3f:c5:a1:0a:cc:12:48:6d:c1:66:4a:
6e:92:da:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:22:32 2025 by rpki-client