
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
File: 8yvpggYKQ3NNCtEmrUbaLzlcne8.mft (raw, json)
Hash identifier: CATAGzDgVbgFs1zsV4HoM6AQZcfMPhmyZFxmU2pffeA=
Subject key identifier: 1A:5B:04:46:68:97:74:88:C1:C1:53:64:B7:4C:A1:9B:FA:E3:BE:DA
Authority key identifier: F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
Certificate issuer: /CN=f32be982060a43734d0ad126ad46da2f395c9def
Certificate serial: 01976471156D13777F4CD0290DCA99E2BA6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
Manifest number: 1591
Signing time: Thu 12 Jun 2025 14:00:22 +0000
Manifest this update: Thu 12 Jun 2025 14:00:22 +0000
Manifest next update: Fri 13 Jun 2025 14:00:22 +0000
Files and hashes: 1: 8yvpggYKQ3NNCtEmrUbaLzlcne8.crl (hash: eoV74Buekiu0GAeZkKbjRkZnxmMrqp7c6zeM1Oy6Psc=)
2: _ez--C0KRSwSRmH4lyGu5zUk1HU.roa (hash: KFrEJZmjOcmfSBpY7GDcoqxz0mSObldiNHL67FlKf8w=)
3: bHl4gP55LgKhhE_L1xho4xppPEo.roa (hash: rqcbN4+Al2DH9m3ppJi1E488vxtH8t3M86sJsdVuXgY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:71:15:6d:13:77:7f:4c:d0:29:0d:ca:99:e2:ba:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f32be982060a43734d0ad126ad46da2f395c9def
Validity
Not Before: Jun 12 14:00:22 2025 GMT
Not After : Jun 13 14:00:22 2025 GMT
Subject: CN=1a5b044668977488c1c15364b74ca19bfae3beda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:33:9f:94:b5:83:42:04:d5:ee:40:31:85:fd:
21:bb:e9:7a:77:d1:e8:b5:7f:09:f9:21:82:b2:55:
ba:24:df:43:54:17:a4:f7:18:25:0b:d3:f9:b0:2f:
73:0a:f1:43:1c:ea:2d:0a:bd:a3:de:7e:a4:93:de:
d9:ff:66:1d:ca:03:cd:10:f3:d2:8a:88:d2:9c:f9:
5b:14:94:4e:08:7d:19:93:c4:1d:0d:36:06:45:8c:
ff:ef:39:c0:da:3c:3f:42:cb:05:6f:07:58:19:47:
76:43:c3:17:be:c2:ec:a7:44:5b:6a:7d:8b:41:b5:
b3:be:4c:15:16:16:ba:91:d4:c6:6a:a2:0a:62:47:
a4:eb:b7:07:c1:f7:3b:8f:6c:04:1d:86:6e:b8:0e:
f0:0a:2a:b6:7e:5d:2b:32:d4:82:d8:61:46:cc:a5:
ef:30:92:45:f6:94:df:80:6b:64:b4:10:cc:ac:44:
ef:50:36:64:05:9f:8b:7e:ae:cd:99:47:dd:db:8c:
98:1d:a6:f2:c0:5d:6a:23:bb:8d:ce:d5:05:99:be:
4e:c5:1f:56:0b:c3:a4:41:72:8e:f9:0c:55:76:94:
cf:6f:a0:f0:6e:f2:0b:62:a8:29:ff:0f:43:e0:32:
53:e1:7f:e7:c6:23:0f:4b:ed:61:c6:bb:ef:e1:7f:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5B:04:46:68:97:74:88:C1:C1:53:64:B7:4C:A1:9B:FA:E3:BE:DA
X509v3 Authority Key Identifier:
keyid:F3:2B:E9:82:06:0A:43:73:4D:0A:D1:26:AD:46:DA:2F:39:5C:9D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yvpggYKQ3NNCtEmrUbaLzlcne8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/da3b1d-7acf-451f-b68b-99bcbe6d7f63/1/8yvpggYKQ3NNCtEmrUbaLzlcne8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:1c:3a:b1:fb:b9:0a:9e:29:f8:07:bc:05:ef:e9:42:90:fa:
40:30:5e:4f:50:e5:16:3f:4e:34:1c:da:bc:87:33:58:39:d5:
54:fd:98:2f:7d:13:58:15:6b:00:5f:0e:ae:6e:ac:09:2f:c5:
13:01:74:8b:48:8c:42:70:d8:92:41:79:38:e5:d7:89:26:a7:
1c:51:88:8e:65:be:be:a8:1f:58:78:91:ba:b3:62:fb:79:34:
2d:8a:2f:73:b9:4b:54:1c:3e:94:17:f1:cc:ec:95:07:bc:ba:
e2:35:2b:f2:42:b0:3e:a3:26:09:8c:00:7f:fa:9f:88:06:07:
53:48:cb:17:07:de:2f:5d:9a:22:ef:70:c1:5f:ed:d2:61:f1:
f4:8f:a4:50:37:a6:43:ab:40:7f:9d:3c:ce:79:b6:56:11:0f:
80:a7:10:27:de:39:25:3b:fd:09:e9:18:be:37:aa:b0:3e:ea:
83:2c:47:45:5a:11:6d:4d:d9:10:6f:d6:7f:6e:15:4a:74:d9:
c2:09:8d:9f:ba:f8:fc:e2:c0:8a:b0:11:02:e8:63:d2:7f:34:
17:93:4d:dc:02:7b:4a:6c:b0:8c:ca:68:f7:3f:95:e3:f6:df:
c2:39:d0:8f:6b:10:22:f1:2e:0d:68:ad:ee:35:0a:ac:c5:a3:
53:ee:b0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:41:06 2025 by rpki-client