
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
File: yAH8mVpSGvH1Atnq8S1mIaZMr00.mft (raw, json)
Hash identifier: xbwjJQ/jMZ5YRGm3zD2WeTWQO/4CskC/cP7NvwGa7Fs=
Subject key identifier: 79:61:DC:35:79:F2:8C:18:CA:36:BB:38:2B:F4:37:6C:E6:30:46:7C
Authority key identifier: C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D
Certificate issuer: /CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
Certificate serial: 01988B0FE26A1A0717701341A7DC27662DC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
Manifest number: 161F
Signing time: Fri 08 Aug 2025 19:02:10 +0000
Manifest this update: Fri 08 Aug 2025 19:02:10 +0000
Manifest next update: Sat 09 Aug 2025 19:02:10 +0000
Files and hashes: 1: yAH8mVpSGvH1Atnq8S1mIaZMr00.crl (hash: WQOUHFynfavct718QlqyBhy87og6ZcrNSWjkJ58BttQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:e2:6a:1a:07:17:70:13:41:a7:dc:27:66:2d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
Validity
Not Before: Aug 8 19:02:10 2025 GMT
Not After : Aug 9 19:02:10 2025 GMT
Subject: CN=7961dc3579f28c18ca36bb382bf4376ce630467c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:7e:e4:6a:38:fd:a0:8e:73:0e:32:c4:d3:
2b:43:6d:ea:4f:ba:7c:f0:e6:7a:0e:ed:90:b8:d0:
67:91:9d:08:4b:42:17:93:a5:4a:6c:ee:65:b4:d6:
b1:ed:4c:2c:e4:4c:a8:ff:c8:fb:13:a9:01:a8:7d:
7e:9e:5e:c8:c7:75:65:c4:82:bf:f5:d9:07:43:62:
5d:7f:14:22:64:33:82:36:d6:b9:a6:35:9c:3f:54:
a5:c4:e9:1a:1f:fd:02:6b:8a:dc:06:64:cc:51:97:
ae:73:0d:94:73:80:34:86:14:87:3f:43:9e:f0:fe:
42:b5:51:bd:a5:f1:98:ea:3f:a1:62:12:91:81:27:
37:21:c7:c8:e3:b4:35:53:32:2c:d0:3e:c4:2b:44:
61:1e:06:16:4c:ae:3a:06:9d:64:00:a9:d3:7c:74:
68:5b:a4:e1:32:9e:d1:ad:37:26:3f:b4:3c:5c:d0:
44:5a:be:61:21:ab:78:b9:bc:e3:0d:44:a1:36:b2:
38:45:02:05:d5:96:f7:c5:eb:cd:1d:39:36:34:6b:
e8:fd:c3:47:25:4e:0a:00:8e:85:f6:27:85:22:ac:
d6:02:f1:bc:2c:92:71:4b:17:31:f1:1e:7d:14:07:
50:00:01:26:5d:50:95:5c:d9:43:bd:55:99:30:4a:
b5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:61:DC:35:79:F2:8C:18:CA:36:BB:38:2B:F4:37:6C:E6:30:46:7C
X509v3 Authority Key Identifier:
keyid:C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:4b:e2:1d:a8:a2:e5:02:a2:45:51:c7:1a:ad:2f:e8:90:e2:
7c:85:74:0c:12:24:8b:4d:25:87:bc:6e:32:8d:8b:95:b6:c8:
97:08:7f:a6:77:b9:0b:4f:29:3f:37:f2:4e:2d:3b:fc:af:17:
7d:cb:25:68:9b:5b:cf:38:be:e1:9a:5f:35:83:83:21:4f:25:
3c:32:d2:40:74:de:03:4a:4e:28:3b:d0:95:52:71:1b:b4:21:
d9:a0:01:04:79:00:3e:aa:03:49:f6:6f:6c:6a:43:31:2e:cf:
31:a3:2c:47:0f:df:75:59:f9:ea:12:4b:95:2a:c5:d1:75:9c:
af:f4:8c:65:0f:ac:73:70:47:cf:d6:22:ca:00:f9:ea:ed:d0:
9f:a1:68:a9:2a:1b:1a:db:46:91:ce:a4:45:0f:2f:70:cb:60:
45:d2:16:72:d8:28:c1:74:ba:2d:3f:26:d3:03:28:12:8d:0d:
fd:88:1d:8b:48:cd:b4:a4:6d:73:95:4d:13:ea:d4:0c:62:cc:
13:fa:29:5a:13:8d:01:be:86:08:f4:51:e6:6d:00:b6:3b:55:
e9:24:6b:82:ef:71:a1:dd:d0:c3:be:53:d9:87:43:0a:21:34:
28:97:f1:a4:ae:4f:09:3d:f4:60:bc:e8:63:dc:57:e5:8f:2c:
e4:6c:5d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:24:00 2025 by rpki-client