
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
File: b8zf_aakxIkUtejN59pdgguclxg.mft (raw, json)
Hash identifier: Amgtsr0XVubBJYSunAHzOS76/CXejGeI3doJ8IhWEVE=
Subject key identifier: 79:20:D5:A3:9B:61:25:05:57:F2:39:1F:0A:C2:EC:EB:92:5D:6B:6A
Authority key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
Certificate issuer: /CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718
Certificate serial: 01988B4603DCEF07A77753B7099E3460CBBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
Manifest number: 1636
Signing time: Fri 08 Aug 2025 20:01:18 +0000
Manifest this update: Fri 08 Aug 2025 20:01:18 +0000
Manifest next update: Sat 09 Aug 2025 20:01:18 +0000
Files and hashes: 1: 1YG59nbjYSEp8Dz6f0mC_6gefpg.roa (hash: 5tVXqxotHLEXF9KoqmQT6ylsFbR/apsye3JTV81hRBQ=)
2: DWHdsFsQlnFJcyPewoXT0lDFpvE.roa (hash: V6x8BrWgOBTucNWB1MpK3cn6rjM3I3+oPKM+8Z7R5vA=)
3: GQpZM-fB0ZkxzCRMqCw0f9N7tyU.roa (hash: KTppITpJ7wsyB8SXrbAMqiKKxUwVykbBRMICRs5VO4A=)
4: K221sfSU8a2Lsy0QMVbBz-yAHyg.roa (hash: kybj+mQFwM3CNEIgEWcR7xMFvyhG9N8dFqe0X/0hhYM=)
5: b8zf_aakxIkUtejN59pdgguclxg.crl (hash: TlT2Wtuyjd3QlHTU/VUt8vgwpzgnm6jmUYHIiCQzIJo=)
6: hZBu7FQZVkKtWXL58gH8ufcnrgg.roa (hash: R2fcFnCqnbmbHv/RiPE81tSq/ElozG/l/Ezav5iqgYw=)
7: j93BEME5b_K-Zki214QPN4kzqeg.roa (hash: hcvpDseLA+C6KaXIoA6Bv3d4XdBkZlvTz5OO4bMB8oo=)
8: rqGlBLIWA_KsyY5dvVKcudAzYvY.roa (hash: 5OHCdN2GkrUd/qPuHKRYVHvCHLeex3MBnLChYf7HEzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:46:03:dc:ef:07:a7:77:53:b7:09:9e:34:60:cb:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718
Validity
Not Before: Aug 8 20:01:18 2025 GMT
Not After : Aug 9 20:01:18 2025 GMT
Subject: CN=7920d5a39b61250557f2391f0ac2eceb925d6b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f4:ac:24:c1:aa:71:97:70:fd:06:7a:67:da:
de:50:f0:3d:7e:61:25:6a:8e:e0:7c:67:dd:49:4d:
63:a3:f9:6c:cd:ee:a9:1c:86:e7:79:58:e4:42:3b:
10:52:9e:8a:1f:2e:f7:ac:23:3b:71:66:ce:07:79:
73:65:c0:0c:4b:e5:56:02:2b:1f:86:e9:5a:31:43:
ea:d9:7c:bc:20:55:e1:33:a1:30:f2:74:76:8d:74:
b6:2a:db:de:64:d7:7a:29:94:a5:3f:06:08:89:16:
f7:7d:a9:a4:4e:b5:c9:08:21:16:c3:7e:4d:28:94:
d2:db:28:37:c0:f6:7e:3c:f9:17:e2:5c:6d:23:c9:
a6:76:5d:17:7c:0d:e0:ec:cd:c1:9f:d1:aa:69:e0:
68:98:bd:c4:ef:ff:b2:b2:2e:2b:07:04:88:98:f4:
fc:ee:f4:ac:92:3a:93:da:9b:94:2f:c4:73:31:d4:
88:82:cd:2e:27:2a:e1:48:31:ee:35:8f:07:3e:8b:
27:88:86:eb:8c:dd:ad:41:c2:48:e4:ea:80:ac:54:
d2:2a:aa:45:6d:6c:66:13:90:4a:07:9d:de:4f:dc:
15:a7:b6:17:03:1f:29:b5:b9:aa:07:7f:0e:a5:b3:
f9:26:53:99:2e:af:9d:2f:15:25:a7:80:ae:74:14:
33:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:20:D5:A3:9B:61:25:05:57:F2:39:1F:0A:C2:EC:EB:92:5D:6B:6A
X509v3 Authority Key Identifier:
keyid:6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:21:62:ed:18:4d:85:ce:b3:b8:08:95:b5:07:d7:15:d7:5f:
a7:ff:ab:b2:5b:24:48:a3:08:6c:97:39:38:90:2d:68:f1:cc:
6d:9b:2a:61:ee:62:4b:68:90:2e:d5:57:7d:78:ed:a3:d1:ee:
d8:89:0e:59:f6:aa:32:19:63:9f:a2:21:a9:2e:10:81:ad:a2:
cd:19:39:d3:44:7b:ef:70:5c:95:b7:6c:cb:e1:2d:2d:95:b0:
85:a1:92:74:a4:c2:b6:af:96:1c:0b:06:e6:34:a8:cb:dc:e9:
80:6b:04:54:3f:97:86:b6:d4:ad:e5:88:f2:33:58:6e:53:39:
06:a8:d3:8e:25:54:4d:73:db:7b:95:2a:4f:ef:de:1c:0a:37:
b7:d6:bb:c8:ea:ff:3e:50:47:3b:4c:5e:36:55:fe:4b:b1:41:
be:6c:4f:aa:27:47:e0:a6:a7:d6:a7:bc:af:71:65:90:4a:e9:
9b:df:4e:02:06:75:6b:be:a6:95:3c:00:a2:72:8a:52:92:46:
70:a7:73:76:0c:39:29:3e:fb:32:ca:ce:08:eb:2c:ec:9e:b8:
8e:d6:d1:17:19:d6:ec:59:70:c7:1e:74:23:59:af:4c:a3:08:
77:f0:40:3b:b7:aa:31:47:65:a1:00:b8:84:99:44:65:26:3d:
3a:1a:98:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:56 2025 by rpki-client