Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
File: B8n9CgjdBL-Yalvahugx34BI8q4.mft (raw, json)
Hash identifier: ePpLk71LHwHX0eYvm3w1V0QIe0FgUINTGtjVLVEuGnM=
Subject key identifier: 8A:53:29:CB:BE:D3:49:B3:91:1B:6C:AB:72:A5:19:3E:01:AF:70:5D
Authority key identifier: 07:C9:FD:0A:08:DD:04:BF:98:6A:5B:DA:86:E8:31:DF:80:48:F2:AE
Certificate issuer: /CN=07c9fd0a08dd04bf986a5bda86e831df8048f2ae
Certificate serial: 01988921DAC3137A86C737B73A0A33D6EF6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B8n9CgjdBL-Yalvahugx34BI8q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
Manifest number: 1623
Signing time: Fri 08 Aug 2025 10:02:33 +0000
Manifest this update: Fri 08 Aug 2025 10:02:33 +0000
Manifest next update: Sat 09 Aug 2025 10:02:33 +0000
Files and hashes: 1: 8s5jlmVuyTPiRv4H9BvQU42g7nw.roa (hash: Ucu3y8/kR6J85jmowJDRLpHtgn2LtVqQioF1Y1wmZq4=)
2: B8n9CgjdBL-Yalvahugx34BI8q4.crl (hash: Sqyz1Gi+GffMi2UhXcqSwJd2CcJ/2xn/IkaX+4465Ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
rsync://rpki.ripe.net/repository/DEFAULT/B8n9CgjdBL-Yalvahugx34BI8q4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 10:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:89:21:da:c3:13:7a:86:c7:37:b7:3a:0a:33:d6:ef:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07c9fd0a08dd04bf986a5bda86e831df8048f2ae
Validity
Not Before: Aug 8 10:02:33 2025 GMT
Not After : Aug 9 10:02:33 2025 GMT
Subject: CN=8a5329cbbed349b3911b6cab72a5193e01af705d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c6:bb:c5:c5:85:3f:74:c3:de:1c:8f:c1:af:
7d:9b:db:8b:36:cc:8c:4f:4b:44:c4:98:7f:64:63:
1c:5c:41:7f:31:07:7b:ff:58:26:53:f9:75:05:0b:
ce:a7:72:4d:3e:fe:2c:01:b9:d7:88:0c:3c:13:c6:
83:50:67:84:35:a9:94:b6:07:e5:5a:98:24:c5:11:
0b:43:67:b4:65:cb:0d:b9:ee:8e:89:48:8b:e0:d1:
58:ab:6b:e9:cf:58:cb:8a:4e:9d:3d:b5:60:05:ba:
44:43:b7:f6:98:68:4f:a7:cb:89:57:32:72:48:d7:
a0:04:ba:e8:75:6a:2d:b3:23:8d:6a:15:4d:cd:3e:
24:5a:75:e8:21:e1:69:f9:77:f6:a1:a0:e3:bc:46:
66:9c:cb:ae:53:7e:41:07:a2:9c:8d:6f:2d:87:63:
5f:a9:0f:c7:e9:68:4c:36:2b:fa:59:5d:c9:e3:71:
88:6b:93:01:2d:b8:d6:9b:e3:07:64:c1:95:be:5a:
08:a0:ca:cf:65:48:9f:43:a4:f5:0b:cd:35:b2:cf:
c7:36:6d:c0:f7:96:05:5f:40:01:5e:ad:00:41:c9:
73:29:16:f7:90:d4:01:9b:e4:6f:35:ac:4e:de:46:
ce:6d:a7:3f:12:de:ea:21:c4:95:7b:8e:f0:fd:b8:
f3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:53:29:CB:BE:D3:49:B3:91:1B:6C:AB:72:A5:19:3E:01:AF:70:5D
X509v3 Authority Key Identifier:
keyid:07:C9:FD:0A:08:DD:04:BF:98:6A:5B:DA:86:E8:31:DF:80:48:F2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B8n9CgjdBL-Yalvahugx34BI8q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2376c5-1008-4c8e-a27a-de8a4f0aa956/1/B8n9CgjdBL-Yalvahugx34BI8q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:ba:ed:95:d0:54:0d:ee:68:5a:d2:1b:80:6d:a9:c9:14:40:
8c:57:ef:1a:44:95:17:a4:b7:a2:16:c1:8d:f1:5c:63:8c:31:
3b:5f:b7:d5:89:ee:9d:15:75:01:04:5f:69:b8:b9:da:7f:51:
4b:f8:d6:02:b4:ce:19:43:be:7d:23:32:f2:c2:3e:ed:39:f3:
44:5b:6f:0a:b7:d2:a6:aa:b1:85:cb:22:a5:08:28:58:43:ac:
cf:2a:7a:4a:00:e2:c0:2f:d9:67:3d:de:42:5d:80:ed:ec:23:
ff:45:6e:4f:75:7b:b2:2e:55:c7:e7:e5:b8:1c:77:0b:e2:1f:
ab:ce:7e:c4:97:bd:9d:b1:d5:c0:e2:1a:c8:93:2c:30:b3:0f:
76:8b:bf:d6:00:9e:90:c5:41:80:3e:7b:71:45:88:e2:12:e1:
4e:93:82:84:a1:df:55:f7:6a:79:18:9e:8f:22:c0:48:c7:4f:
3e:3e:6c:bb:a7:11:7f:08:e6:86:78:24:f7:f4:79:75:1b:cb:
be:65:2b:62:49:f9:ef:ae:4b:46:0d:51:a3:48:b5:cc:f3:17:
b1:12:d0:63:83:52:a1:3b:5d:b6:af:57:f5:cd:b6:4c:fb:cb:
cc:d3:52:e9:04:be:62:de:59:5a:81:fb:10:fa:f5:a5:6f:cd:
ee:6b:23:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 12:52:23 2025 by rpki-client