Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
File: XGpfUrAC9ihsHV6yV7tehTNCooQ.mft (raw, json)
Hash identifier: WesTiWZ7RGjX7SA0TLdkvddvx5guKziu/RjSrNPVGhw=
Subject key identifier: 4B:70:87:60:41:37:7B:4F:6C:68:C6:FB:87:9D:E1:32:63:A7:0B:FB
Authority key identifier: 5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
Certificate issuer: /CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Certificate serial: 0198D473F62741CB8F4684029B5C8EB2AA73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
Manifest number: 12FC
Signing time: Sat 23 Aug 2025 01:03:46 +0000
Manifest this update: Sat 23 Aug 2025 01:03:46 +0000
Manifest next update: Sun 24 Aug 2025 01:03:46 +0000
Files and hashes: 1: XGpfUrAC9ihsHV6yV7tehTNCooQ.crl (hash: bz2/ZczJ+/XZL+NxWDyqS+Md5aik/qz5o5EdLxORoV8=)
2: tscq8RR5-J67nLuusgspLPatxCY.roa (hash: mhooYjP72FJexVsRBpMnu3/8vTwdVxQOmpcDiGXdBjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:f6:27:41:cb:8f:46:84:02:9b:5c:8e:b2:aa:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c6a5f52b002f6286c1d5eb257bb5e853342a284
Validity
Not Before: Aug 23 01:03:46 2025 GMT
Not After : Aug 24 01:03:46 2025 GMT
Subject: CN=4b70876041377b4f6c68c6fb879de13263a70bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e2:57:15:c2:3a:f5:9b:35:8b:c4:49:94:32:
69:01:71:db:58:80:7a:f6:a3:72:c1:36:54:01:7f:
cc:84:87:8f:88:d8:b4:c4:df:32:ed:e8:a1:85:e4:
a6:7d:d0:b0:1f:c2:22:69:b8:96:a7:93:4f:8f:e9:
f3:06:04:e1:34:98:d7:14:f2:ba:fe:d8:08:43:e0:
f3:bf:ac:d0:cc:6e:45:64:c8:81:d3:c3:74:78:36:
45:4b:09:df:50:62:f7:5c:c0:7b:ce:d0:49:05:fc:
73:c1:0c:20:30:f8:01:54:b3:49:56:ed:d8:2d:6d:
8e:f6:b8:d6:a3:bb:50:89:87:cc:6b:e9:a8:04:dc:
d9:22:77:1b:4f:ac:58:94:f8:e9:f4:35:87:4d:b3:
08:cc:d3:66:4a:44:9e:95:b2:8c:f3:d7:7d:71:5a:
28:ee:bc:e6:2a:ff:54:47:bb:e1:36:92:d7:42:a3:
73:c9:e0:07:7d:ab:1f:82:e5:87:7b:42:6e:4c:39:
32:f3:86:71:43:1e:c4:6d:dc:4f:2c:3b:fd:a7:83:
6f:92:00:90:d7:8c:7d:50:f1:6c:ab:a8:2c:2d:64:
6a:af:e2:bc:20:99:53:ff:e2:ff:12:d1:fc:14:82:
fb:f0:77:32:47:f5:86:4b:d4:98:9b:ea:70:fb:da:
e1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:70:87:60:41:37:7B:4F:6C:68:C6:FB:87:9D:E1:32:63:A7:0B:FB
X509v3 Authority Key Identifier:
keyid:5C:6A:5F:52:B0:02:F6:28:6C:1D:5E:B2:57:BB:5E:85:33:42:A2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGpfUrAC9ihsHV6yV7tehTNCooQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b4ecb1-a0f5-4261-bcde-096c9c07ae18/1/XGpfUrAC9ihsHV6yV7tehTNCooQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:30:f3:cb:bf:c0:a6:3b:b1:e1:1f:d1:55:28:c3:d9:fc:59:
48:5d:a7:16:0a:b5:36:a7:73:78:5d:72:aa:ba:73:02:56:3b:
21:d8:ed:7b:fd:4c:9e:24:f8:5a:d0:30:b0:ae:be:5f:d8:3f:
4d:42:dd:57:fe:a5:04:55:4d:8a:d1:cd:44:ea:f8:03:5f:00:
09:1e:fe:e3:14:87:51:44:1b:62:0e:ee:4e:e1:d7:67:f7:87:
57:b2:cd:d3:fc:a1:6d:50:fd:cc:f7:ed:19:6f:d6:0c:45:ec:
ed:84:09:2f:1c:aa:43:b1:f1:a0:38:87:d0:1c:db:1e:fc:27:
92:8b:37:32:8d:7f:78:af:8a:92:e5:71:73:68:84:00:70:75:
cf:81:f3:12:7e:73:18:9b:e3:ed:8a:39:31:e9:37:c4:1b:58:
50:f8:9a:bc:4b:82:be:ef:e4:aa:26:2d:f1:f3:2a:92:f6:3b:
ac:e2:5d:97:27:c7:f3:3a:d1:08:fe:55:e3:45:ed:04:a2:e3:
f6:94:26:bf:06:0d:5f:88:32:24:04:55:62:f5:60:f9:74:38:
b2:83:e2:33:cc:53:49:9e:fa:13:24:44:8b:88:e5:78:99:b5:
42:7b:30:d7:e3:24:7a:62:a5:d6:0e:e6:87:18:6c:67:0b:cd:
ec:b4:be:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:52 2025 by rpki-client