Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
File: xddsGvj60uvGNOouIzcPEMXFnQs.mft (raw, json)
Hash identifier: gDfUrXXPUzoawywhoo6IuVw1s76//ZvcvRX/y6ZLYPc=
Subject key identifier: 68:E5:98:29:7E:1A:7B:B2:D4:2C:E3:F3:11:3F:C5:A7:33:81:04:1E
Authority key identifier: C5:D7:6C:1A:F8:FA:D2:EB:C6:34:EA:2E:23:37:0F:10:C5:C5:9D:0B
Certificate issuer: /CN=c5d76c1af8fad2ebc634ea2e23370f10c5c59d0b
Certificate serial: 01987DF7B0932DAA5FB1AAC66C941031378E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
Manifest number: 0552
Signing time: Wed 06 Aug 2025 06:00:41 +0000
Manifest this update: Wed 06 Aug 2025 06:00:41 +0000
Manifest next update: Thu 07 Aug 2025 06:00:41 +0000
Files and hashes: 1: Acbly_fCXeuRyFDFzZjmCcQPl8U.roa (hash: 97l8f98tI95Opzr22XniXOh4lBsa/Ac1EBZZQOTU4Lo=)
2: xddsGvj60uvGNOouIzcPEMXFnQs.crl (hash: 0LO3hHmcpTsu+KArDEPY8IJCEyfqi2C84uVRRT4i78o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:b0:93:2d:aa:5f:b1:aa:c6:6c:94:10:31:37:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d76c1af8fad2ebc634ea2e23370f10c5c59d0b
Validity
Not Before: Aug 6 06:00:41 2025 GMT
Not After : Aug 7 06:00:41 2025 GMT
Subject: CN=68e598297e1a7bb2d42ce3f3113fc5a73381041e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a7:90:6d:a0:d1:ef:27:18:4d:be:1f:dd:b9:
93:16:c9:4c:06:e8:dd:7f:e0:0c:bc:f1:3f:59:20:
6f:fb:6e:12:fc:e3:a7:67:e5:62:50:d5:21:50:58:
f4:d1:d3:ee:94:40:c4:ae:ff:2d:53:0b:9f:32:a2:
2f:2d:12:49:75:96:d3:b2:e2:07:ba:5c:f2:56:38:
ea:de:eb:96:1b:d2:a0:80:7f:ab:84:43:ef:8e:a6:
f7:e6:e4:e0:a5:60:8a:22:1e:45:06:28:38:a2:7c:
7b:37:08:a9:c6:3f:a1:34:90:1b:0f:11:9d:88:08:
c5:6d:7f:36:b1:cd:f1:11:22:2a:d2:03:ed:83:fd:
f7:6c:97:12:25:53:b9:16:eb:c9:6a:a8:7e:f4:4f:
29:42:48:e4:40:54:85:88:8e:1d:4d:37:90:6d:46:
24:f8:09:cc:f2:12:57:cc:72:d3:eb:e8:c1:b9:e9:
72:8b:32:f0:5d:71:c9:65:ed:ea:b4:01:38:93:01:
c1:71:f7:08:2f:82:88:4e:d7:06:89:53:c0:92:b2:
d9:25:27:ca:bb:90:59:24:30:07:0e:07:1b:08:d8:
7f:67:60:ee:33:29:2d:bd:a6:08:51:82:09:75:b7:
b2:92:21:82:da:70:0c:d2:a6:d0:ed:c4:22:21:36:
b7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E5:98:29:7E:1A:7B:B2:D4:2C:E3:F3:11:3F:C5:A7:33:81:04:1E
X509v3 Authority Key Identifier:
keyid:C5:D7:6C:1A:F8:FA:D2:EB:C6:34:EA:2E:23:37:0F:10:C5:C5:9D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:02:ce:ce:a8:3d:2d:4b:45:5c:da:44:94:0f:f8:62:60:1f:
19:c1:bc:d6:7b:0b:f3:16:0d:e1:7f:12:dc:b5:8d:fe:49:24:
45:14:e0:1c:59:7e:5a:d0:28:95:f4:0f:c5:ba:cd:61:9c:4a:
86:b5:23:51:be:b5:92:59:6f:de:92:08:33:f7:db:24:57:86:
1e:e4:bd:50:62:70:c4:69:83:a6:cb:67:41:64:ba:e1:e7:7d:
77:1e:4f:0f:1f:ee:52:c5:c4:20:01:a5:9f:09:03:7d:7c:e0:
5d:76:09:f8:bb:27:e3:9b:e1:9d:e9:22:cb:3c:ba:26:79:32:
19:fe:c6:b2:fd:83:b4:50:17:e9:12:d1:5a:bf:3a:2d:18:fe:
c4:80:e3:9a:03:02:c9:b2:3d:19:6c:62:35:16:83:2e:d0:44:
c3:26:3c:e0:89:b2:ea:3b:e8:12:d7:7c:62:fd:2d:0d:38:22:
e3:70:8c:d0:04:c9:30:33:ea:3f:fd:dc:01:ae:7e:2e:0f:bb:
82:3c:6e:c2:b6:6e:46:6d:d2:a8:6e:47:44:91:c6:2f:9d:5b:
68:db:cb:a7:f7:1f:3d:aa:dd:dd:e0:63:03:e3:82:fc:ea:e5:
4a:5d:e6:ff:9b:6e:a5:d9:db:f0:8f:02:ef:e8:7f:68:fb:e4:
a7:97:29:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:59:09 2025 by rpki-client