Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
File: xddsGvj60uvGNOouIzcPEMXFnQs.mft (raw, json)
Hash identifier: iYcEgHGwV9ecv03k1FbLOFfV3hgJd0ZeYbwhG5sd8TM=
Subject key identifier: 1A:BD:F0:27:7F:8E:12:E7:83:44:94:25:2F:F1:1F:E8:E6:C3:96:92
Authority key identifier: C5:D7:6C:1A:F8:FA:D2:EB:C6:34:EA:2E:23:37:0F:10:C5:C5:9D:0B
Certificate issuer: /CN=c5d76c1af8fad2ebc634ea2e23370f10c5c59d0b
Certificate serial: 01976BBDA6BDBBBCB953B9CDF673BB731A8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
Manifest number: 04C4
Signing time: Sat 14 Jun 2025 00:01:20 +0000
Manifest this update: Sat 14 Jun 2025 00:01:20 +0000
Manifest next update: Sun 15 Jun 2025 00:01:20 +0000
Files and hashes: 1: Acbly_fCXeuRyFDFzZjmCcQPl8U.roa (hash: 97l8f98tI95Opzr22XniXOh4lBsa/Ac1EBZZQOTU4Lo=)
2: xddsGvj60uvGNOouIzcPEMXFnQs.crl (hash: nLZj7pEA7ULlN0dr9+teFTHfs7CKn+iDkPJ0ftdScYs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:a6:bd:bb:bc:b9:53:b9:cd:f6:73:bb:73:1a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d76c1af8fad2ebc634ea2e23370f10c5c59d0b
Validity
Not Before: Jun 14 00:01:20 2025 GMT
Not After : Jun 15 00:01:20 2025 GMT
Subject: CN=1abdf0277f8e12e7834494252ff11fe8e6c39692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:09:85:f5:9b:c4:fe:d1:bf:8c:20:46:4e:6b:
d5:1a:36:63:44:12:c3:9b:5d:ad:f1:e8:c0:1c:57:
74:ec:4c:82:e2:b4:86:97:3d:a3:78:66:44:d5:bc:
8b:c6:0d:f4:62:fd:b7:ad:9a:e6:44:74:16:53:46:
55:a8:19:9e:60:e9:44:33:37:f1:97:4f:6a:c9:2d:
52:e4:52:15:89:0a:8a:4e:a1:fb:fe:93:8b:e5:b5:
3f:8b:84:6e:d2:f3:0a:56:23:e6:11:66:70:fa:50:
be:80:8f:94:c5:45:b9:dd:f1:da:01:72:d6:89:fd:
38:3f:f8:fc:3f:11:33:9f:d2:92:38:7a:52:3d:ed:
e9:d7:d4:a7:32:30:a5:a0:4d:49:78:b2:4e:c5:9e:
00:d0:69:e4:73:46:b5:b5:e6:35:03:aa:c3:44:d6:
12:4d:c9:ed:e7:e8:a3:04:75:9c:27:19:45:de:ea:
e3:31:3c:d7:d1:97:74:34:19:a0:34:4b:8d:93:e3:
13:87:a6:6c:2a:eb:e2:52:5f:e9:63:87:e5:78:54:
4f:e9:13:32:00:78:69:5e:5f:cc:88:ba:1f:e7:71:
60:61:0e:4e:1b:dc:5b:48:e2:13:9c:39:61:03:8b:
43:11:3b:f5:39:70:c4:37:07:88:fd:e3:2d:a0:06:
76:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BD:F0:27:7F:8E:12:E7:83:44:94:25:2F:F1:1F:E8:E6:C3:96:92
X509v3 Authority Key Identifier:
keyid:C5:D7:6C:1A:F8:FA:D2:EB:C6:34:EA:2E:23:37:0F:10:C5:C5:9D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xddsGvj60uvGNOouIzcPEMXFnQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/129532-5c88-468e-b41d-fde6fb9af230/1/xddsGvj60uvGNOouIzcPEMXFnQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:25:9d:52:21:85:27:fc:e3:56:ef:e6:9d:01:d4:28:d0:f7:
ce:7f:27:2e:5c:ef:cd:a0:74:96:93:6f:af:f8:ca:bf:75:2c:
f4:5c:e0:90:4e:7d:9a:09:79:0c:88:a5:31:70:3d:26:06:41:
26:aa:ab:16:22:33:32:27:49:fe:62:ed:2a:6b:42:f8:35:fc:
a5:45:03:21:60:6e:0c:f9:5f:9b:8d:ae:d7:f6:9b:11:73:cd:
0b:44:36:81:33:23:c7:1a:58:56:a3:0d:6e:c8:07:c7:95:0b:
b5:1c:ce:65:cc:9a:b1:d3:c5:54:56:ef:11:52:48:43:af:2c:
6d:59:75:12:82:77:d4:a3:ca:18:3e:2e:57:f0:f8:98:f9:56:
c0:70:15:ae:3c:ad:ca:9b:8e:4d:ec:c2:63:34:bd:33:bf:ca:
4f:62:73:68:ef:9b:45:2f:dc:24:c3:27:e6:53:b7:e7:10:5f:
59:62:b4:db:f7:a6:d2:31:0f:ae:66:f7:f4:51:ff:a1:35:82:
77:15:d6:78:30:c0:f7:52:a2:00:66:72:1f:c2:5d:ff:6d:51:
77:70:07:3d:86:c8:30:98:8b:6e:b5:ac:f0:51:84:7f:90:a5:
3a:ee:53:54:c1:78:42:26:79:a5:db:7b:f7:1c:d4:33:1f:aa:
6c:3d:3c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:09:21 2025 by rpki-client