Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
File: XigJUGU6fsWMUzhdALOB77tGWCQ.mft (raw, json)
Hash identifier: 1HBBfgi1bPibOFxXNy2Y2+6/Pl7rOznidgD1EuQgR2A=
Subject key identifier: DD:8A:5A:4A:5C:C7:F1:62:A9:28:02:2F:C1:75:4B:6B:5C:D3:02:31
Authority key identifier: 5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
Certificate issuer: /CN=5e280950653a7ec58c53385d00b381efbb465824
Certificate serial: 0197B77C60A097B9616CEE44BFFD2F1BD51F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
Manifest number: 0576
Signing time: Sat 28 Jun 2025 17:01:11 +0000
Manifest this update: Sat 28 Jun 2025 17:01:11 +0000
Manifest next update: Sun 29 Jun 2025 17:01:11 +0000
Files and hashes: 1: TbP72HU__x5-xpUX6PI_i9iyDaM.roa (hash: FLkmCrV+1GGkGMAjoDFB0RSF/lM4teoeIsYHwGZQivI=)
2: U5LzRtt7TqgwcmDyAykCjfC_tyg.roa (hash: MnSBkpXKCh2/fnPZQ+yyW+as55btZcpHuSExX+Fr9KQ=)
3: XigJUGU6fsWMUzhdALOB77tGWCQ.crl (hash: 8ZWiuCaOnOi3w05Lc7MGzNjEdGRixyU5RETdUBG9zQU=)
4: XsQzypEDi3dbORi7Sjru6BV7874.roa (hash: kUYaLmJEoY+QPfzf/QKKUFqO5UN/o9EcoVpI3bOIxPI=)
5: ihdmZnPFfRQouiDEX9hoP7FnJXY.roa (hash: vMOPJDVg/5XoKEVMMHXuz77Sx41YI4RzrWjRsAiZbwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:60:a0:97:b9:61:6c:ee:44:bf:fd:2f:1b:d5:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e280950653a7ec58c53385d00b381efbb465824
Validity
Not Before: Jun 28 17:01:11 2025 GMT
Not After : Jun 29 17:01:11 2025 GMT
Subject: CN=dd8a5a4a5cc7f162a928022fc1754b6b5cd30231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:93:f0:2c:e4:ab:63:6b:f1:85:24:b5:25:87:
47:9e:3b:3f:0c:32:cd:85:cf:51:ed:64:7a:05:5a:
59:80:ee:6a:9d:5e:e6:75:d8:dc:c4:f1:4f:0c:39:
5e:f5:71:f4:1a:21:b1:80:31:fe:01:d1:48:8d:42:
57:75:5e:23:f1:2e:ab:ef:c7:81:1a:1c:68:b1:ba:
7f:b9:70:ef:e2:1a:ad:de:a9:29:2b:42:1f:ed:90:
f4:a0:7e:41:21:9f:52:4c:3d:dc:e2:14:48:c9:81:
fa:04:7b:34:7e:9a:fd:97:cd:3a:13:b2:55:d4:d3:
40:a7:60:7c:25:b9:24:3d:7d:90:5b:b0:8f:8b:4a:
d1:db:01:f6:84:81:44:e7:42:bc:69:38:71:4d:73:
0d:ad:a6:6f:6a:89:65:99:2c:da:75:83:8c:b5:50:
ef:cd:49:ab:e9:cb:8e:a3:81:b0:b6:e2:ff:0c:91:
64:f2:ae:e7:14:24:0e:63:5e:69:2f:ea:b4:bc:32:
db:93:c9:1d:ef:5a:33:89:d4:aa:c0:64:84:63:3d:
41:09:c9:92:23:7d:27:6d:6b:99:45:97:34:91:68:
42:28:20:6f:7f:7c:b9:a5:0f:28:2f:cd:08:b5:e5:
47:51:6a:51:6b:d1:f8:59:c3:5c:a9:e2:0a:36:b2:
d9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8A:5A:4A:5C:C7:F1:62:A9:28:02:2F:C1:75:4B:6B:5C:D3:02:31
X509v3 Authority Key Identifier:
keyid:5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:5b:d8:e7:96:56:af:ad:51:02:7e:cf:0e:f1:b5:c4:d6:76:
f9:8d:1b:35:f4:08:71:b1:69:0d:8c:02:05:35:13:c0:83:cd:
04:86:e7:e4:03:29:69:9c:a3:71:dc:73:a0:8a:5f:39:49:81:
22:d6:a9:99:e1:29:c5:5e:0d:98:46:c0:36:4b:84:d6:a3:4c:
4a:b9:c5:34:f8:a9:16:6d:0e:22:b4:6b:84:76:f2:b4:a8:4d:
65:3d:60:b2:5f:10:4d:68:d2:95:90:c7:92:d9:a6:09:6e:7e:
65:80:bd:d1:bd:92:97:2c:25:19:48:a3:de:58:3c:8b:5d:1d:
4e:0c:66:2d:2c:c9:e3:b5:90:69:c0:ec:86:ce:e5:72:1c:5d:
b3:bb:a5:bd:83:96:d8:06:db:9b:15:8d:14:1a:ba:ee:a1:28:
15:11:dd:94:6f:04:e0:ee:3f:77:cc:fe:f8:a7:9d:84:ae:01:
1a:65:50:2e:82:67:f6:2e:43:e6:7e:cf:83:6c:4f:3b:04:a5:
67:8b:5d:ab:58:a5:ae:30:8e:06:7c:00:63:31:7f:5a:9a:a2:
62:b4:8f:ba:73:df:22:d3:2a:01:79:39:bc:1f:07:8e:2c:d7:
ae:ca:23:06:fb:ba:49:5e:ab:e4:85:d4:35:0c:9b:07:1b:83:
b9:f0:15:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:57:03 2025 by rpki-client