Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
File: x2omXKitcnOooTChdjKD0v8bTdo.mft (raw, json)
Hash identifier: 53r7zdSDlFyh/2Lxtaway5ENYa3zB3HHQWcDAZszg8A=
Subject key identifier: BB:92:38:BE:FB:20:7F:18:30:88:3D:77:11:52:10:D8:C7:AB:8B:45
Authority key identifier: C7:6A:26:5C:A8:AD:72:73:A8:A1:30:A1:76:32:83:D2:FF:1B:4D:DA
Certificate issuer: /CN=c76a265ca8ad7273a8a130a1763283d2ff1b4dda
Certificate serial: 0196839157464A03CD49DC94D2F9FAAD81B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x2omXKitcnOooTChdjKD0v8bTdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
Manifest number: 133A
Signing time: Tue 29 Apr 2025 22:01:02 +0000
Manifest this update: Tue 29 Apr 2025 22:01:02 +0000
Manifest next update: Wed 30 Apr 2025 22:01:02 +0000
Files and hashes: 1: nHRmCOgf4MDZq-VWKLaXfvZ-bz8.roa (hash: 5Mcf4NqGw75Ujcm8ujMV0dwvrhU39vCuPFd4mY9vPEw=)
2: x2omXKitcnOooTChdjKD0v8bTdo.crl (hash: eKjBABwJdHgNWzDjau/E/7iYkZiJX23m7IPgfhJZxcA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x2omXKitcnOooTChdjKD0v8bTdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:57:46:4a:03:cd:49:dc:94:d2:f9:fa:ad:81:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c76a265ca8ad7273a8a130a1763283d2ff1b4dda
Validity
Not Before: Apr 29 22:01:02 2025 GMT
Not After : Apr 30 22:01:02 2025 GMT
Subject: CN=bb9238befb207f1830883d77115210d8c7ab8b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:35:73:79:b2:2f:0f:68:62:ff:fe:00:32:ee:
10:b3:6c:9f:c4:fe:23:22:e1:66:76:3f:7c:9f:e1:
f0:c9:79:86:94:22:3d:30:16:58:3c:c2:6f:64:a5:
c7:49:5e:77:34:b2:09:81:1e:e3:28:97:bf:24:1e:
05:ce:ef:aa:2d:22:2a:ae:28:22:5c:ff:f2:2e:0b:
ad:c3:1f:ad:bb:15:21:9a:11:de:0b:8b:b5:6a:3e:
1a:a6:ab:93:e1:cf:a6:3e:7b:f6:1e:5a:1f:45:92:
c0:a5:13:e7:1e:8f:7d:04:ba:43:98:57:15:cb:bf:
f7:0f:da:66:31:91:66:5c:aa:82:4d:02:8f:80:f3:
d5:a3:1a:05:e8:84:ef:61:59:6e:f5:76:7c:a1:30:
c1:3b:d2:c9:af:83:ee:e8:86:05:98:ba:54:6b:55:
9d:1a:7e:d9:35:6a:12:f6:67:ce:1b:69:f2:91:7b:
7c:90:50:56:05:3f:c4:75:80:25:c2:11:b9:38:58:
fa:0c:e6:10:5e:0b:c5:b0:e9:ea:c9:bb:fc:bd:4f:
35:88:d0:ba:a3:ee:82:48:ef:35:15:1d:f4:ec:9b:
58:1e:f2:21:34:6b:cc:92:16:59:60:3f:69:40:ad:
16:22:35:80:8b:ea:39:a1:e4:42:b6:b3:b1:39:5d:
37:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:92:38:BE:FB:20:7F:18:30:88:3D:77:11:52:10:D8:C7:AB:8B:45
X509v3 Authority Key Identifier:
keyid:C7:6A:26:5C:A8:AD:72:73:A8:A1:30:A1:76:32:83:D2:FF:1B:4D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x2omXKitcnOooTChdjKD0v8bTdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:28:9c:3c:1d:72:ac:fa:10:92:e3:33:87:32:7c:53:6b:8e:
2a:1a:1c:13:58:bd:ba:ab:bc:5a:bd:4d:de:5c:60:83:ee:0d:
ed:8f:a7:51:dc:28:3b:1c:a0:b9:06:52:53:c9:ed:d4:3e:a6:
29:8b:a9:2c:d5:d9:5b:4c:b2:02:ec:44:22:2a:4c:d3:ec:8a:
7f:03:cf:0d:b0:98:2d:20:c2:c4:7c:0c:31:64:17:7c:3e:c6:
04:93:c7:14:5b:0f:7c:ae:04:43:75:ea:06:5a:a7:c0:69:ca:
65:7b:83:17:9b:08:f0:44:b9:df:ae:2a:57:9e:0e:f1:b1:1a:
9c:b4:73:e1:a2:e2:71:1e:ab:1a:8f:dc:e3:02:8c:9f:f3:58:
e5:7f:e2:d3:b7:f6:34:1a:7f:84:0a:da:73:20:9d:16:60:03:
e6:3f:31:86:64:85:5d:70:59:4d:c9:63:57:b0:a8:26:61:76:
07:94:82:35:93:f0:98:63:cb:1a:7d:24:72:0e:0d:f0:bf:23:
53:ea:d6:d9:3f:8b:63:d3:67:6e:c4:e6:85:41:e9:04:31:0d:
30:3a:e4:45:db:f3:98:9b:88:f3:01:e2:a3:ec:ce:5a:73:47:
c7:6f:a9:6c:63:fb:80:27:e3:aa:06:da:b6:6a:71:f1:3f:f2:
b2:bd:ad:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaDkVdGSgPNSdyU0vn6rYGyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NmEyNjVjYThhZDcyNzNhOGExMzBhMTc2MzI4M2QyZmYx
YjRkZGEwHhcNMjUwNDI5MjIwMTAyWhcNMjUwNDMwMjIwMTAyWjAzMTEwLwYDVQQD
EyhiYjkyMzhiZWZiMjA3ZjE4MzA4ODNkNzcxMTUyMTBkOGM3YWI4YjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTVzebIvD2hi//4AMu4Qs2yfxP4j
IuFmdj98n+HwyXmGlCI9MBZYPMJvZKXHSV53NLIJgR7jKJe/JB4Fzu+qLSIqrigi
XP/yLgutwx+tuxUhmhHeC4u1aj4apquT4c+mPnv2HlofRZLApRPnHo99BLpDmFcV
y7/3D9pmMZFmXKqCTQKPgPPVoxoF6ITvYVlu9XZ8oTDBO9LJr4Pu6IYFmLpUa1Wd
Gn7ZNWoS9mfOG2nykXt8kFBWBT/EdYAlwhG5OFj6DOYQXgvFsOnqybv8vU81iNC6
o+6CSO81FR307JtYHvIhNGvMkhZZYD9pQK0WIjWAi+o5oeRCtrOxOV03swIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLuSOL77IH8YMIg9dxFSENjHq4tFMB8GA1UdIwQY
MBaAFMdqJlyorXJzqKEwoXYyg9L/G03aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDJvbVhLaXRjbk9vb1RDaGRqS0QwdjhiVGRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wMmMyNTQtMzZiZi00YzhjLTk4ZDkt
N2U5ODM3YTkyMjhjLzEveDJvbVhLaXRjbk9vb1RDaGRqS0QwdjhiVGRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8wMmMyNTQtMzZiZi00YzhjLTk4ZDktN2U5ODM3YTkyMjhj
LzEveDJvbVhLaXRjbk9vb1RDaGRqS0QwdjhiVGRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATiicPB1y
rPoQkuMzhzJ8U2uOKhocE1i9uqu8Wr1N3lxgg+4N7Y+nUdwoOxyguQZSU8nt1D6m
KYupLNXZW0yyAuxEIipM0+yKfwPPDbCYLSDCxHwMMWQXfD7GBJPHFFsPfK4EQ3Xq
BlqnwGnKZXuDF5sI8ES5364qV54O8bEanLRz4aLicR6rGo/c4wKMn/NY5X/i07f2
NBp/hAracyCdFmAD5j8xhmSFXXBZTcljV7CoJmF2B5SCNZPwmGPLGn0kcg4N8L8j
U+rW2T+LY9NnbsTmhUHpBDENMDrkRdvzmJuI8wHio+zOWnNHx2+pbGP7gCfjqgba
tmpx8T/ysr2tIA==
-----END CERTIFICATE-----
Generated at Wed Apr 30 08:14:09 2025 by rpki-client