Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
File: x2omXKitcnOooTChdjKD0v8bTdo.mft (raw, json)
Hash identifier: rXQ4duIb7V+k0N5lFyncOVg0JbecAePQoIcaTTMhBtA=
Subject key identifier: BB:1F:81:9E:F4:34:39:1E:22:CF:60:A2:EB:7A:42:BF:05:BE:80:85
Authority key identifier: C7:6A:26:5C:A8:AD:72:73:A8:A1:30:A1:76:32:83:D2:FF:1B:4D:DA
Certificate issuer: /CN=c76a265ca8ad7273a8a130a1763283d2ff1b4dda
Certificate serial: 019873E27C866D4C7EF925462BF3F58224A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x2omXKitcnOooTChdjKD0v8bTdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
Manifest number: 143B
Signing time: Mon 04 Aug 2025 07:01:19 +0000
Manifest this update: Mon 04 Aug 2025 07:01:19 +0000
Manifest next update: Tue 05 Aug 2025 07:01:19 +0000
Files and hashes: 1: nHRmCOgf4MDZq-VWKLaXfvZ-bz8.roa (hash: 5Mcf4NqGw75Ujcm8ujMV0dwvrhU39vCuPFd4mY9vPEw=)
2: x2omXKitcnOooTChdjKD0v8bTdo.crl (hash: B8/LDwHh8/DUh1LzocHrfYsJz7jnniCMStTttPPR8D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x2omXKitcnOooTChdjKD0v8bTdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:7c:86:6d:4c:7e:f9:25:46:2b:f3:f5:82:24:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c76a265ca8ad7273a8a130a1763283d2ff1b4dda
Validity
Not Before: Aug 4 07:01:19 2025 GMT
Not After : Aug 5 07:01:19 2025 GMT
Subject: CN=bb1f819ef434391e22cf60a2eb7a42bf05be8085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:32:a4:07:09:8e:35:8a:01:01:1d:3b:f6:e6:
9b:42:69:06:77:5f:75:61:3d:05:d2:79:ab:d0:73:
47:95:3d:6b:8a:d6:b4:1d:bd:1d:93:9c:e0:a1:31:
b5:1f:3b:12:61:84:9b:34:ef:07:6e:c6:dd:94:ab:
a4:b4:19:c0:ac:ca:b7:33:20:0e:ab:46:3a:37:cc:
e8:10:4d:52:76:8c:ec:a4:37:fe:b4:fd:ce:19:4d:
17:a6:46:e1:ee:86:40:b9:85:0c:5d:05:23:7b:11:
74:3d:8b:82:a6:fb:58:55:e3:63:a5:76:5c:27:d7:
1e:0f:3e:74:d0:05:70:d1:90:2d:e0:1a:19:69:c2:
1e:09:23:b0:6e:f5:15:96:e8:d8:49:6e:99:39:90:
50:2a:ab:9d:18:db:20:55:ac:e8:32:3a:6c:43:97:
0f:71:f0:4f:d1:bc:fd:ce:cb:d3:b8:da:cd:50:e7:
b8:98:44:57:02:bb:d4:27:51:5e:7f:f8:92:a4:3e:
81:3f:ed:b3:c1:9f:88:d7:12:9b:e5:81:b1:36:2f:
1b:57:27:20:2b:d0:01:d6:18:fe:80:98:56:bf:3a:
5f:d2:42:78:df:9a:35:9b:45:72:b9:9a:e2:40:53:
45:98:b1:1a:e8:32:4b:47:5c:30:5a:b2:ed:4b:fb:
a7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1F:81:9E:F4:34:39:1E:22:CF:60:A2:EB:7A:42:BF:05:BE:80:85
X509v3 Authority Key Identifier:
keyid:C7:6A:26:5C:A8:AD:72:73:A8:A1:30:A1:76:32:83:D2:FF:1B:4D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x2omXKitcnOooTChdjKD0v8bTdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/02c254-36bf-4c8c-98d9-7e9837a9228c/1/x2omXKitcnOooTChdjKD0v8bTdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:6d:27:0a:8e:6c:d0:89:18:4a:c2:f0:53:5b:ac:63:4e:f9:
be:11:bb:fc:4b:46:43:0b:f6:ae:32:cd:86:65:db:a3:56:75:
6c:88:a5:71:b0:89:ab:b6:41:8a:29:5d:0e:71:d2:31:5d:31:
6c:45:e2:81:92:16:13:12:bb:3d:10:8c:f2:5a:2f:8c:b6:5f:
b5:78:2f:3f:9f:7d:02:d8:8c:68:e4:97:93:83:98:19:d1:eb:
22:26:f4:93:f7:7e:8e:1f:7b:90:d6:a1:79:69:e9:f1:66:c4:
47:18:40:ce:4a:bb:be:13:37:55:96:69:b6:ff:b9:f0:ed:41:
94:bd:9f:f2:c5:69:48:eb:ba:2e:b0:84:6f:af:f4:e4:6c:73:
0f:2f:44:ad:fe:50:02:8b:a3:4b:b8:1a:a6:f6:2b:6b:fd:29:
2b:f6:41:fd:86:54:39:13:a4:50:ff:45:01:ec:c5:15:f1:29:
51:c7:9a:55:2c:49:49:6f:d5:9b:0e:81:02:bf:86:a9:0e:d6:
1e:57:cf:21:92:5b:a3:db:6a:68:17:ca:21:87:f4:99:3b:dc:
6e:65:9b:97:1f:c0:3e:7c:08:86:c4:f7:c8:62:d7:10:30:b0:
61:d8:39:09:0d:cf:a7:5f:04:66:94:c9:1d:7a:89:2d:d8:e2:
2e:09:3c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:15 2025 by rpki-client