Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: SfUCerydejrv6DBymAxl1AwSnxd+VTPmlhBY0q5W8xM=
Subject key identifier: 1D:E7:DF:FF:78:F0:D1:87:E0:92:5A:9D:D6:97:8C:E1:1D:6F:8E:81
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019854FC0A5FC4D04D94AAB2B99DDB2646EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 137D
Signing time: Tue 29 Jul 2025 07:01:00 +0000
Manifest this update: Tue 29 Jul 2025 07:01:00 +0000
Manifest next update: Wed 30 Jul 2025 07:01:00 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: NqMSZ4b11LUtvbbyJMZDPWi8MGZe6khSGlXwZa9oVkA=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 07:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:fc:0a:5f:c4:d0:4d:94:aa:b2:b9:9d:db:26:46:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Jul 29 07:01:00 2025 GMT
Not After : Jul 30 07:01:00 2025 GMT
Subject: CN=1de7dfff78f0d187e0925a9dd6978ce11d6f8e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ea:0f:b5:db:cf:b7:40:40:a5:c6:6e:f5:db:
ee:3b:f8:ac:d9:dd:b7:38:67:ef:d7:5a:78:b8:b4:
f6:7f:e4:9a:ed:09:38:fb:82:e5:f3:22:a6:6b:9e:
d6:cc:87:18:ba:e8:e3:e7:6b:b3:f3:c0:ef:65:dd:
ff:ca:a4:dc:f5:c9:0c:11:0a:d0:66:5a:0a:ad:bc:
0e:2d:0c:71:37:3d:78:8b:21:50:e6:ce:29:e4:7e:
99:a4:ce:b2:79:d1:43:dc:4f:d5:43:10:2b:58:a0:
61:2f:a4:98:1d:94:fb:24:6c:98:34:39:43:06:5e:
d9:a7:50:75:7f:37:30:ac:08:96:1c:c0:f1:5e:64:
d9:dc:bb:ea:13:33:51:e4:55:a5:30:c3:9e:28:fc:
5c:4e:3f:f2:cb:1f:42:78:30:27:35:19:87:c8:56:
c3:34:c6:10:46:4c:3f:61:de:c2:80:5a:b2:72:ab:
7e:0c:54:b1:6a:bb:ef:c9:97:9f:97:c4:99:18:b4:
37:d2:db:23:08:59:3b:9f:59:f7:20:96:9e:8b:38:
9b:35:14:0a:bf:e5:2a:f9:38:a3:9c:66:29:da:d1:
e3:91:45:fb:22:7a:0c:99:d6:8d:ed:91:c2:c7:f0:
b3:5d:aa:e4:50:ad:1b:bd:42:e3:5b:30:94:15:ed:
43:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E7:DF:FF:78:F0:D1:87:E0:92:5A:9D:D6:97:8C:E1:1D:6F:8E:81
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:de:ae:a2:13:ac:d7:a5:aa:f6:84:93:14:6f:38:bc:42:0d:
0b:ea:9f:db:dd:71:ba:d6:66:0e:9e:66:94:ec:b2:f1:ab:3d:
97:e9:1f:d3:bb:b0:d8:55:b1:58:8b:87:a3:2c:14:c7:3d:62:
a2:59:f3:56:2f:a3:e1:e4:b6:e0:67:ae:47:d9:d0:dc:12:13:
57:36:d6:b4:53:f2:1e:03:a5:57:8d:29:00:c9:63:65:ef:ad:
62:7c:85:7d:29:18:cf:ae:46:e8:38:da:17:e4:43:e0:b8:ae:
5b:d9:54:09:ec:00:ae:53:68:e9:33:62:42:cf:1e:eb:6b:29:
07:ac:4c:0e:e3:1e:19:2d:b2:6b:4d:46:82:cf:02:c8:93:de:
31:d0:19:53:0b:9f:d5:8a:91:a5:9e:d6:e7:a6:91:36:ab:d4:
ec:57:3d:b9:eb:34:9b:20:a5:e4:5e:9b:d3:33:1d:b1:81:48:
e3:27:16:de:d1:d8:6d:49:b0:41:cb:a9:45:aa:a4:2e:03:1f:
33:e2:91:72:52:f2:f6:20:79:b3:6a:d6:41:c8:37:35:33:13:
1c:54:15:4a:d9:04:d8:84:cb:f4:74:e7:10:a8:e6:42:6e:fe:
ce:fd:55:b4:d4:21:a7:4a:1b:4f:34:1a:9b:fc:4d:5e:66:7e:
12:ef:3c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 14:36:22 2025 by rpki-client