Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
File: BOZbg9ITFfi6dXjoi984Eyld3go.mft (raw, json)
Hash identifier: ZlkfYtzlnWTbsI/XNf/PN+ltrMYC4bU4zzEQb5TeEoI=
Subject key identifier: 8C:AD:49:12:BE:9A:21:6F:A7:B0:49:7F:98:51:18:49:13:5E:B0:BD
Authority key identifier: 04:E6:5B:83:D2:13:15:F8:BA:75:78:E8:8B:DF:38:13:29:5D:DE:0A
Certificate issuer: /CN=04e65b83d21315f8ba7578e88bdf3813295dde0a
Certificate serial: 01964EC7853F967A8B406F389785EE40704F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
Manifest number: 0C17
Signing time: Sat 19 Apr 2025 16:00:20 +0000
Manifest this update: Sat 19 Apr 2025 16:00:20 +0000
Manifest next update: Sun 20 Apr 2025 16:00:20 +0000
Files and hashes: 1: BOZbg9ITFfi6dXjoi984Eyld3go.crl (hash: yqMeeZm8Sonvecsl9TQ4isBYdbVjk3Sjji1KcJP+geA=)
2: E9Q22GIdMyoqpYS3_A3Sv4bLQrU.roa (hash: U3UIBvBEgw3rK3s+0sDC6RFjCDwgftn5pIAbSSrZ/Fw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:85:3f:96:7a:8b:40:6f:38:97:85:ee:40:70:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e65b83d21315f8ba7578e88bdf3813295dde0a
Validity
Not Before: Apr 19 16:00:20 2025 GMT
Not After : Apr 20 16:00:20 2025 GMT
Subject: CN=8cad4912be9a216fa7b0497f98511849135eb0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4b:5e:a5:17:f7:19:57:c4:3e:f3:a9:d0:62:
11:48:ae:15:cb:4c:9a:ff:5f:3d:a7:33:33:77:cf:
34:ba:02:59:9b:fc:c9:58:18:a6:98:29:12:2b:3d:
b3:51:5a:56:9b:2c:69:cf:0d:ab:93:a9:f8:c3:5d:
4e:6e:44:81:6d:70:a4:3d:a7:7b:57:f7:11:64:68:
75:42:06:4a:a3:5a:b0:ec:e9:84:e7:33:54:e0:a1:
16:af:83:27:1a:9e:29:94:20:06:cf:88:4d:a6:4c:
a6:0f:c7:aa:1b:61:b2:1d:54:4a:28:24:28:a8:55:
6d:3b:0e:9d:4b:52:07:94:d8:7d:eb:00:e3:87:9a:
bb:19:4f:9e:74:4b:01:07:93:0a:4c:cc:0e:05:ee:
a6:f8:f4:71:51:b7:cc:7b:25:bc:53:13:f1:6d:4e:
63:24:21:30:43:5a:f2:c2:ae:8e:7e:1c:6f:07:b5:
7c:d2:ff:2c:0e:82:f8:27:7a:7d:69:eb:9d:79:b2:
e2:d0:ad:3f:0a:64:7e:94:bc:e7:0d:eb:e3:07:82:
f7:c5:1d:31:51:21:b3:4d:82:46:a8:f2:d9:09:a4:
5b:b8:4e:52:22:6e:18:77:28:8b:c3:a3:d8:55:aa:
f9:18:bc:4c:2a:88:44:4b:4c:0c:7c:ef:83:2a:cc:
1d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:AD:49:12:BE:9A:21:6F:A7:B0:49:7F:98:51:18:49:13:5E:B0:BD
X509v3 Authority Key Identifier:
keyid:04:E6:5B:83:D2:13:15:F8:BA:75:78:E8:8B:DF:38:13:29:5D:DE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:56:a8:8d:ee:be:b2:70:5b:10:ad:5c:bd:32:e2:f5:1a:b1:
b7:7e:2c:fc:1e:38:82:82:cb:46:5e:01:1c:64:2f:ed:0b:b9:
88:e3:ee:72:00:67:59:6b:b2:b3:06:5f:64:80:d1:1a:32:bc:
3d:6f:56:57:a3:cc:cf:7d:d0:ee:cc:ee:6f:7e:85:cc:da:25:
b0:f0:51:aa:10:e4:43:00:73:3f:b7:3a:b1:e6:59:bb:0e:85:
bf:f4:8f:c0:24:08:8f:eb:1c:ce:03:84:08:da:cf:2d:2e:40:
ee:c5:f2:97:2c:fe:ba:d9:f7:14:bc:6f:db:ef:e3:9a:bb:3e:
aa:d3:cf:42:27:19:91:79:61:eb:73:d2:53:d6:ed:db:91:f8:
e1:98:a3:e8:c9:ab:ac:1e:c2:61:1c:f0:6e:17:03:d2:8b:69:
a7:c4:30:33:0c:a9:09:26:73:16:fd:60:71:b5:ea:02:51:6a:
c3:8c:80:d8:a8:0c:01:8c:2c:3a:51:8b:8a:59:65:49:f9:57:
80:8c:2c:29:8e:4e:63:f2:38:ec:88:3a:9b:9e:24:4c:a9:98:
dc:6e:8c:82:84:ff:d7:e0:10:f5:58:e5:df:9b:58:4e:d0:bc:
de:30:e7:3d:a1:70:1a:ae:46:76:2c:e6:8b:ae:76:9b:87:13:
07:27:15:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:36:27 2025 by rpki-client