Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
File: BOZbg9ITFfi6dXjoi984Eyld3go.mft (raw, json)
Hash identifier: AmhWT+hP/1/iv+k5+hbSbfGhYD2Vp2n5DvyWEFmYjcU=
Subject key identifier: 99:02:8B:7A:09:6D:72:E3:DC:7B:C5:D1:FB:18:8C:DE:7C:45:DE:06
Authority key identifier: 04:E6:5B:83:D2:13:15:F8:BA:75:78:E8:8B:DF:38:13:29:5D:DE:0A
Certificate issuer: /CN=04e65b83d21315f8ba7578e88bdf3813295dde0a
Certificate serial: 019844E38273583123F8025A132C76D4AD0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
Manifest number: 0D1B
Signing time: Sat 26 Jul 2025 04:00:17 +0000
Manifest this update: Sat 26 Jul 2025 04:00:17 +0000
Manifest next update: Sun 27 Jul 2025 04:00:17 +0000
Files and hashes: 1: BOZbg9ITFfi6dXjoi984Eyld3go.crl (hash: wA6U9gecC0DTdkrR7KZxFB8idmzkd3K/CudMcMbrFw8=)
2: E9Q22GIdMyoqpYS3_A3Sv4bLQrU.roa (hash: U3UIBvBEgw3rK3s+0sDC6RFjCDwgftn5pIAbSSrZ/Fw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:e3:82:73:58:31:23:f8:02:5a:13:2c:76:d4:ad:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e65b83d21315f8ba7578e88bdf3813295dde0a
Validity
Not Before: Jul 26 04:00:17 2025 GMT
Not After : Jul 27 04:00:17 2025 GMT
Subject: CN=99028b7a096d72e3dc7bc5d1fb188cde7c45de06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d6:26:42:a6:44:4a:9f:3b:a0:ce:00:2f:11:
ee:69:71:bd:b4:11:bb:3e:b0:16:fa:b4:d7:f1:82:
6c:00:a2:16:61:0f:e8:d7:c5:83:94:37:e0:e6:22:
28:ef:9f:78:7c:e9:16:75:d3:c3:1b:1d:b1:a9:26:
52:b4:ae:1d:70:ef:e9:c3:2f:fa:5b:1a:0d:af:2a:
d7:10:2a:0b:cc:5b:ca:5c:84:a9:86:07:5f:96:33:
91:f5:92:7d:a9:48:23:1b:79:c8:63:b1:bf:3d:9f:
63:82:f3:7f:95:31:a8:82:3b:e2:f8:ec:6f:79:5b:
8b:fd:a9:44:ff:a8:2f:2c:a2:4d:df:85:ba:18:7f:
99:bb:a2:91:b6:c9:cd:fa:51:3f:89:a5:7c:74:30:
d0:f3:a0:38:bb:e1:08:3b:6f:69:78:c3:db:c1:2e:
5c:53:ca:d6:6d:3b:59:01:9f:a5:69:78:cb:2c:93:
cb:8f:f3:ac:d6:0c:5c:39:3a:f2:42:9c:56:ff:a1:
a8:a0:00:1c:9b:55:fc:cf:97:fc:6b:ae:e8:69:3b:
71:72:72:2e:cf:ee:2f:78:98:eb:48:51:02:07:2d:
e6:90:5b:04:9d:e5:13:be:53:1b:e3:60:da:42:26:
a4:2a:24:03:d8:17:28:29:8a:39:a7:a0:66:a2:40:
dc:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:02:8B:7A:09:6D:72:E3:DC:7B:C5:D1:FB:18:8C:DE:7C:45:DE:06
X509v3 Authority Key Identifier:
keyid:04:E6:5B:83:D2:13:15:F8:BA:75:78:E8:8B:DF:38:13:29:5D:DE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOZbg9ITFfi6dXjoi984Eyld3go.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/cddb61-12a0-46bd-9fb7-3e781dc1e7e9/1/BOZbg9ITFfi6dXjoi984Eyld3go.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:07:9c:d4:be:3e:3c:42:c8:5a:d0:7b:b5:27:1b:8c:e8:d8:
62:f4:b4:c7:bc:b5:24:fc:58:df:87:81:d4:52:27:3e:f0:96:
f0:82:37:93:4b:4a:f1:71:25:85:22:b0:4c:ad:07:e3:48:8a:
98:49:e7:d8:5e:1e:35:7c:4e:49:cd:4e:c8:91:b4:1c:00:7d:
da:52:ed:af:43:ca:f4:56:ee:1f:9d:58:ba:47:2d:9b:6a:fa:
ed:d8:43:b1:3d:ab:a8:de:a5:51:70:ef:86:29:41:d2:2e:08:
2e:7e:13:15:33:72:1d:8a:99:7d:36:05:68:cb:a3:d9:03:7e:
24:fa:2d:f2:75:37:2c:5a:a1:4f:44:1a:aa:ba:c3:f6:99:f8:
0d:6f:f3:81:22:00:a5:aa:c2:08:ab:de:1f:71:f0:5f:26:d5:
0a:be:a9:3b:42:e7:84:82:6b:c3:49:b0:0c:8d:cd:81:e0:5d:
83:11:66:d9:fa:55:32:7c:b0:30:93:9d:b7:2f:3a:f7:f3:0a:
f1:13:0d:ec:e5:13:7d:65:86:05:cc:2d:e4:8d:a9:86:c2:b8:
a6:7a:52:6e:9a:27:97:80:b5:cf:59:7f:c3:72:0e:15:72:50:
e6:9e:5e:1c:a9:31:ae:bd:3b:da:b5:53:6f:19:86:c9:02:48:
02:03:45:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhE44JzWDEj+AJaEyx21K0MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZTY1YjgzZDIxMzE1ZjhiYTc1NzhlODhiZGYzODEzMjk1
ZGRlMGEwHhcNMjUwNzI2MDQwMDE3WhcNMjUwNzI3MDQwMDE3WjAzMTEwLwYDVQQD
Eyg5OTAyOGI3YTA5NmQ3MmUzZGM3YmM1ZDFmYjE4OGNkZTdjNDVkZTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNYmQqZESp87oM4ALxHuaXG9tBG7
PrAW+rTX8YJsAKIWYQ/o18WDlDfg5iIo7594fOkWddPDGx2xqSZStK4dcO/pwy/6
WxoNryrXECoLzFvKXISphgdfljOR9ZJ9qUgjG3nIY7G/PZ9jgvN/lTGogjvi+Oxv
eVuL/alE/6gvLKJN34W6GH+Zu6KRtsnN+lE/iaV8dDDQ86A4u+EIO29peMPbwS5c
U8rWbTtZAZ+laXjLLJPLj/Os1gxcOTryQpxW/6GooAAcm1X8z5f8a67oaTtxcnIu
z+4veJjrSFECBy3mkFsEneUTvlMb42DaQiakKiQD2BcoKYo5p6BmokDcJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJkCi3oJbXLj3HvF0fsYjN58Rd4GMB8GA1UdIwQY
MBaAFATmW4PSExX4unV46IvfOBMpXd4KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk9aYmc5SVRGZmk2ZFhqb2k5ODRFeWxkM2dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9jZGRiNjEtMTJhMC00NmJkLTlmYjct
M2U3ODFkYzFlN2U5LzEvQk9aYmc5SVRGZmk2ZFhqb2k5ODRFeWxkM2dvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9jZGRiNjEtMTJhMC00NmJkLTlmYjctM2U3ODFkYzFlN2U5
LzEvQk9aYmc5SVRGZmk2ZFhqb2k5ODRFeWxkM2dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALgec1L4+
PELIWtB7tScbjOjYYvS0x7y1JPxY34eB1FInPvCW8II3k0tK8XElhSKwTK0H40iK
mEnn2F4eNXxOSc1OyJG0HAB92lLtr0PK9FbuH51Yukctm2r67dhDsT2rqN6lUXDv
hilB0i4ILn4TFTNyHYqZfTYFaMuj2QN+JPot8nU3LFqhT0QaqrrD9pn4DW/zgSIA
parCCKveH3HwXybVCr6pO0LnhIJrw0mwDI3NgeBdgxFm2fpVMnywMJOdty869/MK
8RMN7OUTfWWGBcwt5I2phsK4pnpSbponl4C1z1l/w3IOFXJQ5p5eHKkxrr072rVT
bxmGyQJIAgNFUQ==
-----END CERTIFICATE-----
Generated at Sat Jul 26 11:31:35 2025 by rpki-client