Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: s0WH1QEmHZcpAYEy6A59SXSdE/YSTHvYl7zkVT6i1kE=
Subject key identifier: 5C:FB:7B:93:08:49:53:9A:46:4B:00:57:CD:09:AC:B3:88:87:91:E1
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 01974A7B620916BB8A14407C2D590BFDE109
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 12F3
Signing time: Sat 07 Jun 2025 13:01:29 +0000
Manifest this update: Sat 07 Jun 2025 13:01:29 +0000
Manifest next update: Sun 08 Jun 2025 13:01:29 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: DRbF948Ox+J1tWBU6DudZgf7h5P0ufWwb1X1LnKrPWs=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:62:09:16:bb:8a:14:40:7c:2d:59:0b:fd:e1:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Jun 7 13:01:29 2025 GMT
Not After : Jun 8 13:01:29 2025 GMT
Subject: CN=5cfb7b930849539a464b0057cd09acb3888791e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c0:a6:8f:f4:e8:ec:46:03:9e:ac:65:49:c1:
16:47:ff:79:18:3c:f1:5f:0c:a9:bb:5d:99:cf:4b:
b6:a3:97:01:2e:41:d8:9b:f5:c5:23:74:11:1c:9e:
f5:d4:69:80:02:17:65:d4:d6:75:1d:e9:bb:36:b8:
55:0c:c7:83:c2:08:e7:80:7a:ac:7d:f7:3d:a7:21:
bd:c3:72:f7:2b:4a:2d:4a:a3:ed:61:b9:8a:e3:81:
3a:59:31:2b:06:e5:b4:f2:0a:3d:99:bc:a2:bc:b3:
99:d0:87:83:d4:54:dc:71:16:00:94:36:30:79:e9:
fd:4f:f6:17:62:91:0a:53:e6:93:25:5b:4f:1a:3c:
31:2b:3e:83:5b:0e:a1:7c:47:a1:e6:72:e1:1d:71:
50:66:b5:3f:f5:d2:55:7c:d4:ec:86:b9:dc:01:94:
62:09:92:e6:67:3e:3f:b1:9c:94:82:bc:50:c8:c8:
0b:63:59:38:55:79:a3:77:3e:d9:92:26:87:93:cd:
30:e3:94:32:d0:9d:29:6f:b9:ee:24:3e:7a:d6:eb:
af:b0:d5:c9:3f:d5:be:da:e0:c5:b7:d6:12:d9:0d:
5d:e6:24:eb:be:6c:2e:0c:b6:44:0c:a6:ae:4c:32:
40:86:a3:71:39:f1:40:83:fe:57:6b:0f:b8:29:45:
58:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FB:7B:93:08:49:53:9A:46:4B:00:57:CD:09:AC:B3:88:87:91:E1
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:6b:bb:5d:e4:44:fd:26:85:c6:6d:52:a7:c7:84:f6:b1:93:
e3:fe:f7:70:92:a0:fd:a2:db:88:8b:21:3b:2c:32:51:50:92:
6b:6b:2e:84:e9:10:bd:56:fe:ca:e5:69:a7:08:e4:c0:0c:26:
cf:07:af:e0:80:a3:d0:93:88:f3:c6:84:ac:6e:03:7c:c4:20:
2a:18:ba:5d:55:75:e8:b2:37:aa:24:f7:51:e5:71:aa:d3:72:
e0:71:b3:34:ff:f8:7f:42:86:be:d9:45:87:02:5c:6b:e7:9f:
27:ea:74:4a:db:db:ca:ff:b1:ca:ad:fa:d4:0c:fe:b6:c9:29:
8c:73:eb:49:85:ab:41:74:62:6e:75:dd:c4:c7:01:74:1f:3e:
19:11:bb:50:4c:af:4c:c3:c8:7f:54:32:c9:90:09:59:4c:d2:
e3:87:27:f4:1d:cb:72:10:2e:bd:c9:a6:8e:e6:51:8b:24:4f:
44:2f:f5:00:00:39:05:18:a4:14:ac:10:55:a0:3f:d3:33:53:
3e:a8:d9:04:67:ac:ae:25:6b:fc:ad:75:d3:bc:06:1e:6b:8f:
07:c2:03:1b:8f:a2:48:8f:65:68:8c:08:dd:fb:38:64:4d:0a:
d5:fb:e3:48:6c:a5:13:9a:3f:49:dd:d7:7d:e9:cd:19:e5:ef:
dd:22:c6:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:55:05 2025 by rpki-client