Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: kWgSppe8/dfxi80iEWbajVWnKuh34sS5WqLU3GujHaY=
Subject key identifier: 1B:D3:6B:5E:55:80:DC:FF:74:EC:14:3B:06:79:01:E4:A6:E6:DE:50
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 01964F6D07342F300920E5B817ED9C59AED1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 1271
Signing time: Sat 19 Apr 2025 19:01:07 +0000
Manifest this update: Sat 19 Apr 2025 19:01:07 +0000
Manifest next update: Sun 20 Apr 2025 19:01:07 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: +gkptamG5VKoBWbipOpgDvY9t7G67g3NRhbH6ypOKt4=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:07:34:2f:30:09:20:e5:b8:17:ed:9c:59:ae:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Apr 19 19:01:07 2025 GMT
Not After : Apr 20 19:01:07 2025 GMT
Subject: CN=1bd36b5e5580dcff74ec143b067901e4a6e6de50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:0b:1f:21:08:7d:46:cc:b0:27:55:a8:0a:83:
96:12:e0:29:a5:d7:82:50:28:71:18:f2:3a:77:41:
d4:7d:6c:d2:e0:5c:9c:61:f5:3f:e5:94:6e:d0:b4:
7d:7b:03:aa:0e:ad:ee:c0:90:03:9a:95:71:f1:b6:
83:0a:be:58:26:c4:9a:04:40:80:6f:98:a0:2b:e9:
27:d8:69:c7:bd:4b:6e:f8:d5:1d:27:ec:5a:bb:dc:
ea:70:8e:df:78:55:97:50:0e:d6:d4:39:54:4e:3d:
dd:22:70:05:f8:14:55:96:26:a0:b1:c8:a6:6c:d7:
88:48:2c:ec:af:77:97:5e:f1:09:d3:56:18:36:39:
72:d2:08:e8:61:b8:3e:7f:10:aa:b3:bc:17:5e:76:
09:f5:e2:4f:95:03:d7:35:6a:54:7a:27:44:8a:3a:
5c:c5:07:27:81:f9:9b:cd:79:0e:37:21:e0:a2:34:
ac:22:f0:52:d2:e5:88:3e:ed:30:db:9d:9e:48:38:
1c:89:52:b7:64:0b:0f:74:38:48:11:d9:4e:2f:67:
72:72:73:e7:19:e9:67:70:2a:c6:62:4d:78:b5:8c:
75:b5:ab:d1:f1:90:1e:66:23:8d:a6:5c:42:67:6e:
a8:01:1e:80:9e:88:c7:af:52:13:f0:80:94:31:14:
5d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D3:6B:5E:55:80:DC:FF:74:EC:14:3B:06:79:01:E4:A6:E6:DE:50
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ae:d7:5f:be:f0:02:90:7f:9a:f1:6b:e7:b9:a6:d2:5d:9f:
36:ad:6e:a5:0b:f5:64:a5:71:9b:55:41:de:18:02:f7:cc:3c:
19:db:1b:bd:62:de:ee:69:9c:48:9e:ea:65:86:56:ad:22:20:
41:24:6d:a5:f9:09:89:88:25:3c:13:24:fa:48:51:8c:86:f9:
10:a1:91:e1:ca:da:f6:bf:5f:8a:bf:de:e2:c2:f6:fe:69:84:
62:08:9b:26:72:d2:bf:6a:43:a6:de:ab:c3:86:87:ec:4c:e9:
f6:ba:0a:8d:a8:f6:49:44:d6:85:70:c8:9b:da:c6:c8:ed:ce:
7f:e2:63:39:35:02:78:12:1b:e0:8e:7c:c5:e6:60:33:19:aa:
2a:09:2a:3a:ed:06:75:e5:ff:b7:a7:c9:4c:15:a2:bb:07:70:
f8:4c:63:91:da:8e:01:b7:bf:e1:40:4e:62:45:58:1b:7c:67:
4a:a8:55:0d:cb:bc:bc:71:a1:6b:b6:38:3b:ef:b1:8f:f0:64:
a4:38:c8:e8:be:05:77:72:54:fa:a4:b0:62:02:5a:f9:c7:23:
97:89:8a:f1:97:a6:12:ef:9a:68:68:60:4d:f5:68:80:8e:fc:
64:52:86:21:41:55:39:7a:1f:8a:01:16:e1:11:c5:5e:10:ef:
f0:6c:bb:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:15:05 2025 by rpki-client