Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: HAhrFc0lp5U6RKxyP9pa+WJjWNQpBZkiSQejR/477NQ=
Subject key identifier: A6:D0:BF:91:06:DC:AF:CB:1E:6D:76:4E:20:98:43:4B:80:30:4E:38
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 0197B6A0D7FFA923358F5B01B044F1FEB9BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 132B
Signing time: Sat 28 Jun 2025 13:01:23 +0000
Manifest this update: Sat 28 Jun 2025 13:01:23 +0000
Manifest next update: Sun 29 Jun 2025 13:01:23 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: sQqQ/gNJacc8NfAdJqUlVLb9SnQcQ+Xlzr+2yglQ6Bo=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:d7:ff:a9:23:35:8f:5b:01:b0:44:f1:fe:b9:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Jun 28 13:01:23 2025 GMT
Not After : Jun 29 13:01:23 2025 GMT
Subject: CN=a6d0bf9106dcafcb1e6d764e2098434b80304e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:23:ba:b7:f2:c0:d8:59:15:34:ec:f3:40:07:
4d:f8:dd:f8:87:af:ed:2f:a2:67:29:90:2b:27:d4:
f5:46:46:88:8a:08:36:78:07:49:b2:69:a4:fe:a4:
be:75:51:98:a6:9c:6c:5b:7a:26:2a:1e:fc:54:1c:
9d:63:5f:59:3d:c0:8a:b5:6e:45:6f:77:66:13:41:
65:ea:fe:af:29:6c:dd:1a:27:0d:2c:3d:6e:97:cb:
69:cc:9d:07:2e:ba:6e:8a:fe:15:7a:ab:02:c4:ca:
33:35:33:94:79:46:61:ab:1b:94:7a:ed:6c:b6:ce:
a5:78:cd:69:05:b5:1c:f2:d2:c0:fe:7b:ed:24:ed:
b9:f8:88:27:6a:ed:57:20:8f:66:31:cf:67:25:a8:
c1:50:b7:31:71:56:55:58:c2:18:a3:31:a5:64:65:
34:2f:74:19:77:63:2d:f9:cb:ef:99:9b:bb:fc:57:
4a:8d:ee:ca:85:fd:c2:66:9f:d5:55:3b:91:be:3b:
3f:0d:3d:b0:ee:f8:a6:00:75:57:3e:bc:65:2b:32:
f6:32:e2:68:f6:b2:13:d5:b3:09:a4:e2:6a:cf:48:
05:94:9e:f5:b3:5d:64:4b:d7:4c:6a:7b:ea:25:0a:
44:e7:cc:a9:11:f0:2d:0b:f3:19:40:67:87:c8:15:
45:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D0:BF:91:06:DC:AF:CB:1E:6D:76:4E:20:98:43:4B:80:30:4E:38
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:53:7e:8d:c8:9b:46:35:e9:d5:ad:19:47:29:66:bf:64:f3:
a9:e8:90:21:23:eb:6d:17:76:aa:88:6b:cc:64:0b:8e:7e:47:
b3:98:70:b3:15:90:f7:df:64:e7:72:32:72:66:7b:a0:8b:5e:
13:05:92:ca:44:86:da:cd:42:fa:3f:59:4b:96:31:4b:a5:9d:
2e:52:ce:fc:01:cd:c1:9b:68:9c:60:1e:aa:4f:2f:24:03:57:
46:16:97:89:75:41:88:e4:7b:55:ea:55:6e:fb:53:5c:31:14:
e2:31:dd:65:2e:53:9f:ed:2b:2c:62:78:1f:1a:21:92:4d:63:
6f:22:9c:01:4e:07:cb:08:78:d2:a5:07:a3:1b:03:10:fb:f3:
92:5a:33:4b:2f:33:df:2c:cb:81:bd:51:55:21:82:1d:25:99:
b5:e6:e3:ae:bb:c2:6d:cc:49:5b:a9:3a:d8:a1:93:de:d9:96:
07:75:0b:96:0b:f9:7d:65:a3:54:c9:3f:a4:3e:e6:18:60:b4:
f9:61:0f:0d:57:81:b1:91:55:52:a3:ae:b9:77:9c:8b:90:ae:
43:4e:c2:92:08:f1:51:45:0e:3f:c6:b1:4b:d1:df:35:16:92:
0b:82:02:fd:9b:11:7f:5a:70:ae:ae:8c:5d:fe:fd:ee:19:ca:
84:84:ef:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:54:07 2025 by rpki-client