Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: 3zSn343U8wgshRZumPBFi/jbXXr7Ux1rb+O7t2O6E9M=
Subject key identifier: 7F:2B:D4:EC:6B:D7:09:B1:75:B7:E5:DB:B3:D3:26:58:65:B6:A3:43
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 0196A4658A436628CE9B9B56E2BA9565357B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 129D
Signing time: Tue 06 May 2025 07:00:40 +0000
Manifest this update: Tue 06 May 2025 07:00:40 +0000
Manifest next update: Wed 07 May 2025 07:00:40 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: CHXA7bxeWmreAGb+cRa1DvFgxL4oNuvRfmoFkzeEIKM=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:8a:43:66:28:ce:9b:9b:56:e2:ba:95:65:35:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: May 6 07:00:40 2025 GMT
Not After : May 7 07:00:40 2025 GMT
Subject: CN=7f2bd4ec6bd709b175b7e5dbb3d3265865b6a343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:68:ba:12:8f:e9:f5:c0:87:ca:7d:e3:38:2e:
57:8a:e0:eb:f8:1e:be:c1:ef:73:7a:4f:25:fc:b4:
33:59:f6:8a:60:ac:b3:87:60:c9:89:b0:82:ed:cc:
02:79:bb:c3:09:e3:e8:59:aa:34:78:4a:d2:39:55:
78:b3:83:d4:93:45:8e:d3:38:a4:ba:a0:6e:6c:6d:
98:16:44:a6:9d:2d:cf:34:30:96:c4:0d:61:ca:6b:
c6:42:12:86:cb:38:3b:64:4c:78:5a:f6:54:7d:53:
cc:53:35:e9:b8:9f:8f:cb:e3:60:ce:f3:ec:2e:f9:
b8:0e:26:94:fa:4e:0f:d8:8b:f6:45:b0:e7:51:80:
a5:c4:e4:3e:11:0e:a1:fd:e6:30:c2:1a:c7:27:45:
78:45:3c:8e:62:14:9c:3c:c5:5f:f0:28:de:59:61:
9f:76:80:0d:57:1a:74:88:a3:14:fe:16:88:a2:b5:
41:1f:db:b0:e7:7f:2e:8d:a4:91:a4:5a:5c:a3:86:
35:b5:8c:d4:4a:cc:01:de:e4:ec:3d:a8:94:8b:51:
eb:55:a7:d8:96:b6:ff:fb:f3:a4:27:cf:b6:f1:d2:
cb:6f:12:d1:ca:2f:b4:41:0b:c5:77:98:0f:d5:08:
53:88:b5:23:03:87:6e:9a:ee:0e:70:1a:c1:6c:bc:
74:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2B:D4:EC:6B:D7:09:B1:75:B7:E5:DB:B3:D3:26:58:65:B6:A3:43
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:95:f9:fa:9e:33:5c:27:fe:01:5d:f8:83:d6:44:b1:3c:1b:
15:d1:47:d2:7f:ee:e7:c1:ae:b7:8a:bd:63:e0:c6:5f:ea:1c:
e5:45:f5:f2:bd:60:c5:35:ad:af:ef:f1:27:94:ae:2d:b3:bc:
55:27:fd:54:56:88:f9:df:8a:22:c7:4c:7a:e0:66:d5:a2:a9:
cc:f3:f7:39:b5:c4:aa:86:d8:d7:a7:e0:06:f8:f3:34:5e:d6:
f5:73:0c:2b:d8:c8:c6:20:34:6f:e0:72:c0:d4:4f:35:e6:dc:
39:ba:99:e8:15:b3:f0:c6:02:6e:a6:89:e5:ab:e4:99:f5:4a:
b4:3f:5c:69:3c:d5:18:35:e4:11:8b:5b:62:99:a3:70:6d:b2:
8a:cb:6c:0b:9c:41:9a:8e:af:39:73:c1:b3:65:89:ad:17:ba:
e1:fa:d1:dc:5e:ab:4a:90:f4:54:05:d6:a9:62:77:b1:a4:66:
4b:6a:fc:79:cc:c9:f9:1b:37:59:58:3f:61:9c:49:b6:0c:4a:
d0:ce:0c:0f:89:f9:be:06:a1:6a:7d:d4:11:57:0d:b4:a8:72:
51:99:ea:f7:39:6b:b2:77:1d:0b:72:c3:25:64:b6:d4:eb:07:
5b:3c:9b:93:1d:5b:92:66:7d:7f:7a:c9:aa:55:26:e6:6e:3d:
90:f7:74:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 13:54:57 2025 by rpki-client