Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: hCzBEM6ACtgUSuFVhmPv6vzQjGbWA0ndtKJK05k8Uxo=
Subject key identifier: A2:1E:DA:0E:B7:D3:68:28:E3:19:06:EB:A0:21:11:0E:A5:F6:C9:7B
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 0199FDDA5B677BD42278E645ECDA32DAFD23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 1459
Signing time: Sun 19 Oct 2025 19:02:49 +0000
Manifest this update: Sun 19 Oct 2025 19:02:49 +0000
Manifest next update: Mon 20 Oct 2025 19:02:49 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: H0wzVcWLCwwD17lCCs2u/lRBgEq6UQL+LAypu8Ny4yA=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:5b:67:7b:d4:22:78:e6:45:ec:da:32:da:fd:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Oct 19 19:02:49 2025 GMT
Not After : Oct 20 19:02:49 2025 GMT
Subject: CN=a21eda0eb7d36828e31906eba021110ea5f6c97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:77:4a:9e:93:f9:2f:be:b4:76:bf:b7:2c:d5:
4e:f0:54:3d:45:3e:16:28:fe:ff:cb:73:38:98:b5:
17:b0:76:ab:6f:04:5e:0d:a2:58:9e:b3:f8:95:90:
ba:1e:66:a0:d7:38:02:4f:db:19:be:b5:2f:bc:1e:
ef:15:df:82:05:14:21:4b:24:5a:84:a4:9e:00:b0:
f6:34:48:a2:fc:cf:fa:ff:cd:52:43:f9:61:67:db:
a2:84:a1:64:33:6f:34:9b:01:9e:72:16:d5:31:11:
dd:8b:7f:91:63:eb:b0:55:c4:81:17:64:d9:fd:a9:
73:87:af:40:56:13:b2:d0:5a:e3:ac:a7:23:81:de:
b3:e9:01:b9:de:9d:94:a9:4c:94:6d:96:36:64:57:
cd:4a:6b:3c:af:00:bc:ce:2b:bc:f9:21:ed:91:02:
1b:b6:95:e6:0f:ac:b6:a7:b8:38:b7:04:83:eb:21:
f6:dc:ef:5a:44:60:d4:b7:1a:de:e7:f8:91:c1:06:
36:af:f3:bf:95:19:6f:30:46:6e:82:8b:d4:15:22:
9e:74:46:26:83:ae:fc:55:07:ce:af:ec:f1:34:5d:
28:8d:69:9f:69:e8:4c:81:9c:cf:cb:02:ca:9c:12:
99:63:6d:89:42:d7:69:35:2b:37:7d:c9:f1:f1:18:
69:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:1E:DA:0E:B7:D3:68:28:E3:19:06:EB:A0:21:11:0E:A5:F6:C9:7B
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c1:eb:eb:79:9d:ae:80:2f:3a:44:8c:90:84:ee:a9:a9:bf:
e7:54:3c:b7:d9:e5:f3:d6:9e:ff:f8:72:02:b1:b2:f4:c7:ae:
79:21:20:33:c2:02:41:b6:1f:ab:e6:6c:71:23:39:72:75:2b:
92:a8:a8:58:98:e6:4f:0a:68:55:32:a7:09:bd:88:6b:4c:91:
5f:d6:f9:56:09:98:e7:ae:75:46:f7:29:26:97:49:9a:a1:e4:
dc:28:e1:d0:1a:07:92:a3:ec:cc:48:e5:12:a4:f7:9d:1c:85:
4f:62:4b:d6:68:ee:15:e4:01:5a:5e:fd:5a:1f:9c:4f:35:fd:
b3:ff:4c:f8:80:e2:35:e4:86:73:12:e9:96:40:4c:01:13:5c:
22:ce:24:95:e5:7e:44:d1:c4:e0:26:24:e8:3c:e4:75:02:06:
07:9a:14:d1:85:b8:18:88:d7:ad:21:b9:ba:0d:2d:eb:e5:d3:
ed:06:5c:d6:d1:12:62:ee:66:b1:4a:3d:72:8f:2a:d4:95:1e:
26:79:2f:5c:1d:3f:8d:76:2a:f1:e6:c0:7c:e9:7a:f7:c1:72:
23:53:a6:49:a7:2a:10:a0:10:15:ff:7a:3d:db:50:24:dd:ad:
c2:b7:b0:e3:19:68:fd:89:42:3a:41:20:33:73:3b:de:b6:a6:
9f:7d:9e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:09:09 2025 by rpki-client