Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: gwer4QteIAta7DAv2mB6fkVfOtTKVRTloyRsgv9BH5c=
Subject key identifier: C1:BD:DD:C3:F2:C7:26:93:D6:3A:48:28:41:B0:1B:96:A0:2A:95:C5
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 0198D472D5976DB3E33E5B9EE9B386E9BAB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 13BF
Signing time: Sat 23 Aug 2025 01:02:32 +0000
Manifest this update: Sat 23 Aug 2025 01:02:32 +0000
Manifest next update: Sun 24 Aug 2025 01:02:32 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: 9zzayEXA3UyS8r9xM13dggi6u1RV0/Um5g12JO6izvs=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:d5:97:6d:b3:e3:3e:5b:9e:e9:b3:86:e9:ba:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Aug 23 01:02:32 2025 GMT
Not After : Aug 24 01:02:32 2025 GMT
Subject: CN=c1bdddc3f2c72693d63a482841b01b96a02a95c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d8:54:1d:8a:04:ef:ff:bf:66:c6:a4:ea:e2:
cf:28:97:0b:03:0f:b6:be:5b:6a:e4:4b:76:d2:f7:
b9:96:ba:8f:c7:09:f4:66:a6:20:d4:46:b7:82:20:
bc:bc:cf:55:07:7f:d3:27:27:48:5d:c4:08:b6:49:
81:c4:b7:cc:0f:8e:e7:05:32:ef:89:3e:8c:ff:cc:
73:97:97:f7:1e:d2:b8:63:b7:a3:d2:e6:c4:19:e6:
6e:d2:25:fe:27:65:f8:e3:4f:49:5a:6c:17:ea:a8:
d1:0a:f5:f5:04:ea:8e:6e:2e:30:f6:ba:a3:54:9f:
1a:69:12:52:a4:f5:54:78:8e:62:cf:34:ac:87:f0:
7b:a5:cb:a3:37:d0:f3:9e:76:62:09:e9:5e:79:ed:
86:94:1f:6a:cf:a8:d3:49:5a:52:8b:4b:3c:aa:b2:
ea:cd:36:4d:11:be:ce:0c:6a:bd:bf:db:1a:5b:df:
a2:21:29:b0:6e:05:57:a8:ec:2a:e5:66:f3:7b:e1:
48:ee:cf:ba:07:5d:d5:86:3a:8e:90:64:42:11:22:
b2:71:96:4b:db:4c:05:74:e3:93:ba:dd:e5:d7:b9:
9a:29:a7:bb:43:90:e5:75:1f:cf:cd:fe:a2:ff:93:
92:7e:91:3c:e4:b9:6c:57:8a:bc:56:f9:9a:b4:f0:
2b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BD:DD:C3:F2:C7:26:93:D6:3A:48:28:41:B0:1B:96:A0:2A:95:C5
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:4b:20:6b:7b:3a:e9:e6:48:7b:6c:53:28:b3:01:90:d5:40:
89:93:da:38:f5:9b:d6:1e:02:3e:3c:71:93:23:b7:f3:76:a1:
5b:c3:3a:08:b1:55:66:2f:1d:1b:09:e5:34:42:4e:44:f4:b5:
c8:52:34:76:0f:fb:21:c1:69:0e:f8:9b:61:3a:f5:7a:78:b5:
cc:b2:ee:d2:b0:7b:f3:ab:45:ae:1c:0d:be:8e:92:db:85:04:
61:d0:d1:5b:67:20:ba:7e:de:18:2f:2f:3d:26:b6:16:4c:e3:
50:56:32:26:d6:c7:5e:22:5f:9c:83:5d:bc:8f:49:c4:c4:95:
d9:bb:6f:5e:fb:3c:d3:a7:66:c0:30:9e:68:cb:ae:ca:31:48:
73:8e:88:05:d5:f2:40:36:ce:f8:28:a8:9f:fe:ce:5e:f4:63:
a7:f6:fa:1f:53:22:ce:1a:37:1f:5c:06:02:d0:6b:1c:f5:f5:
60:f9:8b:c6:e3:86:3b:ab:6b:28:63:1c:76:45:ed:8d:73:6c:
d2:91:01:3e:e4:b6:9d:cc:07:c5:a9:04:ae:91:ce:0c:c4:b2:
ba:77:9e:a7:8c:e3:eb:0d:3f:77:47:31:58:a2:e5:c1:30:60:
58:9d:c7:43:7e:33:08:51:dd:61:af:82:2b:00:72:02:36:8e:
c3:49:df:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:26:34 2025 by rpki-client