Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
File: boMQZuqP4gsGehNgBrevkGYzhDs.mft (raw, json)
Hash identifier: WGdX3iRBdKTqb1nVr+uS613rGUICBuq7XOhcycx+U5g=
Subject key identifier: E2:71:FA:90:46:A8:91:35:B3:AB:55:46:51:49:C5:E6:03:81:1E:20
Authority key identifier: 6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B
Certificate issuer: /CN=6e831066ea8fe20b067a136006b7af906633843b
Certificate serial: 019A02599839161B853A50B25C6FB606EA53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
Manifest number: 16E8
Signing time: Mon 20 Oct 2025 16:00:17 +0000
Manifest this update: Mon 20 Oct 2025 16:00:17 +0000
Manifest next update: Tue 21 Oct 2025 16:00:17 +0000
Files and hashes: 1: K0elnSjthwyDpqUrzqz0WWkS5i4.roa (hash: gy/lZpvudI4NuVtj5Cr7txBBixWEIa8xyvy8FV7O+jc=)
2: boMQZuqP4gsGehNgBrevkGYzhDs.crl (hash: t+mvsxDmCtaj1Lk+ezzYaDxAZrxw8N7ZRRuebgNw9Os=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:59:98:39:16:1b:85:3a:50:b2:5c:6f:b6:06:ea:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e831066ea8fe20b067a136006b7af906633843b
Validity
Not Before: Oct 20 16:00:17 2025 GMT
Not After : Oct 21 16:00:17 2025 GMT
Subject: CN=e271fa9046a89135b3ab55465149c5e603811e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c9:25:46:70:80:57:94:ae:b4:dc:12:10:b6:
b7:dc:5b:10:8c:43:a6:33:4a:ba:69:fb:3d:2d:97:
45:a4:3d:e3:4b:08:26:67:64:79:67:63:a3:07:02:
2c:c0:54:bd:e9:0b:8d:51:ee:53:9e:01:c2:ff:8b:
90:b9:31:56:f4:9a:26:8b:69:0d:3e:8c:cf:b9:87:
7a:bd:37:04:b9:03:6c:9e:5f:9c:89:14:a0:c8:bb:
75:9c:dd:ce:d5:80:2f:a2:63:20:f7:fe:b3:26:cf:
92:34:28:cd:05:33:d1:49:e5:12:42:01:da:b5:b9:
58:92:87:18:54:eb:f7:96:53:5d:8b:e0:89:66:b4:
27:03:ea:aa:bc:4f:cb:0f:b7:49:24:02:c6:9f:d4:
a0:f9:33:01:a1:2f:e0:a8:f0:fd:30:35:56:f2:19:
85:05:3c:22:31:2c:59:0c:d5:c8:6d:8d:4d:06:72:
59:39:45:77:d2:84:b2:29:4d:48:87:ae:2a:6e:56:
b1:ea:d0:26:56:5a:76:12:2d:67:e2:70:17:dc:6b:
1a:a6:01:8b:88:da:b9:6a:c3:96:82:9b:81:cd:be:
32:74:d0:a4:f6:2c:78:57:bd:b9:61:48:a8:81:a3:
e6:26:13:67:48:0e:df:92:c9:5c:92:f4:a3:45:78:
be:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:71:FA:90:46:A8:91:35:B3:AB:55:46:51:49:C5:E6:03:81:1E:20
X509v3 Authority Key Identifier:
keyid:6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:74:16:1d:79:1f:f6:c5:b4:f4:7c:2b:49:fd:e5:47:15:55:
6d:d9:ce:32:36:89:4c:0a:16:18:c2:f3:16:01:bd:83:3a:20:
36:cb:21:34:d8:e5:68:65:1e:6b:2b:13:19:cc:72:58:9a:ec:
91:53:0e:b3:71:84:5c:47:27:ff:20:fd:b4:01:50:49:c3:ce:
9d:db:95:8a:bf:1b:31:32:d2:f9:06:54:8f:3f:3f:58:fc:1c:
08:c2:11:b4:1f:87:6b:25:56:78:bc:94:b6:28:b2:24:a7:9a:
49:2f:93:85:73:d2:ba:f0:a1:9b:10:e0:60:92:77:92:a9:b8:
f3:1a:97:d8:b5:67:1e:ca:32:36:7b:19:bc:f8:3d:ae:fe:09:
0e:54:7d:a4:12:a9:69:c1:ed:bd:73:91:19:9f:d6:d7:85:17:
f1:84:4f:50:20:9b:2f:ac:6f:7d:ea:53:6a:d2:75:43:30:52:
e7:76:4c:91:d1:6e:b2:25:49:0c:9e:4d:cb:52:13:a2:00:65:
da:28:90:78:77:c7:4a:1a:ce:4c:b0:f7:5f:5c:fe:e8:80:3b:
b7:30:10:16:48:1c:a7:ca:69:a2:f3:2b:eb:cf:6d:43:b0:36:
00:8b:9f:a1:21:d8:51:70:dc:d8:c3:68:cc:c0:5f:92:c0:d0:
20:8e:71:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:27:08 2025 by rpki-client