Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
File: boMQZuqP4gsGehNgBrevkGYzhDs.mft (raw, json)
Hash identifier: 17FdURZmg5/xfoGyUYMiQEvhxqsvzLipZIigITdtJe4=
Subject key identifier: C8:72:FB:28:5E:7D:33:91:0A:4F:11:3E:D6:9C:D3:41:66:45:2B:B0
Authority key identifier: 6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B
Certificate issuer: /CN=6e831066ea8fe20b067a136006b7af906633843b
Certificate serial: 0197C6B8891BA4E963E5C9167331FB39D959
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
Manifest number: 15C0
Signing time: Tue 01 Jul 2025 16:01:11 +0000
Manifest this update: Tue 01 Jul 2025 16:01:11 +0000
Manifest next update: Wed 02 Jul 2025 16:01:11 +0000
Files and hashes: 1: K0elnSjthwyDpqUrzqz0WWkS5i4.roa (hash: gy/lZpvudI4NuVtj5Cr7txBBixWEIa8xyvy8FV7O+jc=)
2: boMQZuqP4gsGehNgBrevkGYzhDs.crl (hash: JvE+YROc799MdViaIXkWMyoLHbZGiVFVpjIgiWaDh/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 16:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:b8:89:1b:a4:e9:63:e5:c9:16:73:31:fb:39:d9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e831066ea8fe20b067a136006b7af906633843b
Validity
Not Before: Jul 1 16:01:11 2025 GMT
Not After : Jul 2 16:01:11 2025 GMT
Subject: CN=c872fb285e7d33910a4f113ed69cd34166452bb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cd:b1:c4:87:1c:cd:4e:d3:d3:0e:88:b4:bc:
8e:3e:2b:1f:c6:a8:4c:a3:c9:0d:62:bf:86:f8:41:
40:fe:c7:bc:1c:18:27:14:b4:90:0d:00:cc:01:d9:
79:63:ce:64:1d:65:4b:bb:02:51:a6:16:27:f0:8d:
24:e7:4d:6a:f1:56:c2:5d:c8:06:56:c9:5c:99:bf:
5d:13:ee:b2:a9:4d:8b:1c:c6:bb:3a:9a:71:4a:3a:
7e:76:81:f1:46:58:32:78:51:b1:35:2c:e4:61:ac:
69:0a:04:4e:f4:fd:81:a0:aa:f7:77:77:db:4a:5b:
80:58:66:d2:94:09:78:31:a6:89:5d:c1:d1:e1:07:
22:c0:d1:01:98:33:f1:61:6c:62:fe:21:e9:b9:7b:
5d:13:56:93:27:71:19:c2:65:d3:f8:b2:56:34:8d:
72:bf:c4:4c:53:26:f9:a2:95:99:0b:a5:2d:1d:b5:
09:d6:f7:a7:98:ec:af:a9:0a:ec:14:d5:3e:02:0f:
0d:33:5f:b7:a5:d4:f2:b1:77:02:a1:ad:cb:f5:fd:
94:88:c4:25:2b:0a:7f:77:a1:02:1f:77:77:c4:07:
c7:45:b3:d1:6d:1c:c5:f0:37:02:68:d2:40:9d:1c:
d4:9c:53:ac:1b:99:b7:dc:b3:7e:84:f9:7c:a9:d1:
57:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:72:FB:28:5E:7D:33:91:0A:4F:11:3E:D6:9C:D3:41:66:45:2B:B0
X509v3 Authority Key Identifier:
keyid:6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:06:22:2e:c2:7b:73:af:e3:ef:31:a4:06:ea:35:77:98:4c:
c6:a4:27:c8:4d:36:e1:8c:c2:b5:66:20:eb:0e:79:fe:59:58:
95:b8:af:59:c3:aa:c7:2d:b7:29:05:79:25:e4:b7:a6:5e:49:
06:e9:b4:80:f0:45:79:3d:33:15:b5:1a:40:cd:21:d1:86:fa:
37:49:5c:48:4f:22:e7:bc:0d:b6:8b:a3:a7:e9:4a:9a:a3:25:
cf:d5:99:d7:77:0a:e1:de:34:3f:b3:22:fe:96:3e:7e:54:11:
42:5c:41:36:0b:5b:53:68:39:f6:5b:e1:10:d1:14:80:fd:38:
1e:31:21:44:1d:9e:7f:e4:d4:5a:42:39:c4:67:4f:ee:af:cd:
19:5b:87:58:fa:c2:78:26:81:3a:fc:96:ba:8d:f4:c6:83:92:
bc:f4:a8:e5:2a:46:38:90:58:d0:4d:4a:0a:41:73:db:4f:65:
ac:d0:86:5e:d4:09:76:6e:13:fd:15:08:c8:8d:50:63:68:72:
00:49:bc:35:ab:f3:b6:a0:2e:65:f2:ab:60:31:10:ab:6b:3e:
33:6c:98:91:02:d2:00:33:28:f2:96:75:62:2f:03:55:f9:3e:
2f:0d:fc:ba:0e:5a:2d:de:dc:41:ec:a6:d5:f0:5c:d5:66:51:
63:6c:28:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 02:06:01 2025 by rpki-client