Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: fT/ACkTsw/lamvjq+edjq+v3HTWaaCKGdA9FKMSUJGw=
Subject key identifier: AB:32:62:17:70:06:00:6B:0D:76:BD:DE:95:CC:29:23:7D:0F:C1:40
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 0196B0D77668C6B82F0B0C2C2A12A1755181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 06D7
Signing time: Thu 08 May 2025 17:00:32 +0000
Manifest this update: Thu 08 May 2025 17:00:32 +0000
Manifest next update: Fri 09 May 2025 17:00:32 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: Tc/7lKV9kLiGsBYhxJ8OQBmUqxISHSdE6du1AIoZHgg=)
2: rDLUksu5RJZHpovJcJfARGodJyk.roa (hash: 6LsaGYClie7jwTmpMZAxkMISVs9EUqwDFuEv8m5cWNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:d7:76:68:c6:b8:2f:0b:0c:2c:2a:12:a1:75:51:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: May 8 17:00:32 2025 GMT
Not After : May 9 17:00:32 2025 GMT
Subject: CN=ab3262177006006b0d76bdde95cc29237d0fc140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:08:09:ed:e6:5f:af:54:de:8c:e7:ee:60:4e:
14:54:10:d1:1c:3d:1b:7f:81:8f:52:34:5d:af:9f:
f3:d4:b0:46:05:41:16:b1:18:8a:36:f4:60:b1:b1:
2e:82:d1:da:ae:25:bf:68:08:07:7d:42:7f:85:27:
68:17:4c:5e:2c:13:da:95:ef:94:ea:c5:b3:a4:c4:
9a:8f:51:b0:5f:3a:06:ca:96:bb:61:55:bc:c7:39:
1c:cd:8c:50:90:36:45:d2:ba:b5:99:f7:ef:0f:c5:
e2:d6:3b:42:b5:5d:3e:de:88:86:94:fd:7a:1f:0f:
de:40:42:39:15:20:95:85:b0:c2:bc:9a:a9:98:da:
c3:0d:b0:44:f4:1d:bc:5f:a9:73:a2:bf:2a:3a:e0:
3a:d6:5f:a0:80:a3:b5:6e:c1:3f:c6:db:da:ef:f3:
f8:1d:5f:82:6d:6c:e1:5b:71:26:ac:89:b5:71:6d:
d4:eb:6d:20:2d:b2:b0:7a:8d:64:2d:14:7b:b6:ae:
a7:ab:47:bb:70:6b:98:e4:65:ad:e0:83:2e:7f:b1:
6a:a6:a2:aa:92:90:d6:d3:d4:56:b2:a4:0e:42:09:
13:fc:86:02:74:a3:ca:1a:8d:02:b0:a5:03:c7:46:
03:7e:23:5a:ab:16:b9:97:1b:16:26:3f:0c:10:8a:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:32:62:17:70:06:00:6B:0D:76:BD:DE:95:CC:29:23:7D:0F:C1:40
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:d2:a2:65:58:52:89:bb:60:c3:11:6c:a3:52:e1:7c:dd:bb:
9f:34:5a:35:46:bd:93:ee:fc:99:5e:63:3f:ab:94:24:ec:b8:
e3:3b:ba:25:f7:19:b4:67:99:71:23:4b:38:9e:60:95:91:19:
db:9f:6b:79:8a:8f:70:cf:59:ce:88:ef:e8:da:4f:4b:ea:b5:
25:5f:60:8a:74:95:7a:24:c0:91:b1:47:34:5e:27:aa:d4:14:
f4:05:78:04:1e:66:d8:96:da:29:15:da:32:9e:d1:a3:3d:d7:
14:2f:7c:84:1b:bb:2f:73:b2:aa:34:93:84:cb:c6:4e:3f:e0:
61:11:9a:4b:19:79:f8:d5:aa:36:44:ce:06:94:68:62:5c:1b:
a5:3f:db:e8:76:82:4b:bd:dd:3f:de:09:79:23:aa:54:db:da:
b6:b7:07:61:0f:b8:a0:cb:02:85:6a:c5:6e:ba:5d:19:5a:86:
53:c9:d7:d6:c8:d6:84:8c:99:9b:95:36:5c:09:eb:30:90:e0:
41:cd:72:8a:70:95:6d:84:47:a7:d0:8a:7c:0c:55:2c:2c:5e:
25:07:34:76:c3:9a:f3:56:64:69:55:68:8c:9d:3c:f4:86:99:
aa:8e:c6:68:39:c1:1f:75:f8:b8:9a:22:08:67:e7:22:c7:cf:
b0:a5:e2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 18:59:37 2025 by rpki-client