Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
File: BoekrKWB2OvN_iS2Xx5woS8omng.mft (raw, json)
Hash identifier: EyFhaHPH7t1+6xT1biALSeHDHQk+wX3oA4Gg8tjV8LE=
Subject key identifier: FE:E5:51:EE:89:2C:94:4C:A3:6F:0D:14:8D:40:74:F9:69:D3:8D:4A
Authority key identifier: 06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
Certificate issuer: /CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Certificate serial: 0199FBEC19D4BE9FBA37E39599AD1A087FC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
Manifest number: 089B
Signing time: Sun 19 Oct 2025 10:02:58 +0000
Manifest this update: Sun 19 Oct 2025 10:02:58 +0000
Manifest next update: Mon 20 Oct 2025 10:02:58 +0000
Files and hashes: 1: BoekrKWB2OvN_iS2Xx5woS8omng.crl (hash: zBPBNvIIRwKvkxzxemwOZ2rnmxdJlXRkjEp/2lxB2tk=)
2: JTkFn5E31NEi0T3jHFsEReuBpS0.roa (hash: kKlmo0yCwDoRfIckDgl+hlLcGOfvby6dj08uXZBlD8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:19:d4:be:9f:ba:37:e3:95:99:ad:1a:08:7f:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Validity
Not Before: Oct 19 10:02:58 2025 GMT
Not After : Oct 20 10:02:58 2025 GMT
Subject: CN=fee551ee892c944ca36f0d148d4074f969d38d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:04:5d:d9:02:c8:b8:17:43:ee:63:34:f7:59:
73:d6:2d:31:fe:e5:65:b9:9d:45:67:60:3e:45:e3:
68:10:69:c1:8b:7b:e3:b5:74:ba:71:75:7b:9e:63:
63:03:f0:06:ee:d9:6b:c3:45:ee:7e:11:cb:97:46:
51:cf:ff:40:00:91:f5:1e:8a:06:f9:0d:7c:73:06:
ce:22:9d:28:fe:e2:d7:51:d7:cb:06:e0:d6:5b:bb:
39:2b:2f:e6:3b:65:6d:30:4d:38:9d:61:fb:77:3f:
11:32:75:02:08:e1:82:be:28:aa:f1:64:83:65:96:
aa:f7:21:c4:c0:23:f0:1c:a0:04:ca:cf:9e:1a:df:
c1:6c:91:5e:79:ac:db:fd:48:58:2f:c8:7c:c1:61:
7b:7b:41:cc:b0:88:5d:d1:70:14:d6:d0:ea:e7:2f:
5f:f5:10:ff:4c:e4:b9:ae:d6:76:b0:fa:21:c9:92:
80:7a:e3:ad:d7:d6:5e:e4:52:f2:c0:69:18:3b:ff:
8e:2f:22:f9:1f:72:44:59:8b:dc:bc:41:bc:53:22:
c6:ec:5c:1f:ee:f0:24:48:20:ff:52:82:10:2f:83:
8c:f4:51:13:9c:22:05:0f:fb:76:53:89:e2:69:bc:
45:5e:ab:57:ab:d1:05:cf:5e:16:ae:b6:94:5f:0c:
21:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E5:51:EE:89:2C:94:4C:A3:6F:0D:14:8D:40:74:F9:69:D3:8D:4A
X509v3 Authority Key Identifier:
keyid:06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:74:ff:5d:cd:2b:c2:4d:7b:ac:f2:34:1c:a3:d4:0c:9d:8e:
82:72:38:b6:e5:d4:91:38:c4:ca:0b:17:4c:b3:a5:87:f7:57:
93:48:19:16:ff:b8:ae:a1:d6:d6:16:ce:51:c1:d0:6f:f0:38:
95:60:7a:e4:52:9d:d1:39:82:85:37:29:16:89:4b:2d:c0:1f:
0d:0a:46:77:c1:c8:9e:15:cb:92:89:30:6c:a2:c6:a7:41:ee:
f4:c1:77:8d:c5:b1:33:1d:7f:71:37:b6:72:1a:df:d0:36:0c:
fe:66:6f:0d:4d:d5:7c:c1:85:fd:ce:1d:88:bb:5b:ca:32:1b:
84:9f:bc:b2:9b:16:bf:c6:b4:86:ce:4d:ba:c1:a4:3f:fa:46:
5c:dd:7a:46:4c:46:d1:bd:f5:5e:98:80:7c:fb:84:fb:bc:7b:
0a:d3:75:e9:16:85:57:ee:8a:b0:11:1f:87:7c:89:d4:82:2b:
29:5a:d5:3a:d0:19:51:36:8a:a4:af:f7:8e:6a:59:95:a4:6b:
0e:85:84:2e:50:8a:a4:76:2e:f9:32:8f:17:b6:54:a5:3c:06:
c9:bd:e9:3a:5f:16:c6:38:bf:a5:10:a6:3c:a9:68:bd:fe:6c:
28:6b:89:3d:9b:66:af:5f:41:08:3b:bf:98:1c:d6:2e:ab:0c:
b8:ab:28:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:19 2025 by rpki-client