Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
File: BoekrKWB2OvN_iS2Xx5woS8omng.mft (raw, json)
Hash identifier: kVcQxhvL1BmJkhFGbGo5gbXVTuAxxsRM8t18BJhDAWY=
Subject key identifier: B9:30:6C:FD:55:B8:91:B2:CD:80:DB:7F:A7:0E:FD:40:A5:DB:B7:57
Authority key identifier: 06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
Certificate issuer: /CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Certificate serial: 0197BA7D0C7096C9E70AF1C571AE2627AAFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
Manifest number: 0770
Signing time: Sun 29 Jun 2025 07:00:46 +0000
Manifest this update: Sun 29 Jun 2025 07:00:46 +0000
Manifest next update: Mon 30 Jun 2025 07:00:46 +0000
Files and hashes: 1: BoekrKWB2OvN_iS2Xx5woS8omng.crl (hash: Sr8H8SwceZFf3V5cOwBhKVuhksBctnzbf8i04Iss0pU=)
2: JTkFn5E31NEi0T3jHFsEReuBpS0.roa (hash: kKlmo0yCwDoRfIckDgl+hlLcGOfvby6dj08uXZBlD8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7d:0c:70:96:c9:e7:0a:f1:c5:71:ae:26:27:aa:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Validity
Not Before: Jun 29 07:00:46 2025 GMT
Not After : Jun 30 07:00:46 2025 GMT
Subject: CN=b9306cfd55b891b2cd80db7fa70efd40a5dbb757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a2:de:e5:d6:82:a9:2b:b3:b6:f4:95:e3:cd:
e8:2d:94:2f:de:a4:0e:a3:86:fb:a5:50:c6:14:4e:
e8:1c:1a:e1:6f:d9:a2:ec:ab:63:1a:57:0b:26:ce:
a2:ec:b5:9d:3e:75:f4:98:d7:c5:81:40:92:28:57:
af:58:83:9f:61:35:f8:1e:a4:9e:65:5e:49:4b:95:
8e:04:ee:0d:c9:da:4b:f6:54:ad:4c:a0:d4:5b:7d:
1d:ad:6e:5c:53:78:02:cd:c7:3f:21:e6:63:45:bb:
aa:19:71:b1:bd:eb:28:f0:fb:09:0f:14:f5:27:5b:
4d:d7:5e:da:69:57:c4:f5:18:74:0c:1e:df:94:8d:
69:89:95:a5:bf:7d:69:35:b4:fa:6d:b0:8d:96:c2:
15:22:ec:19:f3:96:93:a6:cd:34:19:1a:6f:57:02:
03:d6:d2:a7:91:9d:ee:93:9d:b0:06:5a:9d:90:97:
f7:3d:02:0f:b1:89:c2:36:72:14:47:28:26:15:6f:
5a:c8:19:0e:8b:be:25:95:f4:f7:85:f9:26:0e:2b:
be:e8:99:ac:f2:4a:da:35:57:25:72:a1:0b:c2:0b:
0b:17:ff:6e:3f:f1:b2:7f:cc:9c:64:7b:c5:01:e5:
60:e0:fd:64:0a:94:96:76:b9:b6:e4:35:f3:c0:b8:
55:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:30:6C:FD:55:B8:91:B2:CD:80:DB:7F:A7:0E:FD:40:A5:DB:B7:57
X509v3 Authority Key Identifier:
keyid:06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:b5:ca:37:4a:9d:f2:a6:3e:3d:a2:3e:88:3d:90:f9:b7:94:
ab:93:33:ba:08:83:4d:e1:8c:a2:3d:38:24:1d:07:0d:49:c8:
24:5b:5c:17:96:3c:06:7a:39:cc:ae:7d:29:38:15:94:a0:b3:
f7:45:37:bb:5c:dc:74:47:ab:51:d7:6e:1c:4a:23:3a:00:ca:
f3:82:34:0c:4a:6d:a8:af:f9:f3:51:46:2f:22:7c:e2:db:cd:
8e:8c:0a:ca:ef:f7:e6:4d:63:cd:02:79:c1:5e:b1:0d:b1:ff:
2c:26:4b:d7:5a:17:9f:1a:14:46:46:18:65:27:38:b9:ac:77:
86:77:0c:e8:79:be:1c:5b:92:79:9f:9e:cf:a0:27:7d:3e:03:
cd:3f:63:12:01:8e:e6:1b:e5:4a:43:9d:e7:91:87:69:07:58:
97:ce:8f:7e:eb:06:1c:1c:2e:a8:f6:bd:24:74:31:6a:ce:58:
30:07:f5:20:33:a6:4c:42:38:db:cc:a7:f8:1e:05:60:9c:80:
33:a3:ce:f6:64:56:40:ca:73:98:3b:c7:09:d9:ab:8e:ec:46:
b8:2f:f3:8e:9e:64:3c:78:22:8a:ee:ca:bc:27:a6:86:be:4b:
76:03:64:76:a8:a7:61:d6:3c:26:cb:32:42:9f:98:e8:10:39:
72:48:3e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 14:46:40 2025 by rpki-client