Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
File: BoekrKWB2OvN_iS2Xx5woS8omng.mft (raw, json)
Hash identifier: Iyb8YsrJQ3dLTWQQQRjfxSUURXQO3Xyh5eqdo95pq5o=
Subject key identifier: 6A:A7:12:DD:36:9E:23:29:24:AD:99:E6:5F:FA:77:DF:51:D8:64:5D
Authority key identifier: 06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
Certificate issuer: /CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Certificate serial: 0198D473295145265D47B59C828F31BF5A4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
Manifest number: 0802
Signing time: Sat 23 Aug 2025 01:02:53 +0000
Manifest this update: Sat 23 Aug 2025 01:02:53 +0000
Manifest next update: Sun 24 Aug 2025 01:02:53 +0000
Files and hashes: 1: BoekrKWB2OvN_iS2Xx5woS8omng.crl (hash: XVSFGVBmf3dVC3JHLH3o/nVrS1QGCzoUxfvqxrm6OQc=)
2: JTkFn5E31NEi0T3jHFsEReuBpS0.roa (hash: kKlmo0yCwDoRfIckDgl+hlLcGOfvby6dj08uXZBlD8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:29:51:45:26:5d:47:b5:9c:82:8f:31:bf:5a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Validity
Not Before: Aug 23 01:02:53 2025 GMT
Not After : Aug 24 01:02:53 2025 GMT
Subject: CN=6aa712dd369e232924ad99e65ffa77df51d8645d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:93:31:b2:e4:d9:4b:91:ab:4b:06:38:d4:f3:
c8:42:c9:aa:53:1d:f6:80:8e:9c:ea:f0:1e:6c:2a:
5e:a1:91:db:cc:ee:ba:20:e5:d3:34:eb:ad:e6:f0:
de:db:b2:c5:bf:59:7b:7e:7f:30:e0:2f:77:36:08:
ae:e7:ed:77:5d:8a:d4:79:a7:42:bd:e8:1e:19:0a:
f3:07:be:81:33:e8:cd:83:b8:e9:24:df:40:2c:52:
13:73:72:c4:28:60:d5:cc:73:9b:38:8b:9a:7f:fb:
f5:dd:b3:37:21:f6:6d:76:a5:8f:7b:53:92:36:34:
63:bf:f3:a7:e7:28:4f:7e:11:fd:72:c2:d7:6b:91:
1a:85:9a:8a:03:4c:0a:ca:fc:19:9b:77:8f:6f:18:
98:06:5a:2b:6f:b2:10:f9:3b:4c:2b:c9:b5:95:fd:
14:96:86:ce:ee:3c:6b:93:36:12:e4:f1:fb:12:74:
41:6a:df:96:c0:20:1d:65:2e:77:e8:c1:80:ec:99:
49:81:9e:e3:64:bb:fd:08:99:de:cc:e5:0e:dc:07:
cf:7c:87:05:66:bb:1f:1b:3d:2a:d7:1b:8c:6a:ce:
61:64:2b:68:80:3f:1b:3c:73:e3:80:29:ec:02:14:
1e:02:f1:b5:1b:e8:9e:62:40:21:b5:75:01:be:ad:
1b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A7:12:DD:36:9E:23:29:24:AD:99:E6:5F:FA:77:DF:51:D8:64:5D
X509v3 Authority Key Identifier:
keyid:06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:71:1b:c6:33:2d:15:08:c6:5f:c5:8f:cf:f0:5a:08:b9:7d:
7f:69:9d:b6:9c:ba:c0:f1:ce:88:ab:84:7d:0a:fd:2d:69:c6:
22:73:d6:7e:8b:09:3d:a1:91:fa:5a:c4:cf:30:0e:8f:7a:bc:
c0:cd:c6:a9:4c:95:82:46:0e:7e:fd:af:3f:b3:9c:90:57:29:
b5:31:14:af:a7:7c:f8:ec:31:a7:a5:25:65:82:54:47:e7:c6:
a8:72:8c:36:7c:32:eb:0c:b9:5c:4b:92:22:d3:47:75:47:c2:
0e:a0:47:25:b4:46:6b:2e:92:b9:b3:11:9d:b2:69:a7:b3:cc:
91:4c:a4:8b:37:be:c1:7b:cf:04:b6:5a:9c:c9:40:6c:02:39:
39:8e:06:93:32:74:50:ac:70:31:df:40:95:23:41:fa:90:41:
4a:03:17:ed:5b:2c:88:41:0f:02:89:c8:11:c7:51:30:56:ca:
a0:64:95:bb:1e:fa:8e:05:ca:df:13:36:32:b4:fc:b9:17:dd:
1a:49:e2:21:ca:b4:0b:4c:9b:b1:96:e8:6c:67:be:43:85:03:
08:73:99:eb:33:8e:43:9f:bf:27:d8:72:30:78:24:de:f6:00:
70:ea:fd:ad:48:a4:11:d2:b0:72:05:1a:de:89:06:c6:b7:f5:
ab:d3:64:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcylRRSZdR7Wcgo8xv1pNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2ODdhNGFjYTU4MWQ4ZWJjZGZlMjRiNjVmMWU3MGExMmYy
ODlhNzgwHhcNMjUwODIzMDEwMjUzWhcNMjUwODI0MDEwMjUzWjAzMTEwLwYDVQQD
Eyg2YWE3MTJkZDM2OWUyMzI5MjRhZDk5ZTY1ZmZhNzdkZjUxZDg2NDVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5MxsuTZS5GrSwY41PPIQsmqUx32
gI6c6vAebCpeoZHbzO66IOXTNOut5vDe27LFv1l7fn8w4C93Ngiu5+13XYrUeadC
vegeGQrzB76BM+jNg7jpJN9ALFITc3LEKGDVzHObOIuaf/v13bM3IfZtdqWPe1OS
NjRjv/On5yhPfhH9csLXa5EahZqKA0wKyvwZm3ePbxiYBlorb7IQ+TtMK8m1lf0U
lobO7jxrkzYS5PH7EnRBat+WwCAdZS536MGA7JlJgZ7jZLv9CJnezOUO3AfPfIcF
ZrsfGz0q1xuMas5hZCtogD8bPHPjgCnsAhQeAvG1G+ieYkAhtXUBvq0bxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGqnEt02niMpJK2Z5l/6d99R2GRdMB8GA1UdIwQY
MBaAFAaHpKylgdjrzf4ktl8ecKEvKJp4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm9la3JLV0IyT3ZOX2lTMlh4NXdvUzhvbW5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy85ZGYxMWItMDE4Ny00YTkxLWI1ZDEt
MmQyOGExOTEzNWZkLzEvQm9la3JLV0IyT3ZOX2lTMlh4NXdvUzhvbW5nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy85ZGYxMWItMDE4Ny00YTkxLWI1ZDEtMmQyOGExOTEzNWZk
LzEvQm9la3JLV0IyT3ZOX2lTMlh4NXdvUzhvbW5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFHEbxjMt
FQjGX8WPz/BaCLl9f2mdtpy6wPHOiKuEfQr9LWnGInPWfosJPaGR+lrEzzAOj3q8
wM3GqUyVgkYOfv2vP7OckFcptTEUr6d8+Owxp6UlZYJUR+fGqHKMNnwy6wy5XEuS
ItNHdUfCDqBHJbRGay6SubMRnbJpp7PMkUykize+wXvPBLZanMlAbAI5OY4GkzJ0
UKxwMd9AlSNB+pBBSgMX7VssiEEPAonIEcdRMFbKoGSVux76jgXK3xM2MrT8uRfd
GkniIcq0C0ybsZbobGe+Q4UDCHOZ6zOOQ5+/J9hyMHgk3vYAcOr9rUikEdKwcgUa
3okGxrf1q9Nk5Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:10 2025 by rpki-client