Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: jonv9klWOzX55e58YXyUAq2AV4040+JzD0W7gTXcSQo=
Subject key identifier: 30:57:73:77:58:EE:33:E3:E6:C6:AC:F5:F0:0B:41:39:B1:62:5D:06
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019A4EF4A731C915B554075F6FA98E4EEFF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 1483
Signing time: Tue 04 Nov 2025 13:00:47 +0000
Manifest this update: Tue 04 Nov 2025 13:00:47 +0000
Manifest next update: Wed 05 Nov 2025 13:00:47 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: h73pd1ez9rBcw07myyDFJJkwMQzS1/b6y4noiB8GWb0=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:a7:31:c9:15:b5:54:07:5f:6f:a9:8e:4e:ef:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Nov 4 13:00:47 2025 GMT
Not After : Nov 5 13:00:47 2025 GMT
Subject: CN=3057737758ee33e3e6c6acf5f00b4139b1625d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c0:dc:be:af:ad:db:f2:80:c4:e4:3c:11:0d:
88:f2:a6:18:36:58:31:dc:ea:45:ef:6a:e1:c9:c6:
61:0f:d3:26:eb:a3:16:77:63:a5:8a:88:76:33:d7:
a9:40:3d:d8:4b:8d:fa:c2:be:9b:4c:97:a7:c9:06:
9f:ad:c3:64:23:b6:6a:c9:d9:66:45:ae:f5:f6:f4:
b0:b9:09:40:30:cd:cd:df:5a:cb:d2:61:f8:96:83:
0c:f6:73:96:96:67:89:3b:92:83:29:94:90:5d:7c:
f5:f6:9a:14:da:ae:d7:4f:e6:88:30:c6:b0:c5:30:
84:62:e5:b4:5c:15:14:51:33:e2:df:2b:ac:81:2c:
37:54:d4:74:77:7c:a5:cf:b3:dd:65:fe:4a:1d:2e:
cb:9d:8c:72:37:6c:79:76:a5:fa:bb:52:bd:e8:e9:
9a:80:01:a3:50:f5:d0:8c:04:14:e0:22:32:2b:1a:
5a:e2:33:2c:ad:b0:ae:ee:44:12:f1:89:9d:e0:ea:
fa:5c:bd:d1:75:7e:3a:cf:17:e2:82:2e:a3:59:f4:
bb:56:dd:e2:f6:24:7d:2b:45:cd:ba:9a:88:f9:4e:
cf:6c:2e:cc:b7:98:58:4f:64:fb:89:3c:37:74:b0:
93:cc:b1:50:b2:98:6c:45:37:ab:96:9b:99:e3:d4:
be:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:57:73:77:58:EE:33:E3:E6:C6:AC:F5:F0:0B:41:39:B1:62:5D:06
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:4f:e2:36:fc:a9:62:b8:95:39:db:74:43:c9:6c:61:40:13:
b7:12:16:51:02:f1:06:c5:9a:61:88:d8:4a:4c:b4:90:f1:89:
57:58:d5:9e:0f:12:5e:9a:a9:17:6f:85:b1:1e:13:e6:93:fd:
77:06:9d:c6:3d:a4:ca:85:03:1c:5a:bb:4b:71:f3:15:25:a8:
96:49:8c:21:ab:e7:43:72:7f:a2:ee:c3:8d:6f:56:89:21:a4:
dc:d8:de:13:5c:2c:bb:a7:27:d7:d0:33:aa:f1:38:fb:77:f2:
d3:ef:97:cd:82:e2:e4:a7:e0:b1:fa:6f:52:bb:cc:e8:bb:7c:
f8:c4:68:be:d3:0b:1a:c3:6c:2b:49:07:11:bd:03:67:6e:94:
18:c6:c1:7e:4b:87:ee:03:dd:3c:51:a2:a5:28:08:e6:2a:a7:
73:0e:5a:39:3f:35:9a:39:43:0b:bc:ad:08:ab:99:54:e8:1c:
24:03:bf:58:a0:76:15:84:56:20:8d:3d:ef:ec:94:36:29:18:
a2:7f:39:95:ec:4e:7d:1d:3b:7c:ed:14:1c:78:4c:44:6f:34:
d7:d2:cd:6f:ab:a7:5c:b6:e4:43:cb:a5:d3:97:92:4a:4a:8b:
e5:41:df:c0:87:85:90:15:89:e5:8f:1b:b4:87:a7:cd:3f:6f:
ba:cf:60:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:04:57 2025 by rpki-client