Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: E6tCO18ivTzyeTrlqjMPgmPcFG8ai7hMfnKNnAB770g=
Subject key identifier: F3:81:FB:90:30:0B:07:E5:1F:84:18:11:97:5E:B8:E1:00:ED:78:C1
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 0196741DD3097C1061560162177F689BD5D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 1284
Signing time: Sat 26 Apr 2025 22:00:33 +0000
Manifest this update: Sat 26 Apr 2025 22:00:33 +0000
Manifest next update: Sun 27 Apr 2025 22:00:33 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: eXtAB+0X/X/oavN0zWYBlzYRK8x3MppzoHXmVV03xxE=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:d3:09:7c:10:61:56:01:62:17:7f:68:9b:d5:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Apr 26 22:00:33 2025 GMT
Not After : Apr 27 22:00:33 2025 GMT
Subject: CN=f381fb90300b07e51f841811975eb8e100ed78c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:51:f3:4c:4a:e1:bc:e8:66:a6:95:e7:02:79:
5c:47:fa:c4:de:fa:bc:c2:1d:14:c9:63:3d:95:2c:
4b:e3:cd:90:94:6e:15:09:3a:04:31:e8:1a:25:e8:
3f:2d:ce:fc:6a:cc:9c:a3:95:f1:5c:71:fd:4b:f2:
4d:e1:14:d6:2c:ce:05:28:73:46:3c:d2:78:19:18:
bf:8e:86:ba:e7:38:4b:ea:bd:1a:7a:b7:d1:5d:7a:
9e:bf:86:f7:34:8c:8b:9b:cc:20:bf:04:ea:6e:e4:
6b:b5:31:19:bb:f5:f5:81:a0:90:1b:c4:54:e7:e4:
86:0a:94:3e:e8:7e:0b:bb:4a:0a:25:e3:01:24:02:
bb:c6:1e:2c:b6:46:ac:a7:f9:c4:0a:c1:86:c2:47:
c5:b7:2d:ea:aa:35:9d:b9:2b:30:52:8e:df:58:e9:
38:9c:f4:c8:10:e9:63:15:f6:f7:5f:70:23:99:7a:
a7:24:7f:71:39:71:1f:3b:0e:b2:28:cc:b2:e7:6b:
5a:74:5f:46:a9:39:a8:c7:81:fa:16:7a:df:a0:02:
aa:3b:31:3a:d0:98:05:a9:2a:9a:78:bd:83:a3:94:
f4:68:40:4b:72:4d:07:68:d3:a9:89:3c:61:64:12:
f1:21:2d:10:0d:8c:98:a3:56:92:d8:e2:99:d7:f7:
6b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:81:FB:90:30:0B:07:E5:1F:84:18:11:97:5E:B8:E1:00:ED:78:C1
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:24:82:3a:84:65:8f:12:f5:9b:b2:b1:e5:f2:b3:37:5a:93:
7e:58:7b:4e:44:85:8b:12:22:1c:96:e2:52:b4:bf:34:be:0f:
2a:4a:a8:7e:7a:66:45:ba:fa:6d:d2:b4:f9:52:5b:1a:fe:82:
6f:96:cd:48:28:b1:13:d6:bb:fc:25:d8:03:70:07:0a:28:bf:
92:c5:56:16:df:a5:39:87:d1:e4:a8:ee:5c:98:db:a5:78:4f:
dd:f5:e8:2d:46:fb:30:7e:ae:41:99:62:52:dc:02:58:ca:e2:
09:d8:f9:0a:8a:e8:77:b0:32:11:93:da:a0:11:2a:cf:a6:b9:
e9:54:bc:e8:d7:85:61:99:f3:e5:17:cc:bd:57:a5:a4:75:ef:
7a:d2:b8:0c:d7:8c:cf:2f:14:05:42:96:18:36:70:74:38:68:
cb:24:7a:9e:b6:45:5a:de:ff:86:9e:1c:68:0c:26:28:82:79:
34:54:26:92:91:cf:90:ea:93:a4:4e:ea:47:98:55:3c:fa:ea:
5d:98:72:e7:ed:ea:c1:95:c3:1e:02:00:7a:7c:58:29:8b:f0:
98:82:bc:f9:a4:fd:86:9b:c0:32:6f:ae:6e:b9:52:92:ff:c4:
c5:64:01:d7:2f:f5:ad:3a:ae:03:41:9f:d2:0a:fb:c2:60:41:
76:c1:62:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0HdMJfBBhVgFiF39om9XZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OGNjOGY1N2EyYjNjMjI5OWIxZjQ4MmI2N2UxNWQ5ZGU0
M2FkM2MwHhcNMjUwNDI2MjIwMDMzWhcNMjUwNDI3MjIwMDMzWjAzMTEwLwYDVQQD
EyhmMzgxZmI5MDMwMGIwN2U1MWY4NDE4MTE5NzVlYjhlMTAwZWQ3OGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1HzTErhvOhmppXnAnlcR/rE3vq8
wh0UyWM9lSxL482QlG4VCToEMegaJeg/Lc78asyco5XxXHH9S/JN4RTWLM4FKHNG
PNJ4GRi/joa65zhL6r0aerfRXXqev4b3NIyLm8wgvwTqbuRrtTEZu/X1gaCQG8RU
5+SGCpQ+6H4Lu0oKJeMBJAK7xh4stkasp/nECsGGwkfFty3qqjWduSswUo7fWOk4
nPTIEOljFfb3X3AjmXqnJH9xOXEfOw6yKMyy52tadF9GqTmox4H6FnrfoAKqOzE6
0JgFqSqaeL2Do5T0aEBLck0HaNOpiTxhZBLxIS0QDYyYo1aS2OKZ1/druQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPOB+5AwCwflH4QYEZdeuOEA7XjBMB8GA1UdIwQY
MBaAFAaMyPV6KzwimbH0grZ+FdneQ608MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm96STlYb3JQQ0tac2ZTQ3RuNFYyZDVEclR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9kYmRlOGMtYTBmYy00NGQ3LTk5M2It
MmEyODQxNmQ0NWIyLzEvQm96STlYb3JQQ0tac2ZTQ3RuNFYyZDVEclR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9kYmRlOGMtYTBmYy00NGQ3LTk5M2ItMmEyODQxNmQ0NWIy
LzEvQm96STlYb3JQQ0tac2ZTQ3RuNFYyZDVEclR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZiSCOoRl
jxL1m7Kx5fKzN1qTflh7TkSFixIiHJbiUrS/NL4PKkqofnpmRbr6bdK0+VJbGv6C
b5bNSCixE9a7/CXYA3AHCii/ksVWFt+lOYfR5KjuXJjbpXhP3fXoLUb7MH6uQZli
UtwCWMriCdj5Corod7AyEZPaoBEqz6a56VS86NeFYZnz5RfMvVelpHXvetK4DNeM
zy8UBUKWGDZwdDhoyyR6nrZFWt7/hp4caAwmKIJ5NFQmkpHPkOqTpE7qR5hVPPrq
XZhy5+3qwZXDHgIAenxYKYvwmIK8+aT9hpvAMm+ubrlSkv/ExWQB1y/1rTquA0Gf
0gr7wmBBdsFiyg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 06:00:29 2025 by rpki-client