Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: Ru6GEFBPk2hvnGyucSEtXr0KYYYm08FxDpkZvafvlCw=
Subject key identifier: A7:F8:9A:AE:6E:73:84:E0:A1:6C:70:C4:27:E8:C2:2E:ED:A2:D5:84
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019873E2BE2B1DEAEC19CE153CFDA361793A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 138D
Signing time: Mon 04 Aug 2025 07:01:36 +0000
Manifest this update: Mon 04 Aug 2025 07:01:36 +0000
Manifest next update: Tue 05 Aug 2025 07:01:36 +0000
Files and hashes: 1: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: yX4Hy6WPTqJ4eIK6sWApQc5k5t/2dLu5OnKnBmaGsDk=)
2: P9IjOiRib_oTzk3RFCj75_fHPso.roa (hash: zczeX9mp/ovcEZlHCQx76naAHy+fi7XPa1xXLFJeJgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:be:2b:1d:ea:ec:19:ce:15:3c:fd:a3:61:79:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Aug 4 07:01:36 2025 GMT
Not After : Aug 5 07:01:36 2025 GMT
Subject: CN=a7f89aae6e7384e0a16c70c427e8c22eeda2d584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:66:bb:14:67:89:88:98:67:5f:d8:71:ba:53:
f5:08:49:de:31:f2:9d:ca:45:fb:d6:0f:70:d7:37:
ff:a5:7e:27:fb:77:59:00:28:fa:fc:ca:18:fa:b0:
df:95:71:63:8c:23:f1:29:6b:26:86:23:e2:f9:66:
2e:de:e2:b7:2d:3f:1f:69:e0:c8:4a:27:b4:4e:5f:
72:09:99:1a:62:1b:7f:e2:65:a6:c6:cd:de:1d:45:
dd:62:9a:54:78:05:80:b2:3f:f0:8e:c9:97:68:1c:
fd:f7:e5:85:39:ee:14:3a:d5:65:ca:d3:ff:3d:4e:
c8:74:99:58:18:f2:89:20:54:51:6e:76:75:4a:2d:
da:0b:d9:1b:0b:10:39:6b:b9:5b:82:e0:b3:56:0e:
7f:6f:90:79:bc:8e:0f:04:b3:70:b5:97:be:1f:b6:
3d:4a:08:12:8d:e0:c7:f1:53:00:bc:f5:2a:c1:d4:
28:66:ed:10:ad:38:8d:8e:fd:fc:8e:30:91:23:a0:
1a:66:7b:16:fc:85:ea:7e:c6:69:6b:fe:39:86:be:
c5:18:cc:44:22:1b:27:57:70:e3:d9:9d:34:14:4e:
58:99:90:31:28:08:18:02:c2:8a:70:b3:75:d4:f4:
8c:6b:fe:b5:18:9a:14:20:8b:be:49:95:9e:c5:c9:
f4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F8:9A:AE:6E:73:84:E0:A1:6C:70:C4:27:E8:C2:2E:ED:A2:D5:84
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:90:14:99:27:80:d6:50:05:06:ee:12:b5:7b:99:a5:5c:58:
e2:c3:e6:b6:26:9e:6a:d2:fb:2a:e8:ed:d3:d0:b9:24:f5:4d:
ed:f0:cb:9c:9a:2e:67:9f:08:b4:76:71:d7:b9:29:99:e0:e7:
27:fe:e8:1b:0c:1c:5c:d5:4c:8f:e5:c6:70:bc:19:1a:a1:84:
ee:d9:2a:54:a6:76:ae:95:8c:cb:5d:52:51:58:fd:3c:97:50:
06:18:bd:23:9d:31:1a:1a:b7:13:82:4a:bc:5f:e9:df:26:fc:
2f:b7:dd:9e:4b:7d:49:02:4d:90:2f:fd:84:b2:bc:3f:b5:5c:
eb:e0:8d:56:0f:67:94:c5:d0:fc:db:2b:7f:9e:93:9d:5c:48:
9e:9c:78:b9:c6:d2:43:4f:d9:bd:98:8b:10:c0:e6:95:f3:23:
c2:f6:c5:dc:a3:0e:3d:d8:c6:c3:30:5a:b8:e9:5a:be:1e:4e:
2e:90:c1:98:e5:ce:40:db:79:e4:cd:13:f0:b0:54:f6:a3:1e:
92:40:9f:5b:bd:94:58:2a:8c:f1:a4:30:ca:bc:1c:38:b9:ab:
21:71:e5:bd:9e:b9:9e:01:7a:65:2d:e0:bf:e8:4c:a1:8f:de:
cb:e1:fc:04:d0:cb:63:05:31:08:93:7d:d6:d7:88:51:78:90:
3c:50:e8:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:58:57 2025 by rpki-client