Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: 8NR/vfv9m9msvMTvepKF/RrtVySLvflVHdOHHt0BQXg=
Subject key identifier: EC:A1:66:FC:35:4F:B3:86:24:10:78:BA:65:A4:BB:3B:D7:F6:DE:DD
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 0196730B5772ACD9BDBC82540C75DE2B5615
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 06B7
Signing time: Sat 26 Apr 2025 17:00:45 +0000
Manifest this update: Sat 26 Apr 2025 17:00:45 +0000
Manifest next update: Sun 27 Apr 2025 17:00:45 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: ljl2gfYptnu7NXhCVkRLH+1dr/wfUATn9Krh7fgHaLA=)
2: rDLUksu5RJZHpovJcJfARGodJyk.roa (hash: 6LsaGYClie7jwTmpMZAxkMISVs9EUqwDFuEv8m5cWNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:0b:57:72:ac:d9:bd:bc:82:54:0c:75:de:2b:56:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Apr 26 17:00:45 2025 GMT
Not After : Apr 27 17:00:45 2025 GMT
Subject: CN=eca166fc354fb386241078ba65a4bb3bd7f6dedd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:90:2e:d8:4e:15:2e:a1:f2:10:61:c3:01:65:
a0:38:a1:e1:81:ba:b0:1a:7e:cf:35:60:5a:c4:db:
44:c2:f1:48:77:2c:5e:4b:41:89:3d:c0:23:f0:28:
ad:e4:09:56:e9:da:89:39:11:5c:01:f4:f2:b9:95:
c8:41:e2:7d:81:25:d9:bf:1c:1b:9b:cf:ab:42:9f:
c1:6b:3d:fa:ad:96:71:dc:04:51:88:1a:c8:84:97:
ea:a7:0c:5d:51:fa:5d:b7:45:18:c0:cb:ae:51:7d:
d2:1a:71:57:89:f5:62:13:1d:b1:56:4e:11:8d:d4:
c8:83:3c:df:38:76:7c:b6:8a:b5:b4:8a:81:52:f3:
b6:01:ab:f1:d3:5b:41:36:a5:75:57:07:53:5e:e0:
81:32:b5:f5:7d:23:7e:4c:d0:d8:7c:be:7e:7b:34:
06:e4:46:43:0e:71:98:c3:b1:50:3b:91:72:f0:b1:
8f:cc:f8:78:6d:ec:20:2b:e9:db:bf:32:0e:4d:c3:
1c:04:34:92:ae:13:29:57:b4:2d:c4:69:8a:6c:3b:
7b:e1:7b:ec:53:de:fd:6d:cd:ca:3f:c1:6a:a6:b4:
46:6d:58:f9:d6:ad:be:00:4f:5c:ff:6e:ba:cd:e2:
b2:a5:8d:fc:ca:89:06:d0:20:2d:7e:2e:ca:44:05:
9a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A1:66:FC:35:4F:B3:86:24:10:78:BA:65:A4:BB:3B:D7:F6:DE:DD
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:53:40:f0:ec:8b:77:86:fd:49:7e:8f:46:4b:69:73:24:f7:
69:6c:d5:8f:98:b9:c4:4b:1b:d4:e6:7f:c0:77:7f:ca:33:6c:
31:fb:f6:07:19:e7:ae:51:93:87:09:ad:16:90:32:0c:ef:e2:
6e:a8:e6:6f:89:a1:c6:eb:2d:b5:95:04:96:2e:5e:75:65:33:
a9:95:cc:89:5a:92:ed:f1:af:95:3b:e0:5c:f9:b7:a2:0f:bb:
d6:69:6a:78:c1:d8:0c:51:1f:b4:e5:72:96:34:eb:a3:6f:90:
90:26:59:1e:e4:50:e9:e7:fd:3e:45:99:31:e4:41:13:16:c2:
89:5f:7a:fd:f3:71:f9:03:a9:ef:ff:a5:d9:b4:ed:19:88:e3:
e0:10:2d:ad:21:c6:88:b2:8b:3c:b3:8c:04:9d:db:72:c8:4f:
f6:e9:52:8e:fd:63:86:e7:81:40:40:7e:ee:cc:d4:3b:ef:5f:
6f:b4:a9:88:dc:62:78:ee:6e:26:d6:0d:5b:d9:a9:26:53:15:
78:d4:c8:a7:4b:ac:61:c1:43:90:6a:94:97:88:e9:93:65:7d:
9c:9c:fe:1c:9f:16:e8:af:92:d5:65:47:06:a5:73:84:a1:35:
dc:d1:b4:34:f0:93:17:75:b4:0a:30:62:cd:ba:d2:63:3a:87:
6a:ef:35:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 01:03:27 2025 by rpki-client