Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/3bdad6-0ec8-43ac-bc33-8b8d76b2d24e/1/OzmyOC84US5Z7Rjr-qWWyVUhKRA.mft
File: OzmyOC84US5Z7Rjr-qWWyVUhKRA.mft (raw, json)
Hash identifier: UqZTAL0J0QkqE8Aqf+hmXWabLnY7jf1F3XbNcKEEdAI=
Subject key identifier: A2:3F:D0:CF:93:F9:23:C5:53:A8:32:E9:D6:72:AE:49:83:F6:7C:20
Authority key identifier: 3B:39:B2:38:2F:38:51:2E:59:ED:18:EB:FA:A5:96:C9:55:21:29:10
Certificate issuer: /CN=3b39b2382f38512e59ed18ebfaa596c955212910
Certificate serial: 019853E8EDA1DDE4EA33A63D7A8F35E25F21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzmyOC84US5Z7Rjr-qWWyVUhKRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bdad6-0ec8-43ac-bc33-8b8d76b2d24e/1/OzmyOC84US5Z7Rjr-qWWyVUhKRA.mft
Manifest number: 1605
Signing time: Tue 29 Jul 2025 02:00:30 +0000
Manifest this update: Tue 29 Jul 2025 02:00:30 +0000
Manifest next update: Wed 30 Jul 2025 02:00:30 +0000
Files and hashes: 1: NoOi2jkJpMpFwHCCbL-c7xjIW1s.roa (hash: Tg08HW2CXoyF7X1ERqaX+ZU6i4eKPe169u86v6bLQVU=)
2: OzmyOC84US5Z7Rjr-qWWyVUhKRA.crl (hash: dMH+K9YJrc/cJFEzqzbPNUZ48XlN9UALnw/DVrsD9Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/3bdad6-0ec8-43ac-bc33-8b8d76b2d24e/1/OzmyOC84US5Z7Rjr-qWWyVUhKRA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/3bdad6-0ec8-43ac-bc33-8b8d76b2d24e/1/OzmyOC84US5Z7Rjr-qWWyVUhKRA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzmyOC84US5Z7Rjr-qWWyVUhKRA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 02:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:e8:ed:a1:dd:e4:ea:33:a6:3d:7a:8f:35:e2:5f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b39b2382f38512e59ed18ebfaa596c955212910
Validity
Not Before: Jul 29 02:00:30 2025 GMT
Not After : Jul 30 02:00:30 2025 GMT
Subject: CN=a23fd0cf93f923c553a832e9d672ae4983f67c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:a1:5d:e4:92:0b:9e:94:b3:5a:68:af:9c:92:
12:3a:d7:bc:0d:f5:a9:a3:73:54:e5:71:22:fb:bd:
a8:7b:a3:63:da:0f:2e:ca:1d:2f:5a:9f:33:ed:89:
80:67:cc:9f:50:0d:36:2c:31:9b:5e:6a:26:ac:a7:
6b:82:c6:fa:4e:48:4d:19:74:ed:38:e8:5f:d3:1d:
3b:4b:cf:51:8b:1f:81:6b:75:8a:9b:10:60:37:ae:
89:49:a9:8a:12:f9:64:08:5d:ff:52:73:f6:fc:08:
be:ea:53:90:b9:04:c9:9a:bc:12:df:af:5b:dc:be:
b1:6d:0e:45:4c:cc:b3:b4:e2:bf:5f:b9:8b:e2:7f:
a0:b3:c1:11:32:85:de:fd:6b:4f:98:db:0c:bd:12:
cb:b8:96:6b:d1:3d:45:d7:55:4c:89:0d:b6:73:11:
f9:90:18:53:71:a2:d0:f3:bf:ed:19:f5:cf:8c:26:
8a:3a:08:0a:95:79:e2:8d:4f:33:42:b8:30:58:b0:
9c:d5:a0:5c:c2:91:66:01:fd:eb:ff:a8:3a:e8:90:
6f:ef:0f:d9:7f:61:b3:9a:78:01:57:b3:19:22:6e:
e0:15:6b:47:49:29:0f:a4:b7:bd:9a:9b:b2:20:6d:
b5:8d:2a:cf:22:83:92:7c:7c:34:f6:d5:7b:27:a3:
7e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3F:D0:CF:93:F9:23:C5:53:A8:32:E9:D6:72:AE:49:83:F6:7C:20
X509v3 Authority Key Identifier:
keyid:3B:39:B2:38:2F:38:51:2E:59:ED:18:EB:FA:A5:96:C9:55:21:29:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzmyOC84US5Z7Rjr-qWWyVUhKRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bdad6-0ec8-43ac-bc33-8b8d76b2d24e/1/OzmyOC84US5Z7Rjr-qWWyVUhKRA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/3bdad6-0ec8-43ac-bc33-8b8d76b2d24e/1/OzmyOC84US5Z7Rjr-qWWyVUhKRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:07:62:7c:aa:81:16:05:33:63:ef:7d:ac:7b:db:9b:8c:fe:
40:52:ec:6d:d3:a0:35:7a:d7:aa:11:51:a8:24:55:f5:df:e2:
f0:6b:0c:3f:53:c0:ec:53:cd:86:a0:4c:51:b0:d0:dd:2c:7b:
8c:c1:4a:7e:40:e5:35:c8:e0:48:12:2f:28:2b:71:3a:32:7e:
8e:10:8e:de:16:ab:1f:e9:4b:43:3b:67:18:4f:1b:af:a1:0d:
5c:c6:f2:42:d4:21:92:a0:43:13:92:f9:2c:cc:9a:82:df:8a:
10:e5:5d:22:d9:f8:34:66:08:46:94:b3:66:a0:5d:af:5f:0f:
e0:a1:2a:30:ce:24:66:b1:f1:b2:4e:2a:aa:08:9d:d6:c5:a8:
a8:ba:e2:71:25:55:80:c9:17:e3:e2:fa:05:bd:c3:00:45:a0:
8e:16:7e:13:49:31:a0:97:80:8b:0e:01:b9:61:72:19:7b:f0:
a6:c7:23:e9:a7:66:44:29:58:c2:25:a8:82:47:f1:90:3e:e8:
db:9b:e7:0e:4c:1f:03:7a:54:ae:59:23:6f:8f:53:e9:d4:c6:
e8:51:60:80:64:71:2d:2d:cd:10:c2:ad:df:ae:13:8a:ee:e1:
27:17:78:7f:b7:fb:b8:fb:69:7c:0e:a4:53:08:7b:37:36:c8:
20:b1:21:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 10:49:18 2025 by rpki-client