Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
File: OzdnJSANjYwAzw91FK8l_zYjEPA.mft (raw, json)
Hash identifier: gfd0BzPLDmSXYGA7X0e+Oj7vBSPBDlu4UtQs/3yeVF4=
Subject key identifier: 22:4F:67:2C:6C:9A:25:51:BA:84:95:02:D4:E0:6B:1F:33:E1:D7:55
Authority key identifier: 3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
Certificate issuer: /CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Certificate serial: 019510C73E2FA352F8E70DC3BB8593E8E9BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
Manifest number: 1457
Signing time: Sun 16 Feb 2025 22:00:47 +0000
Manifest this update: Sun 16 Feb 2025 22:00:47 +0000
Manifest next update: Mon 17 Feb 2025 22:00:47 +0000
Files and hashes: 1: OzdnJSANjYwAzw91FK8l_zYjEPA.crl (hash: FDz7vQ0lrBUi65FOpujfjs9+JpZq8OldiFCgoIDgnj0=)
2: mY9DqP6sBYRDAuWwviu5NNB6lIA.roa (hash: Jpwfq6zWzFUKhEKM7+C1EDuHC9fqQSYeca6cvS8lEYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:3e:2f:a3:52:f8:e7:0d:c3:bb:85:93:e8:e9:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Validity
Not Before: Feb 16 22:00:47 2025 GMT
Not After : Feb 17 22:00:47 2025 GMT
Subject: CN=224f672c6c9a2551ba849502d4e06b1f33e1d755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b2:07:cb:d7:a5:c8:b3:93:b9:25:31:11:4f:
55:2e:b6:30:92:c3:65:8c:90:f7:c9:18:1f:f2:fb:
05:3a:72:e9:c2:8e:4e:1c:f6:a7:f8:a2:b5:f6:4c:
95:34:90:8b:30:47:ef:67:77:b3:d8:51:79:11:7b:
28:a8:51:34:f8:60:25:41:bf:6d:5c:35:f9:8c:e2:
e4:bb:87:8d:4a:c0:6f:20:a7:e0:43:69:9f:b0:f8:
c2:34:01:75:b6:90:72:cc:1b:20:3c:d1:2e:31:60:
19:15:62:54:cf:af:dd:af:fd:7e:d5:31:f9:cd:ee:
b0:78:ff:7f:22:40:2f:62:45:65:cb:30:4f:b8:c9:
f8:f3:81:a2:87:fe:89:ed:d6:2f:c1:01:6c:d4:df:
72:c0:ff:64:42:25:ed:72:b0:c3:6f:6d:ba:02:fd:
f4:47:f8:64:bc:3b:a9:f8:25:73:c7:1b:2d:92:f4:
1f:a5:80:51:d0:65:22:45:24:3e:1c:a6:10:d7:ea:
0e:18:da:83:15:36:64:c2:35:23:ca:77:30:8c:78:
8f:45:c7:94:86:b8:bf:19:be:c2:9a:0d:9f:5f:a2:
53:22:a6:72:2e:00:b8:8b:8a:4f:32:12:57:01:e8:
e9:a2:28:76:0f:14:ca:06:01:2f:74:04:18:5b:0a:
02:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:4F:67:2C:6C:9A:25:51:BA:84:95:02:D4:E0:6B:1F:33:E1:D7:55
X509v3 Authority Key Identifier:
keyid:3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1d:f5:fc:71:92:7b:7d:dc:50:76:39:b3:d4:2b:52:8f:dd:
fe:5c:e7:b4:23:59:21:f0:a8:4c:16:91:6d:d1:e1:88:25:4f:
3a:87:7d:a9:2b:af:12:65:53:a8:ef:2a:b1:60:a4:de:bb:22:
d7:de:e9:f6:28:54:d5:d1:f1:f1:a5:15:a5:06:a2:86:4d:e3:
d7:3b:be:28:a9:ce:06:cc:d0:ee:c6:fa:5f:ef:e5:27:99:8b:
42:5b:11:68:93:33:ff:1f:63:a4:f0:dc:bd:12:cc:37:02:85:
13:2c:4a:df:59:68:f7:ff:9d:47:00:76:d8:10:3c:9b:63:5d:
11:37:93:f2:7f:d2:36:3c:7e:b7:2a:38:ae:7c:72:63:97:2c:
7e:97:85:5a:a1:97:b5:cc:6b:a3:8b:57:ca:7e:de:57:31:0e:
9d:09:e7:9b:d6:15:29:df:04:ca:68:04:67:5b:01:b4:a4:04:
bb:0d:95:dc:8f:9d:16:b6:5e:17:65:88:1b:63:b6:b9:bc:c5:
64:a7:73:95:b9:f5:ab:66:8d:a6:cc:d2:ac:ea:b2:43:4f:3c:
9b:7e:96:89:18:32:05:84:fc:96:66:2a:66:34:f1:84:a0:8b:
7a:f6:24:23:28:ac:f0:30:2f:0a:45:33:6b:ef:07:4c:2e:c5:
f0:a9:8d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:44 2025 by rpki-client