Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
File: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft (raw, json)
Hash identifier: RQoY4FvNeTkEdLujRiRpZg29DhCrWY2ZlQBb44gCIy8=
Subject key identifier: 98:36:E6:44:8B:97:6F:91:E2:7D:6E:2B:49:2C:0C:7C:D3:82:78:4C
Authority key identifier: 3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
Certificate issuer: /CN=3b363e09bd6942adab42415999f979990ab96682
Certificate serial: 01965EDF9C0E72E6DCD49DC0319F53EA582F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
Manifest number: 0AC4
Signing time: Tue 22 Apr 2025 19:00:34 +0000
Manifest this update: Tue 22 Apr 2025 19:00:34 +0000
Manifest next update: Wed 23 Apr 2025 19:00:34 +0000
Files and hashes: 1: 0KlQdT1lu0CsM24p9yilVmugr4k.roa (hash: IYmqpSxBWUxOlCC0FW+IpqPujhd/KHXz7dmBrQJbXYA=)
2: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl (hash: nOBH1UA9x3GZ55V3xU1rFDAIOib/a2HfkDBXMLq31ck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 19:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:df:9c:0e:72:e6:dc:d4:9d:c0:31:9f:53:ea:58:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b363e09bd6942adab42415999f979990ab96682
Validity
Not Before: Apr 22 19:00:34 2025 GMT
Not After : Apr 23 19:00:34 2025 GMT
Subject: CN=9836e6448b976f91e27d6e2b492c0c7cd382784c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a1:fb:32:3e:d6:21:75:f9:45:8a:0b:c3:ae:
fc:91:71:86:7b:ee:8f:51:72:16:b7:0f:7f:e4:f5:
16:24:75:d3:b2:fa:16:2a:fd:21:1f:7e:db:5a:fd:
16:aa:fe:2a:18:5d:11:8a:1a:9c:8c:1d:f1:c6:b7:
67:d1:fe:74:9d:73:bd:eb:24:ea:8a:bd:e4:d1:16:
fd:99:49:91:d5:05:cc:d3:e6:ae:61:a0:66:be:96:
04:a9:ba:c3:dd:76:3f:03:8a:35:c9:29:dd:65:37:
fa:6e:dc:04:09:d5:37:a5:01:99:48:ee:22:9d:34:
88:c2:6d:f5:77:44:63:92:ed:da:82:1e:0e:18:af:
99:a0:64:af:6d:1f:68:b6:ae:84:2a:a0:8a:59:c7:
79:69:5e:4c:50:66:b8:ea:b5:bd:15:f4:47:34:0a:
b1:2d:a1:21:97:a8:87:f9:d3:f4:1f:ff:bc:b3:f3:
3c:df:1d:87:11:17:90:aa:c3:ba:62:e7:53:cb:30:
85:8d:43:2d:3e:6a:db:6e:a4:30:59:29:74:a7:dd:
c5:b3:e5:e4:32:5d:f1:06:ce:a1:16:d4:41:f2:33:
d3:92:5b:33:96:49:24:ea:3a:72:df:eb:0a:dc:da:
c1:c1:4e:16:fb:8a:9d:7e:71:5c:fd:6d:85:04:e0:
ae:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:36:E6:44:8B:97:6F:91:E2:7D:6E:2B:49:2C:0C:7C:D3:82:78:4C
X509v3 Authority Key Identifier:
keyid:3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:66:c4:40:e8:2b:3a:c2:a5:05:2a:08:51:05:3c:30:ac:d7:
53:d7:bd:2a:e8:25:09:b2:c2:bd:62:cf:3e:a8:48:bb:11:12:
4c:99:14:69:01:a4:f6:2b:54:12:54:6c:1e:29:e6:92:06:be:
a0:95:8e:57:ae:92:b4:67:d3:86:83:f4:34:14:da:be:81:ef:
29:68:2b:5d:48:28:80:bd:f1:d4:d7:42:77:7b:2c:5c:5f:6f:
b8:24:b3:db:ca:5e:7b:84:ec:e7:47:d3:84:c7:61:4b:7e:2f:
a9:9e:ab:6b:cc:c2:93:12:3e:55:6e:3b:e1:38:20:7a:51:f2:
b5:8b:6b:a3:dc:96:80:60:8c:9f:2b:5b:26:c0:fb:30:d7:81:
2f:0a:e2:ce:48:d3:e4:70:e7:d0:42:1d:bc:00:ff:08:f8:93:
6d:36:c2:3b:b1:af:9d:f5:e3:08:3f:0a:34:32:94:e5:31:0c:
65:38:e7:6c:03:f0:57:06:94:ca:d8:91:89:44:8b:6b:fa:ac:
54:a8:b7:a1:49:25:47:09:d2:86:d2:73:81:91:63:76:44:46:
92:9b:82:f6:b3:d9:56:99:0f:a0:92:cd:f3:68:f4:67:a7:55:
1b:d4:52:c7:62:e3:0b:fb:63:fe:67:28:cf:12:a2:a7:3b:12:
ae:29:4b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:33:19 2025 by rpki-client