Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
File: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft (raw, json)
Hash identifier: tFcSxzF8YjHQhcA1sgcyT07G+vYn1UkUx7dwX0Z/lTY=
Subject key identifier: 1A:3E:6D:9F:F9:B7:81:87:14:EB:DD:9D:FD:4A:DF:E2:35:9D:D1:33
Authority key identifier: 3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
Certificate issuer: /CN=3b363e09bd6942adab42415999f979990ab96682
Certificate serial: 019756119F4C90F6BBB6F4B08F6A6119C6B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
Manifest number: 0B44
Signing time: Mon 09 Jun 2025 19:01:24 +0000
Manifest this update: Mon 09 Jun 2025 19:01:24 +0000
Manifest next update: Tue 10 Jun 2025 19:01:24 +0000
Files and hashes: 1: 0KlQdT1lu0CsM24p9yilVmugr4k.roa (hash: IYmqpSxBWUxOlCC0FW+IpqPujhd/KHXz7dmBrQJbXYA=)
2: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl (hash: 6C/unxmPYbXlTWelmr5alBGp5EG7L8XUsB6L+GM00+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:56:11:9f:4c:90:f6:bb:b6:f4:b0:8f:6a:61:19:c6:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b363e09bd6942adab42415999f979990ab96682
Validity
Not Before: Jun 9 19:01:24 2025 GMT
Not After : Jun 10 19:01:24 2025 GMT
Subject: CN=1a3e6d9ff9b7818714ebdd9dfd4adfe2359dd133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:46:51:1a:ee:07:f4:d5:36:76:5b:48:a2:f4:
6a:6f:38:34:49:f2:64:4b:56:2f:1d:df:39:af:1c:
11:5d:7a:81:ff:bb:d3:87:b3:1a:81:8a:0f:f0:46:
b9:11:25:d6:a0:52:89:a4:d4:f2:5f:30:75:f2:9e:
d0:56:4c:39:e6:57:1d:29:eb:a6:ef:fc:8b:95:b7:
04:07:66:5e:b8:44:2d:00:85:55:7d:ef:21:35:e9:
27:98:19:28:3d:b2:89:1c:bd:84:5f:33:ee:01:f6:
7d:35:bf:2d:f7:07:47:26:f9:a5:4f:bf:cd:08:c7:
06:0f:f0:32:7b:cc:f8:3a:5a:20:9e:48:7f:b0:43:
65:6e:08:0a:41:21:d9:67:28:fa:67:de:21:3d:20:
c3:b9:7a:5d:44:f2:de:6a:64:36:f4:6b:e4:cd:1f:
7b:98:e3:f8:f5:ea:aa:1f:a1:35:f9:fd:4e:7d:55:
cc:d1:be:c8:9e:f7:24:e9:d4:b0:99:f3:f2:84:04:
6f:99:d5:f3:88:7f:36:87:95:bb:b6:2c:0e:3f:6a:
92:9d:db:18:80:fe:1b:8f:53:a6:b5:dd:66:52:a0:
83:00:08:b1:44:01:93:ad:7d:26:d8:d5:41:b3:01:
5d:68:d1:93:f9:bf:23:60:76:80:80:9b:07:cf:1b:
91:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3E:6D:9F:F9:B7:81:87:14:EB:DD:9D:FD:4A:DF:E2:35:9D:D1:33
X509v3 Authority Key Identifier:
keyid:3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:9c:5e:e1:56:7f:9c:4d:81:57:b4:dd:fd:35:e7:58:dd:2b:
45:88:8a:b4:4b:c7:3d:fa:ad:3c:81:89:30:0b:24:44:a4:43:
8d:f4:71:c1:c6:b3:d8:db:60:cc:ee:21:94:44:c9:2a:1a:bd:
97:7b:b1:48:66:a0:82:67:4f:7d:b4:f7:4e:d6:3a:27:d1:ee:
6d:83:8b:98:1c:f1:74:c0:2d:44:32:0c:34:21:86:de:96:e5:
c3:54:7d:a2:49:b9:82:fa:b4:85:03:3b:ee:ea:ab:28:2c:84:
12:ff:6c:64:64:6e:a7:a8:ee:33:68:6a:2d:16:04:4f:32:c3:
93:91:85:44:2f:ad:a0:63:bf:a8:69:8e:ae:08:e2:e0:2e:a0:
bc:e4:2d:f3:6d:d6:8c:3e:41:e0:62:2c:de:60:6f:e7:dc:be:
c2:b7:7b:70:86:d1:46:d8:53:68:50:88:8f:5a:8d:11:19:ec:
1b:7b:d6:35:64:9f:07:77:02:2a:2f:5b:e9:de:89:74:8a:47:
05:d4:36:43:dc:20:76:bd:30:88:6d:82:8f:24:c0:25:1d:0d:
0f:ff:25:60:3c:e4:cc:16:6b:64:7e:09:c3:ca:9f:9d:b3:8f:
fe:2a:1c:8d:90:c7:1d:cd:92:de:00:b7:83:3b:01:11:bb:77:
86:38:2f:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdWEZ9MkPa7tvSwj2phGca1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMzYzZTA5YmQ2OTQyYWRhYjQyNDE1OTk5Zjk3OTk5MGFi
OTY2ODIwHhcNMjUwNjA5MTkwMTI0WhcNMjUwNjEwMTkwMTI0WjAzMTEwLwYDVQQD
EygxYTNlNmQ5ZmY5Yjc4MTg3MTRlYmRkOWRmZDRhZGZlMjM1OWRkMTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6kZRGu4H9NU2dltIovRqbzg0SfJk
S1YvHd85rxwRXXqB/7vTh7MagYoP8Ea5ESXWoFKJpNTyXzB18p7QVkw55lcdKeum
7/yLlbcEB2ZeuEQtAIVVfe8hNeknmBkoPbKJHL2EXzPuAfZ9Nb8t9wdHJvmlT7/N
CMcGD/Aye8z4Olognkh/sENlbggKQSHZZyj6Z94hPSDDuXpdRPLeamQ29GvkzR97
mOP49eqqH6E1+f1OfVXM0b7Invck6dSwmfPyhARvmdXziH82h5W7tiwOP2qSndsY
gP4bj1Omtd1mUqCDAAixRAGTrX0m2NVBswFdaNGT+b8jYHaAgJsHzxuR5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBo+bZ/5t4GHFOvdnf1K3+I1ndEzMB8GA1UdIwQY
MBaAFDs2Pgm9aUKtq0JBWZn5eZkKuWaCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pZLUNiMXBRcTJyUWtGWm1mbDVtUXE1Wm9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9hNzIxYTAtZWRiYS00NzZkLThiZTMt
MTQxNDIyOTQwMzg1LzEvT3pZLUNiMXBRcTJyUWtGWm1mbDVtUXE1Wm9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9hNzIxYTAtZWRiYS00NzZkLThiZTMtMTQxNDIyOTQwMzg1
LzEvT3pZLUNiMXBRcTJyUWtGWm1mbDVtUXE1Wm9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB5xe4VZ/
nE2BV7Td/TXnWN0rRYiKtEvHPfqtPIGJMAskRKRDjfRxwcaz2NtgzO4hlETJKhq9
l3uxSGaggmdPfbT3TtY6J9HubYOLmBzxdMAtRDIMNCGG3pblw1R9okm5gvq0hQM7
7uqrKCyEEv9sZGRup6juM2hqLRYETzLDk5GFRC+toGO/qGmOrgji4C6gvOQt823W
jD5B4GIs3mBv59y+wrd7cIbRRthTaFCIj1qNERnsG3vWNWSfB3cCKi9b6d6JdIpH
BdQ2Q9wgdr0wiG2CjyTAJR0ND/8lYDzkzBZrZH4Jw8qfnbOP/iocjZDHHc2S3gC3
gzsBEbt3hjgvSw==
-----END CERTIFICATE-----
Generated at Mon Jun 9 21:48:49 2025 by rpki-client