
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
File: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft (raw, json)
Hash identifier: fXeek0FN27VrtSGOtyFTkJHRCVSZxV97JuWsz7Viy9s=
Subject key identifier: 13:E2:E4:AD:F7:26:AE:7C:D4:17:B0:83:96:09:C2:10:72:9F:67:33
Authority key identifier: 3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
Certificate issuer: /CN=3b363e09bd6942adab42415999f979990ab96682
Certificate serial: 01976B4F99BE295E06F2F5E6E172DA9A0C0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
Manifest number: 0B4F
Signing time: Fri 13 Jun 2025 22:01:08 +0000
Manifest this update: Fri 13 Jun 2025 22:01:08 +0000
Manifest next update: Sat 14 Jun 2025 22:01:08 +0000
Files and hashes: 1: 0KlQdT1lu0CsM24p9yilVmugr4k.roa (hash: IYmqpSxBWUxOlCC0FW+IpqPujhd/KHXz7dmBrQJbXYA=)
2: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl (hash: 4d7zee1Z3AR87IYCt6i1n9+I4ai4GdpSODUKcrioevM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:4f:99:be:29:5e:06:f2:f5:e6:e1:72:da:9a:0c:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b363e09bd6942adab42415999f979990ab96682
Validity
Not Before: Jun 13 22:01:08 2025 GMT
Not After : Jun 14 22:01:08 2025 GMT
Subject: CN=13e2e4adf726ae7cd417b0839609c210729f6733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c0:17:72:27:25:0b:e5:c7:1e:23:e2:23:27:
62:65:6d:54:98:ff:4c:d6:ef:36:11:05:43:7f:fb:
34:b3:fd:51:07:65:06:d1:02:c0:6b:22:17:bd:93:
2e:e5:d7:0d:35:10:99:b0:1c:c9:94:5f:fe:54:27:
76:9d:e3:8a:2d:0b:df:64:b6:73:9b:cc:e5:ce:a4:
54:85:d2:d8:50:3b:63:1b:dd:bc:64:62:3b:61:a0:
64:34:e3:64:e4:50:82:b3:6b:6b:13:32:17:ed:5e:
7c:78:ab:e3:93:b1:0f:fc:c1:d7:67:a4:30:f9:ba:
ab:b1:93:33:5c:03:39:05:1c:21:d7:61:cf:a1:86:
dc:f5:f3:01:74:44:09:72:05:38:1f:f7:dd:82:81:
14:3e:14:27:25:a3:da:32:fe:0e:0e:5a:4c:ff:7b:
3d:47:85:3f:fd:35:c4:a1:83:95:25:80:37:14:12:
d8:34:27:6a:09:b9:d1:2a:b2:31:08:34:11:b2:ed:
b0:4b:01:a2:a0:39:f3:7c:76:01:bb:11:61:01:aa:
8b:68:1b:23:07:f6:54:4f:ab:a1:17:93:71:40:50:
c7:f1:c9:6a:5f:97:07:35:00:0d:c8:57:7e:b2:74:
c3:42:04:44:fd:c1:8b:30:94:20:b7:2f:d6:1e:a5:
d4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E2:E4:AD:F7:26:AE:7C:D4:17:B0:83:96:09:C2:10:72:9F:67:33
X509v3 Authority Key Identifier:
keyid:3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:a6:02:3f:1a:d4:fd:ab:8a:56:19:f0:13:58:5d:c0:f4:12:
54:47:9d:70:90:31:fd:b2:63:0f:32:be:74:cb:6a:4a:24:6a:
40:f7:f8:d1:ce:fb:7e:81:f7:47:40:ee:73:2c:ea:fc:ad:e1:
ca:70:cc:d8:f2:ef:bd:01:e3:fa:52:d8:ea:2c:52:b0:5b:f6:
f1:16:67:60:cf:e4:2e:20:72:d2:8d:7c:63:d6:9f:72:7b:cc:
86:5e:df:62:c1:f1:f9:1b:cc:39:04:b8:28:d2:c4:85:bb:33:
ee:f1:97:f5:32:7b:16:fc:0d:53:cb:cd:3c:f0:5e:d8:0e:31:
8f:c3:96:da:57:eb:a4:7e:95:62:53:62:ff:ab:90:61:d2:f5:
21:2c:b8:92:93:a1:9e:9d:85:87:b7:8d:e5:29:98:ba:78:8f:
a5:dd:dc:e8:06:8c:3f:57:20:a3:78:a7:08:9a:e6:e4:2a:93:
df:4a:c4:13:36:c5:88:eb:60:b0:40:cd:f2:46:ed:7c:5b:11:
e7:97:4d:ab:49:9e:55:84:e1:eb:2c:4d:b3:00:d8:7a:60:82:
80:5b:cf:49:f2:a9:42:98:22:27:98:ec:c2:b7:c9:cf:8d:e7:
17:9d:af:03:c3:66:1a:d4:1d:64:ff:ed:ba:89:21:4c:bc:52:
1c:5a:b4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 00:40:40 2025 by rpki-client