Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
File: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft (raw, json)
Hash identifier: JxWXF3Wi2qs1Ur/TYXooVNKEfZnhIrsqENbf0w/E8sU=
Subject key identifier: C4:A7:77:4E:5A:74:D1:95:2A:DA:0A:25:4C:4C:7E:F0:8C:54:FB:76
Authority key identifier: 3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
Certificate issuer: /CN=3b363e09bd6942adab42415999f979990ab96682
Certificate serial: 0194C3888583DC40FEBE3EFC2AF90CC09FCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
Manifest number: 09EF
Signing time: Sat 01 Feb 2025 22:01:31 +0000
Manifest this update: Sat 01 Feb 2025 22:01:31 +0000
Manifest next update: Sun 02 Feb 2025 22:01:31 +0000
Files and hashes: 1: 0KlQdT1lu0CsM24p9yilVmugr4k.roa (hash: IYmqpSxBWUxOlCC0FW+IpqPujhd/KHXz7dmBrQJbXYA=)
2: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl (hash: l6q7Dfhj3EGI6K5S9Xp6ambcdL8c6rxw4L3qTjJqmI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:85:83:dc:40:fe:be:3e:fc:2a:f9:0c:c0:9f:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b363e09bd6942adab42415999f979990ab96682
Validity
Not Before: Feb 1 22:01:31 2025 GMT
Not After : Feb 2 22:01:31 2025 GMT
Subject: CN=c4a7774e5a74d1952ada0a254c4c7ef08c54fb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:74:67:ac:8c:00:af:1c:ab:b3:26:ba:41:46:
b7:19:36:c6:79:3d:a1:d2:01:85:f9:8d:28:0b:75:
17:18:9d:4f:df:82:68:11:6e:9f:58:48:8a:90:2e:
e3:83:44:f5:98:86:60:75:5e:09:99:e4:b5:e2:49:
45:97:9c:49:fe:82:1b:f9:29:35:af:60:2b:70:cf:
34:d4:26:5f:8f:aa:b0:2a:f9:cb:67:8b:cf:73:43:
bb:a4:98:41:2b:14:9f:76:c0:8c:43:14:ec:9d:15:
37:e2:85:98:f4:70:dd:e4:4f:19:b2:57:8e:92:4f:
d0:92:b8:c0:d2:6b:9f:a3:08:b6:6f:b0:58:a2:68:
c4:32:e1:0e:94:10:fa:e5:9d:a1:7d:d3:9e:b2:66:
4f:3c:9b:6c:03:f1:68:12:af:35:1a:c3:92:af:75:
56:90:75:53:9f:c5:91:d7:6f:c9:cd:31:ac:e1:c8:
ec:d9:cd:8a:31:c1:36:56:b4:0f:ed:9d:5a:c4:e0:
2f:20:27:91:0b:1d:69:31:f2:3c:f6:f5:6f:e4:8d:
39:59:48:23:d6:4d:89:5a:30:f5:a0:50:84:62:8d:
48:35:d9:8f:9a:3b:20:39:da:08:f7:61:a3:4c:c8:
5a:54:b4:49:df:ee:ef:58:b8:85:cf:e5:84:05:57:
31:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A7:77:4E:5A:74:D1:95:2A:DA:0A:25:4C:4C:7E:F0:8C:54:FB:76
X509v3 Authority Key Identifier:
keyid:3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:33:2a:19:db:bf:af:58:8b:f3:f2:d9:fe:cd:64:82:71:b6:
ca:3f:3a:35:7d:c9:b0:f2:bb:04:88:a2:73:ac:9a:57:1f:12:
ac:e2:e2:8d:ba:af:58:6a:32:f8:77:e1:5f:a2:d3:d4:c0:c6:
01:30:7f:a7:28:da:ad:aa:9d:68:57:e5:ec:fa:b8:7e:64:8c:
bd:08:02:5e:d3:24:97:f6:69:4d:dc:3e:04:a6:c1:94:3c:7e:
8c:61:00:04:0b:87:7d:9d:76:1b:d2:ec:35:79:ce:4d:a0:40:
e3:52:8f:3b:ae:31:fb:a7:18:a7:2f:bb:f3:b1:ed:61:ab:51:
6b:54:68:80:17:d2:15:d9:ac:c4:d5:cc:73:d3:99:c4:a8:e8:
99:31:44:26:db:82:25:3a:f2:fe:99:a8:68:0e:e4:78:47:aa:
4f:33:98:04:8c:a2:c2:23:37:30:db:d4:7a:07:7b:e6:89:37:
1e:ed:8c:bd:47:af:c5:34:51:46:56:09:71:5c:bc:e3:30:b6:
1a:24:0c:ce:76:90:bd:8f:41:47:72:99:da:d1:93:64:13:8b:
18:6f:6c:5b:55:14:19:52:f7:55:42:52:96:79:b3:24:6f:c9:
26:88:ae:15:d0:88:8b:ad:26:1d:13:77:d1:18:76:3e:2d:0e:
d3:77:1a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:59:21 2025 by rpki-client