Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
File: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft (raw, json)
Hash identifier: 5w5nGFgNM/7SipLY/r8wThFce8TqYyfCVGQnOhfVTk0=
Subject key identifier: E8:B8:09:9D:47:AA:5B:BC:97:34:F9:8C:2B:E7:7F:74:82:47:AA:41
Authority key identifier: 3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
Certificate issuer: /CN=3b363e09bd6942adab42415999f979990ab96682
Certificate serial: 019761A81B9FF6D135C31BC1B3E0BB141050
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
Manifest number: 0B4A
Signing time: Thu 12 Jun 2025 01:01:36 +0000
Manifest this update: Thu 12 Jun 2025 01:01:36 +0000
Manifest next update: Fri 13 Jun 2025 01:01:36 +0000
Files and hashes: 1: 0KlQdT1lu0CsM24p9yilVmugr4k.roa (hash: IYmqpSxBWUxOlCC0FW+IpqPujhd/KHXz7dmBrQJbXYA=)
2: OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl (hash: RhSWFMVhvDC6EQAm+qoJMEEPfg+q18gW59xH+LiAp8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:61:a8:1b:9f:f6:d1:35:c3:1b:c1:b3:e0:bb:14:10:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b363e09bd6942adab42415999f979990ab96682
Validity
Not Before: Jun 12 01:01:36 2025 GMT
Not After : Jun 13 01:01:36 2025 GMT
Subject: CN=e8b8099d47aa5bbc9734f98c2be77f748247aa41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f7:04:98:b4:51:6c:f2:93:eb:23:08:9a:c1:
15:3f:23:33:52:08:16:dd:41:e6:a3:eb:44:25:a4:
8f:a3:dd:47:e4:f6:76:0b:3b:d2:30:d6:21:a8:a0:
f4:6a:47:2b:c0:41:c0:53:16:50:1c:89:a8:de:10:
37:f5:48:d2:66:b3:e9:7c:c1:4a:38:01:72:79:21:
81:72:76:02:79:b3:2c:d8:ba:7b:ce:5d:7b:ee:09:
a1:41:b0:e2:46:8c:f3:15:1d:b1:58:57:49:f2:d4:
8d:6d:04:38:0e:77:d3:0c:3e:a2:a2:1e:56:38:ab:
68:11:61:f2:b7:24:17:f2:46:aa:21:4f:79:43:07:
23:08:ca:42:f5:f2:21:13:cf:5b:dc:13:38:be:83:
e9:0d:22:e2:ac:e3:42:01:3f:90:59:81:40:38:83:
e5:c3:87:72:2a:8b:da:26:9d:0a:20:01:a0:8e:53:
0e:40:22:3b:a9:07:3c:1e:70:ed:74:bd:b3:11:24:
34:56:54:28:6a:c7:cb:88:03:c1:ab:e9:37:67:9e:
cd:bc:cc:40:d1:5e:b6:d9:3c:44:04:23:f5:1a:da:
bd:fb:02:51:b7:93:62:71:c9:77:b5:b5:18:0d:d9:
91:ad:6a:e7:7d:9f:b6:dc:c2:e6:c7:63:76:9f:93:
bc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B8:09:9D:47:AA:5B:BC:97:34:F9:8C:2B:E7:7F:74:82:47:AA:41
X509v3 Authority Key Identifier:
keyid:3B:36:3E:09:BD:69:42:AD:AB:42:41:59:99:F9:79:99:0A:B9:66:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/a721a0-edba-476d-8be3-141422940385/1/OzY-Cb1pQq2rQkFZmfl5mQq5ZoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e9:c1:47:31:80:f8:87:33:96:4d:e3:c8:d7:dc:b3:4d:9f:
df:a9:fd:ec:ff:f6:51:6a:87:eb:48:c8:d8:92:66:08:f4:c3:
c6:76:58:4e:f6:fd:63:a2:96:4d:fe:27:15:28:e9:0e:fc:3f:
56:b7:3f:d7:d2:63:93:b3:13:4d:43:3f:e1:f8:ee:37:ed:58:
07:f0:f3:c2:b6:2c:69:3a:d4:0e:8b:19:9b:98:82:31:bf:ba:
03:59:ba:77:bb:32:74:50:21:05:8d:cd:4d:04:90:ef:d3:0a:
22:38:33:a8:8f:0a:11:e1:ae:5c:f0:f4:25:0c:02:98:20:b1:
ea:e6:b6:7b:b6:87:f1:18:ee:b2:d1:1f:b5:2e:0a:48:68:7e:
a6:7d:06:59:16:7b:28:84:a8:d3:c4:d5:d8:a7:74:93:d1:51:
7d:48:59:16:e4:82:85:7c:9f:d2:ea:64:12:fc:0b:f5:20:b0:
e4:e9:62:90:8f:45:4c:a5:67:09:35:b7:3b:94:29:e4:66:86:
f5:e0:2c:49:c2:1a:c9:28:37:44:8d:b8:0b:84:55:a4:87:01:
0b:55:85:a8:84:e2:19:db:28:cd:1b:c7:2d:1d:16:bd:27:66:
ea:87:5a:ba:ba:55:90:e0:2d:cc:60:2e:60:60:5f:66:71:4a:
8b:ad:73:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 09:44:14 2025 by rpki-client