Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
File: OCZCPrAZVSJObBHRnG05OB6L4h0.mft (raw, json)
Hash identifier: dyXHfxooJqmE36J2XOUNl0BV9Steey8a6NHpS/CNbME=
Subject key identifier: 31:3B:AD:4D:1B:C8:3C:02:B6:FF:89:38:E4:E4:2C:42:65:B8:A2:4E
Authority key identifier: 38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D
Certificate issuer: /CN=3826423eb01955224e6c11d19c6d39381e8be21d
Certificate serial: 0196523653C66C2FBFA3C750CC555DC4CBEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
Manifest number: 0931
Signing time: Sun 20 Apr 2025 08:00:14 +0000
Manifest this update: Sun 20 Apr 2025 08:00:14 +0000
Manifest next update: Mon 21 Apr 2025 08:00:14 +0000
Files and hashes: 1: OCZCPrAZVSJObBHRnG05OB6L4h0.crl (hash: eFB48FMv56sMKIzwngK3Lifnw1g73Ni4DpVl1BjWot0=)
2: uEaPXwIvt3nd0ncZqWTmGRgN2Co.roa (hash: V/FrvYjkhAUQhpjTMGaHfRf+RO486rwY6D+JJKx9Z6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:53:c6:6c:2f:bf:a3:c7:50:cc:55:5d:c4:cb:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3826423eb01955224e6c11d19c6d39381e8be21d
Validity
Not Before: Apr 20 08:00:14 2025 GMT
Not After : Apr 21 08:00:14 2025 GMT
Subject: CN=313bad4d1bc83c02b6ff8938e4e42c4265b8a24e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b4:63:e1:5f:60:94:4f:1e:47:86:c0:a6:f8:
a6:dc:64:ba:dd:5b:1c:cc:98:81:4b:d6:87:fd:ea:
e3:4f:6f:c7:ca:e4:fe:f2:09:fb:1a:14:3a:77:76:
73:7c:1c:d3:c1:3b:74:27:34:10:bd:e5:c5:e8:5e:
bd:16:89:bf:8b:81:d0:ac:bd:90:37:fa:7f:ee:0e:
b6:ec:1b:30:c8:54:46:d3:9f:34:c3:07:0c:1f:85:
7e:ab:50:79:74:4e:56:3e:62:44:3e:25:fd:fd:f9:
9e:ca:86:cb:33:39:da:ee:3c:9f:95:31:8c:4f:fd:
5c:c1:28:fb:26:02:5b:5f:71:58:4b:9a:aa:38:5d:
1f:94:8b:7a:06:8e:05:27:5b:1b:39:5f:55:dc:69:
e4:2c:c2:75:03:da:e7:e1:e6:ea:57:ff:9f:c5:35:
39:c6:bc:1a:c4:8f:0d:12:6e:a9:f2:27:88:6f:9e:
54:4f:a9:9f:65:f9:10:02:47:6a:a6:2a:ce:ac:7c:
f7:16:d6:3e:a5:c5:77:f8:2b:fa:b9:b3:14:36:d5:
eb:5a:7f:6e:f3:9e:1b:68:dd:38:77:7d:ab:88:68:
c6:00:14:22:5c:fa:e2:f5:d3:d7:a4:1e:c9:f4:1c:
ee:52:56:58:cd:77:4a:4a:85:fc:6f:26:74:95:c3:
09:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:3B:AD:4D:1B:C8:3C:02:B6:FF:89:38:E4:E4:2C:42:65:B8:A2:4E
X509v3 Authority Key Identifier:
keyid:38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:79:51:02:1b:95:99:06:68:15:35:81:54:4a:31:1e:1c:2f:
58:85:ef:0e:92:7b:75:03:ae:85:2f:0c:be:fe:ee:d5:01:91:
8c:0d:d8:e6:47:78:c5:41:7e:fa:f8:e4:9e:22:8f:3a:39:ab:
44:85:f0:ff:f7:e0:b9:78:51:10:0a:d0:b0:f9:95:5e:96:9b:
1c:a7:1a:a6:cf:22:3e:9a:2b:6b:90:8a:83:fd:c7:93:6a:08:
93:be:77:a8:cc:94:14:5b:64:8f:05:29:79:ab:96:b8:87:8c:
51:52:90:fb:c7:2d:91:94:79:a9:8d:e9:fc:89:b4:24:e5:f5:
a5:5c:d0:f7:8f:09:ab:18:cc:ea:c0:d1:7d:4c:44:28:0b:66:
5a:71:70:28:bf:32:ac:a6:d0:ec:57:ca:19:bf:6f:6c:0b:a9:
1f:0a:17:f6:16:a1:70:a3:4f:68:2b:95:53:1a:5a:3f:38:a9:
ff:6d:3c:35:0b:c5:91:47:3b:3f:bb:8a:6e:bb:da:94:74:23:
be:4d:98:83:15:78:a2:21:99:ed:d4:c2:a1:f0:3f:23:3d:e4:
9f:b6:82:79:b2:ae:c2:59:30:09:ca:96:82:98:de:55:3a:c9:
d1:01:cd:47:dc:f7:65:ed:d5:d5:e8:eb:81:dc:88:30:a1:11:
ef:4d:f1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:18:02 2025 by rpki-client