Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
File: OCZCPrAZVSJObBHRnG05OB6L4h0.mft (raw, json)
Hash identifier: 8+j318mGkTFzxUYiYqDVtVTOKK4SQM56MjPWNsl4nIQ=
Subject key identifier: 57:EE:45:7F:CD:EF:34:C4:05:6B:1F:FB:6B:9B:0B:84:1F:EF:2A:B6
Authority key identifier: 38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D
Certificate issuer: /CN=3826423eb01955224e6c11d19c6d39381e8be21d
Certificate serial: 019511A28CDFDD92FB60ACC1206775D105D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
Manifest number: 088B
Signing time: Mon 17 Feb 2025 02:00:20 +0000
Manifest this update: Mon 17 Feb 2025 02:00:20 +0000
Manifest next update: Tue 18 Feb 2025 02:00:20 +0000
Files and hashes: 1: OCZCPrAZVSJObBHRnG05OB6L4h0.crl (hash: MLrdCRmJA/YL69VylqlcpEt9CaV/UtOYMqzECeSEb44=)
2: uEaPXwIvt3nd0ncZqWTmGRgN2Co.roa (hash: V/FrvYjkhAUQhpjTMGaHfRf+RO486rwY6D+JJKx9Z6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:a2:8c:df:dd:92:fb:60:ac:c1:20:67:75:d1:05:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3826423eb01955224e6c11d19c6d39381e8be21d
Validity
Not Before: Feb 17 02:00:20 2025 GMT
Not After : Feb 18 02:00:20 2025 GMT
Subject: CN=57ee457fcdef34c4056b1ffb6b9b0b841fef2ab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:eb:a0:b1:e9:0f:ba:43:ad:03:8a:a6:c7:12:
de:0a:a0:3c:5a:a8:6a:7d:f4:9c:12:3d:b8:f7:5d:
66:3e:8c:d6:4c:c2:23:47:c8:86:94:f3:79:30:27:
fd:cd:18:e0:c3:d5:ac:26:65:06:c1:d7:c6:ec:8c:
6e:c9:58:8f:7a:c1:ea:fd:b9:62:58:e7:15:1b:1d:
0c:70:9e:ef:22:44:68:b4:39:be:7c:7c:56:c0:24:
d1:cd:e9:63:b5:a9:11:99:ef:ac:0f:eb:2a:7f:6f:
7f:e7:85:18:02:3e:1c:6d:60:e7:29:46:15:10:92:
0c:c9:0f:b9:29:ee:2f:55:83:0b:e2:19:86:5d:b5:
c4:41:36:b5:45:14:ea:32:1e:e5:77:cf:0e:c4:5b:
54:09:21:03:33:f9:43:a5:25:c8:e3:26:14:ad:71:
3e:46:b9:e8:01:7e:a1:58:ac:8a:14:e5:fb:8e:4b:
b7:d3:ad:3e:97:1b:84:ec:40:43:4b:98:a1:8e:c9:
7d:b1:8e:6f:84:4b:30:f2:6e:c3:14:9d:61:3a:3d:
b7:be:78:68:a6:b7:7d:bd:e1:e7:6b:47:d4:ef:2f:
d0:dc:7c:04:cd:a9:d0:c4:cb:c7:49:6d:79:a8:d8:
47:35:6d:ff:16:37:91:ad:13:c1:f0:68:9b:87:84:
6b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:EE:45:7F:CD:EF:34:C4:05:6B:1F:FB:6B:9B:0B:84:1F:EF:2A:B6
X509v3 Authority Key Identifier:
keyid:38:26:42:3E:B0:19:55:22:4E:6C:11:D1:9C:6D:39:38:1E:8B:E2:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCZCPrAZVSJObBHRnG05OB6L4h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/11d1e5-3cc7-4972-a07a-785e3e8768f9/1/OCZCPrAZVSJObBHRnG05OB6L4h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:12:00:a0:c0:9f:ee:d5:44:ad:2a:0f:ed:02:77:49:ea:bf:
a7:10:d0:ef:79:4f:47:28:3c:d4:52:7c:5a:54:80:22:50:3b:
e5:a2:d7:28:ea:0a:43:cf:f2:e3:cf:3a:73:5c:2b:f8:0d:44:
0a:9d:af:93:00:d9:41:c1:96:cc:b5:d9:87:ca:4d:f5:ea:e8:
bc:2e:c6:0c:6d:a7:9c:07:06:c2:53:64:69:f1:7d:00:e6:46:
79:6e:55:7e:eb:7f:b7:7c:cd:a0:8f:5f:63:dc:27:79:fa:79:
97:ac:19:3d:10:18:36:22:67:e4:a0:20:21:a0:f7:9a:a3:96:
fb:03:b0:5f:28:2f:e1:30:d9:db:10:aa:34:5c:4c:58:17:42:
d8:8d:0b:f0:56:60:93:ac:82:a5:ef:d0:bd:d9:23:3f:bd:08:
7b:3d:21:e1:c7:5f:c0:49:20:c6:46:02:0e:67:3f:3e:44:ea:
ba:ec:00:c9:8b:15:1c:04:fd:35:cc:bc:2a:1e:96:fa:03:63:
77:1f:f6:4b:09:75:1c:aa:07:06:82:01:98:ba:b5:a1:09:8c:
5c:d3:b2:17:95:ce:1b:7a:d6:3b:ed:1b:d4:37:89:34:4c:5d:
5d:4f:9a:21:49:41:56:fe:90:f4:a0:7b:e6:76:41:81:0f:80:
86:ae:4e:a1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURoozf3ZL7YKzBIGd10QXWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MjY0MjNlYjAxOTU1MjI0ZTZjMTFkMTljNmQzOTM4MWU4
YmUyMWQwHhcNMjUwMjE3MDIwMDIwWhcNMjUwMjE4MDIwMDIwWjAzMTEwLwYDVQQD
Eyg1N2VlNDU3ZmNkZWYzNGM0MDU2YjFmZmI2YjliMGI4NDFmZWYyYWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlOugsekPukOtA4qmxxLeCqA8Wqhq
ffScEj24911mPozWTMIjR8iGlPN5MCf9zRjgw9WsJmUGwdfG7IxuyViPesHq/bli
WOcVGx0McJ7vIkRotDm+fHxWwCTRzeljtakRme+sD+sqf29/54UYAj4cbWDnKUYV
EJIMyQ+5Ke4vVYML4hmGXbXEQTa1RRTqMh7ld88OxFtUCSEDM/lDpSXI4yYUrXE+
RrnoAX6hWKyKFOX7jku3060+lxuE7EBDS5ihjsl9sY5vhEsw8m7DFJ1hOj23vnho
prd9veHna0fU7y/Q3HwEzanQxMvHSW15qNhHNW3/FjeRrRPB8Gibh4RrUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfuRX/N7zTEBWsf+2ubC4Qf7yq2MB8GA1UdIwQY
MBaAFDgmQj6wGVUiTmwR0ZxtOTgei+IdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0NaQ1ByQVpWU0pPYkJIUm5HMDVPQjZMNGgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8xMWQxZTUtM2NjNy00OTcyLWEwN2Et
Nzg1ZTNlODc2OGY5LzEvT0NaQ1ByQVpWU0pPYkJIUm5HMDVPQjZMNGgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8xMWQxZTUtM2NjNy00OTcyLWEwN2EtNzg1ZTNlODc2OGY5
LzEvT0NaQ1ByQVpWU0pPYkJIUm5HMDVPQjZMNGgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqRIAoMCf
7tVErSoP7QJ3Seq/pxDQ73lPRyg81FJ8WlSAIlA75aLXKOoKQ8/y4886c1wr+A1E
Cp2vkwDZQcGWzLXZh8pN9erovC7GDG2nnAcGwlNkafF9AOZGeW5Vfut/t3zNoI9f
Y9wnefp5l6wZPRAYNiJn5KAgIaD3mqOW+wOwXygv4TDZ2xCqNFxMWBdC2I0L8FZg
k6yCpe/QvdkjP70Iez0h4cdfwEkgxkYCDmc/PkTquuwAyYsVHAT9Ncy8Kh6W+gNj
dx/2Swl1HKoHBoIBmLq1oQmMXNOyF5XOG3rWO+0b1DeJNExdXU+aIUlBVv6Q9KB7
5nZBgQ+Ahq5OoQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:39 2025 by rpki-client