Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: 6etC2nXpmMDpDZcM1Tt/0AQE2f8YbwPBaKdXSHi/UeQ=
Subject key identifier: 77:8F:4D:D7:3C:0A:2C:F3:4B:90:2D:4D:01:35:D2:FB:B9:F9:F3:97
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 01965ACBA7D288FB236EB6106BAA09C3BDFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 08EB
Signing time: Tue 22 Apr 2025 00:00:18 +0000
Manifest this update: Tue 22 Apr 2025 00:00:18 +0000
Manifest next update: Wed 23 Apr 2025 00:00:18 +0000
Files and hashes: 1: 6t5f4Ujb0FAO84dMqgRAqgV1jVs.roa (hash: u7nakvY2IzZI/nPIoCHOpaknwKeAH1RDuYLRGXqd0p4=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: BQ/1UU+3AMYvGDWC4wlxSUrNeJaWvCMqF2qJWNIopos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:cb:a7:d2:88:fb:23:6e:b6:10:6b:aa:09:c3:bd:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Apr 22 00:00:18 2025 GMT
Not After : Apr 23 00:00:18 2025 GMT
Subject: CN=778f4dd73c0a2cf34b902d4d0135d2fbb9f9f397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:d8:5e:24:6d:16:38:20:c9:46:60:f2:4e:
77:72:1e:e0:3b:c5:71:b6:b6:81:1d:d0:45:3d:7e:
e9:1c:9d:d7:7a:3e:5f:a9:e4:95:8f:ee:f6:b3:57:
42:fc:6a:1c:5c:e3:c2:5a:fa:fd:85:93:53:56:11:
5b:07:61:70:4d:d4:0a:92:ac:aa:aa:30:c3:9d:e1:
0f:9e:a5:24:50:01:b6:94:bd:4d:d1:cc:83:15:43:
8f:ef:91:b2:e5:bd:55:ba:b0:db:a5:0a:29:1a:08:
c9:10:e0:85:78:a4:34:cf:b6:a4:f5:6e:17:7f:92:
83:65:31:a8:ce:4d:63:c6:7e:fe:f2:02:d1:b7:ce:
1a:d9:c9:c2:cc:3d:c6:4b:f6:b2:6e:fa:63:67:b0:
98:d5:d6:d8:96:a9:9a:b8:5a:3d:3f:a1:9e:71:b7:
4f:f5:98:61:ba:49:54:8c:eb:d6:77:37:34:11:ed:
50:7a:64:96:ba:45:c7:af:f2:16:23:95:71:64:90:
94:1a:cc:c1:f0:da:08:71:0e:9a:6b:06:21:77:60:
94:64:62:5a:b4:90:fc:f5:e4:9a:66:db:54:0b:e9:
a1:4c:e1:c2:76:5f:d2:72:c2:58:b1:b9:4d:79:ae:
b5:8f:2f:63:d5:da:d6:35:6e:b5:25:54:52:89:03:
a4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:8F:4D:D7:3C:0A:2C:F3:4B:90:2D:4D:01:35:D2:FB:B9:F9:F3:97
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:f7:bb:33:e3:fe:fc:31:70:54:91:87:3b:38:98:21:f8:6f:
07:9c:ca:00:ac:25:7b:a2:e3:13:9d:ca:07:d0:99:cd:04:70:
e9:33:0f:80:94:e9:13:ac:5e:18:0a:6e:df:05:f7:67:59:e3:
59:0d:d7:52:95:cc:f8:26:e2:c9:50:03:17:b6:26:75:74:98:
c2:d3:a7:12:84:e5:33:b7:87:5e:98:e6:37:2c:c0:1f:54:c4:
c3:71:81:0b:f0:9c:60:02:8d:13:f4:c0:90:eb:02:c2:68:e9:
cb:ff:b3:b3:49:c1:82:2d:73:6f:3c:8a:a3:b1:75:65:2e:65:
5b:76:b4:ba:c7:eb:55:93:7e:a6:21:cf:6a:76:d1:35:38:3e:
95:20:97:cb:f5:96:c9:81:85:46:bc:53:15:db:26:96:2f:7c:
a4:54:68:36:de:38:f0:0b:b5:b1:06:f6:88:4e:de:40:fc:7f:
72:12:d7:a5:41:e8:9c:d6:38:43:84:e7:b9:09:e5:1a:5d:92:
36:15:fb:17:22:3d:24:58:6b:93:0e:5d:32:82:6d:07:50:94:
c2:4d:e1:b4:89:88:37:85:10:c1:d2:a3:ff:ba:ea:9d:94:74:
d4:26:5c:89:3e:17:40:38:21:3f:66:51:f3:b8:f2:66:85:9b:
2e:06:23:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:23:53 2025 by rpki-client