Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: fjdKC0JnbdAsskLLhUfxOTPLV1wTsxMtawJ+We2x7eA=
Subject key identifier: 03:43:CD:B1:51:40:DB:FA:95:63:E8:2A:E7:46:D0:75:FD:B4:E0:BE
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 019746673EA61D553532CF26BB21B73D0520
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 0965
Signing time: Fri 06 Jun 2025 18:01:00 +0000
Manifest this update: Fri 06 Jun 2025 18:01:00 +0000
Manifest next update: Sat 07 Jun 2025 18:01:00 +0000
Files and hashes: 1: 6t5f4Ujb0FAO84dMqgRAqgV1jVs.roa (hash: u7nakvY2IzZI/nPIoCHOpaknwKeAH1RDuYLRGXqd0p4=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: VFpcoJt5cUVpDlrmWOYGogpAqRKnc1sqKeVpvUqZTRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:3e:a6:1d:55:35:32:cf:26:bb:21:b7:3d:05:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: Jun 6 18:01:00 2025 GMT
Not After : Jun 7 18:01:00 2025 GMT
Subject: CN=0343cdb15140dbfa9563e82ae746d075fdb4e0be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:88:92:71:0e:18:f6:07:75:76:90:61:5b:2c:
e8:fc:be:2b:da:76:57:ac:55:e2:a0:69:c0:15:3e:
9c:22:e8:44:f4:2a:89:59:c1:62:fd:ce:67:77:85:
4b:27:aa:80:12:f5:96:fd:ee:21:6f:ae:1d:c9:0a:
93:a4:fe:3f:3b:2d:13:59:74:dd:44:2b:aa:f9:7d:
34:bc:84:be:79:1b:ad:94:02:31:96:2e:66:7b:d4:
d4:6c:9e:e8:9b:2e:0e:5f:d5:40:cf:be:33:77:b7:
5d:49:65:64:97:4f:53:a7:08:3c:1c:71:5c:0d:e8:
c8:cd:13:9d:a9:e6:b5:b9:4d:43:c9:f2:2a:83:d1:
04:db:ce:08:d3:85:f9:c0:36:1a:36:24:9d:0f:74:
54:d8:a2:2e:8c:c4:ff:5b:18:17:4d:38:cb:90:74:
82:9b:03:4c:ef:27:2b:8a:31:b6:54:04:c2:e7:fa:
95:1d:b0:b7:00:4f:a0:b6:47:ff:a4:e5:70:02:fb:
26:f5:fa:6f:93:2c:db:7a:6b:c8:b9:fe:91:cd:f8:
69:c5:83:65:4d:83:60:46:71:bd:4e:4d:43:4f:e0:
5f:1c:37:fb:15:25:2f:17:0c:07:89:ac:b0:bc:bf:
66:bf:69:42:95:60:f6:ee:34:27:34:2c:07:ae:41:
6a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:43:CD:B1:51:40:DB:FA:95:63:E8:2A:E7:46:D0:75:FD:B4:E0:BE
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:90:f1:f6:03:9b:67:6c:25:f5:b7:b7:a6:c7:52:48:70:e4:
21:16:ba:51:c8:b2:b8:fb:bb:64:e6:1f:77:a8:76:f3:00:24:
d7:ca:db:2d:3b:f5:d7:40:fd:e3:2f:81:24:67:9c:97:96:3a:
33:a8:68:bb:db:ea:1d:55:aa:3f:b0:3e:d2:ea:0e:66:65:91:
e2:a4:4d:6a:85:61:0f:f2:3a:5d:f3:82:4c:2d:bb:74:d7:4c:
5c:4b:06:4f:2c:d3:2c:cd:c4:62:de:61:6b:89:d2:cb:75:c3:
93:21:ad:8f:c4:f8:3d:c9:86:c3:be:a6:99:5d:a1:19:ec:dd:
6e:20:00:6c:95:9e:a7:c0:61:09:c4:d6:0f:65:68:f4:ac:c2:
19:63:50:7f:c9:6d:4b:a4:6f:e2:ab:ae:e2:24:24:3b:47:83:
32:33:c8:65:6c:f8:ae:2f:1f:25:21:0f:41:4d:bc:02:12:a4:
6a:47:fd:79:71:3b:65:9b:26:aa:8b:72:f0:a7:69:ad:15:bc:
dc:f5:2d:8c:1b:dd:9b:af:00:e9:84:05:f4:0a:84:d2:c5:ef:
f5:f0:60:2b:06:5f:0e:9e:54:5f:6a:f8:2f:b8:1d:0c:fd:70:
a1:fd:dd:0a:1e:e6:40:48:7d:2e:b3:bc:71:57:16:1b:f7:41:
78:ca:51:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:32:47 2025 by rpki-client