Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
File: OzNj5H5p68XRwiUd3V2sfJiYmSI.mft (raw, json)
Hash identifier: qJfRw9OxJfQZYpaYOtjQ61knlhvLThs8xqmo8bitZtE=
Subject key identifier: FA:F5:56:72:C3:B2:BD:64:9F:27:71:EF:87:BB:9F:E3:3C:80:40:E8
Authority key identifier: 3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
Certificate issuer: /CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Certificate serial: 01963A2E5B269EB7114576D9368A323E49BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
Manifest number: 14F1
Signing time: Tue 15 Apr 2025 16:00:38 +0000
Manifest this update: Tue 15 Apr 2025 16:00:38 +0000
Manifest next update: Wed 16 Apr 2025 16:00:38 +0000
Files and hashes: 1: OzNj5H5p68XRwiUd3V2sfJiYmSI.crl (hash: x6OgJ0GdWMA7Zgc6APALei1yKm6PHPmrGdYMBEiNw7c=)
2: vYaPE7wk6Qo5Lm2fpqZ1rhvLpDU.roa (hash: ZL2srvtFB3ZUj0RuUE6dDGpy3UL8CY63qkKeS+BMJ20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 15:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3a:2e:5b:26:9e:b7:11:45:76:d9:36:8a:32:3e:49:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3363e47e69ebc5d1c2251ddd5dac7c98989922
Validity
Not Before: Apr 15 16:00:38 2025 GMT
Not After : Apr 16 16:00:38 2025 GMT
Subject: CN=faf55672c3b2bd649f2771ef87bb9fe33c8040e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:84:30:31:b4:78:e2:59:aa:a5:5e:59:7d:c0:
f0:74:85:af:f5:32:0e:4f:40:3a:88:39:d6:b6:a8:
35:03:d4:d4:6f:f5:d2:d7:da:50:b2:07:5e:ad:94:
53:e3:3e:5b:ea:ae:cc:6d:af:9c:8e:f1:04:10:a7:
9c:1a:cd:61:9b:fc:fe:11:0c:0d:64:ca:e3:db:75:
3e:34:2f:ee:2d:f6:b9:fe:46:e4:51:de:50:ef:50:
f0:23:10:c9:ba:e7:df:1c:b4:d9:d4:97:7f:8d:ba:
81:0f:b5:58:91:ce:89:c1:45:52:93:21:13:dc:5e:
8f:8d:f8:0b:1b:bb:19:e0:9b:3a:f4:84:a6:d4:38:
1a:18:56:51:90:d5:ed:42:fd:b9:bf:52:f9:cb:e3:
09:7a:e5:be:10:15:76:7a:4d:82:8b:57:d3:11:8b:
c1:50:d6:c4:a6:e0:d3:1b:e9:99:71:f7:2a:6c:ff:
f1:a3:16:12:a8:b5:dd:1b:ee:11:9e:4b:4b:67:fc:
21:24:fe:b0:c3:56:fc:82:46:7f:a1:19:d9:bc:54:
33:d6:88:c8:90:0d:f5:b6:0b:1c:e7:e7:d0:19:8e:
59:9e:65:a9:8a:8c:21:68:65:4e:cb:25:99:50:7b:
a5:3b:0f:52:49:e8:09:24:b2:d7:9b:12:bf:d3:13:
1f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F5:56:72:C3:B2:BD:64:9F:27:71:EF:87:BB:9F:E3:3C:80:40:E8
X509v3 Authority Key Identifier:
keyid:3B:33:63:E4:7E:69:EB:C5:D1:C2:25:1D:DD:5D:AC:7C:98:98:99:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzNj5H5p68XRwiUd3V2sfJiYmSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d32cd4-ba93-4f16-899c-ccdadf7f65f2/1/OzNj5H5p68XRwiUd3V2sfJiYmSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:77:b7:f6:b6:b0:20:4e:41:e2:65:76:68:e0:2d:09:1e:fc:
a9:04:3c:0b:1c:5a:71:60:04:ed:04:25:ec:95:7e:88:18:83:
c4:93:61:b4:62:1d:9b:fc:14:11:2e:10:cc:0f:ac:32:cc:40:
fa:02:cb:ea:1e:ca:c5:37:a8:c4:78:58:08:bd:e6:1d:b4:40:
77:a7:36:0e:20:8c:8a:c8:9f:ab:6f:8b:22:d6:4a:9d:a1:08:
f7:b2:12:5d:12:65:27:d7:5a:cd:80:36:a1:8c:7f:4f:b3:e6:
47:1b:77:ed:10:84:1f:16:13:53:03:dc:e9:f4:5e:5a:9f:aa:
e1:3b:bc:d2:f7:8e:8e:93:21:91:25:2a:7e:38:df:64:7f:5c:
e6:55:db:87:18:ca:36:f4:69:71:1f:98:55:17:0a:47:4c:c9:
ff:c4:7a:17:4e:30:e5:f1:85:25:29:11:71:d1:71:2d:97:e8:
17:2f:4d:d2:18:39:6c:83:9e:fe:03:06:a1:78:c6:48:2b:9e:
70:76:63:59:63:e2:24:bc:c1:37:65:ea:cd:3c:58:a4:51:99:
26:e2:81:09:9c:97:4d:7b:58:b3:29:e3:d4:01:1a:3f:32:b7:
c2:80:30:27:d0:76:1c:40:20:ad:b8:28:ca:84:36:dc:9b:3e:
42:26:d7:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY6LlsmnrcRRXbZNooyPkm9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMzM2M2U0N2U2OWViYzVkMWMyMjUxZGRkNWRhYzdjOTg5
ODk5MjIwHhcNMjUwNDE1MTYwMDM4WhcNMjUwNDE2MTYwMDM4WjAzMTEwLwYDVQQD
EyhmYWY1NTY3MmMzYjJiZDY0OWYyNzcxZWY4N2JiOWZlMzNjODA0MGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYQwMbR44lmqpV5ZfcDwdIWv9TIO
T0A6iDnWtqg1A9TUb/XS19pQsgderZRT4z5b6q7Mba+cjvEEEKecGs1hm/z+EQwN
ZMrj23U+NC/uLfa5/kbkUd5Q71DwIxDJuuffHLTZ1Jd/jbqBD7VYkc6JwUVSkyET
3F6PjfgLG7sZ4Js69ISm1DgaGFZRkNXtQv25v1L5y+MJeuW+EBV2ek2Ci1fTEYvB
UNbEpuDTG+mZcfcqbP/xoxYSqLXdG+4RnktLZ/whJP6ww1b8gkZ/oRnZvFQz1ojI
kA31tgsc5+fQGY5ZnmWpiowhaGVOyyWZUHulOw9SSegJJLLXmxK/0xMfrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPr1VnLDsr1knydx74e7n+M8gEDoMB8GA1UdIwQY
MBaAFDszY+R+aevF0cIlHd1drHyYmJkiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3pOajVINXA2OFhSd2lVZDNWMnNmSmlZbVNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kMzJjZDQtYmE5My00ZjE2LTg5OWMt
Y2NkYWRmN2Y2NWYyLzEvT3pOajVINXA2OFhSd2lVZDNWMnNmSmlZbVNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9kMzJjZDQtYmE5My00ZjE2LTg5OWMtY2NkYWRmN2Y2NWYy
LzEvT3pOajVINXA2OFhSd2lVZDNWMnNmSmlZbVNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuHe39raw
IE5B4mV2aOAtCR78qQQ8CxxacWAE7QQl7JV+iBiDxJNhtGIdm/wUES4QzA+sMsxA
+gLL6h7KxTeoxHhYCL3mHbRAd6c2DiCMisifq2+LItZKnaEI97ISXRJlJ9dazYA2
oYx/T7PmRxt37RCEHxYTUwPc6fReWp+q4Tu80veOjpMhkSUqfjjfZH9c5lXbhxjK
NvRpcR+YVRcKR0zJ/8R6F04w5fGFJSkRcdFxLZfoFy9N0hg5bIOe/gMGoXjGSCue
cHZjWWPiJLzBN2XqzTxYpFGZJuKBCZyXTXtYsynj1AEaPzK3woAwJ9B2HEAgrbgo
yoQ23Js+QibX+w==
-----END CERTIFICATE-----
Generated at Wed Apr 16 00:18:29 2025 by rpki-client