Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: HHekfPYWAjABoi/3xQVs2NA54KOFASVst4Z9d0mcfRI=
Subject key identifier: E2:F3:CA:19:C8:50:07:BD:80:F2:77:B0:76:48:22:2A:CB:58:FF:87
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 0196108E2B929548EDC7D22549E53306196F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 04BA
Signing time: Mon 07 Apr 2025 14:01:14 +0000
Manifest this update: Mon 07 Apr 2025 14:01:14 +0000
Manifest next update: Tue 08 Apr 2025 14:01:14 +0000
Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: +uoDPrXNQ572pJHy8QmqSe2/DZzPVqtpLyFha5rsbEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:8e:2b:92:95:48:ed:c7:d2:25:49:e5:33:06:19:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: Apr 7 14:01:14 2025 GMT
Not After : Apr 8 14:01:14 2025 GMT
Subject: CN=e2f3ca19c85007bd80f277b07648222acb58ff87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6a:ae:4f:7c:13:bc:40:67:c6:a6:c5:47:6f:
15:cc:23:5e:a9:46:de:a9:dc:42:dd:c8:22:a6:e6:
2e:7c:33:8b:d0:59:08:8c:aa:f1:1e:37:65:c2:b1:
83:0c:5e:48:1a:9a:13:c9:82:f9:2c:51:65:94:eb:
03:ab:5a:8d:b9:cb:0b:9d:94:21:7d:9c:af:e6:61:
ee:e7:85:f1:84:fc:f0:9e:7a:d5:d8:58:db:bc:be:
41:ec:1f:3b:05:2a:1f:4a:f2:7e:70:7a:54:c8:5f:
b9:bf:9e:19:98:f1:f3:34:be:03:61:c0:b1:67:eb:
5d:b1:cb:10:09:91:2f:7c:2a:e8:0e:95:66:9b:81:
1a:81:01:c3:85:eb:2e:70:09:99:cd:d4:e3:a7:a7:
34:de:3e:70:05:10:fd:4d:b0:c7:04:54:74:3e:4e:
c4:9d:8a:66:7b:21:87:ad:c8:d5:05:85:70:61:7d:
c5:85:19:d0:e8:52:b1:36:6a:75:ed:1b:90:fb:86:
b9:20:ac:e6:6d:20:55:cc:e7:80:62:25:ed:66:8f:
13:2c:14:19:9c:a0:6b:0d:58:a8:ae:84:eb:16:a4:
5a:35:c4:25:17:89:38:38:7d:a3:18:3f:26:f2:66:
a8:e0:13:42:aa:db:a4:67:4b:e8:5b:3b:9f:a6:9b:
79:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:F3:CA:19:C8:50:07:BD:80:F2:77:B0:76:48:22:2A:CB:58:FF:87
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:dd:b4:56:6e:5d:a6:87:0d:d4:5f:f7:82:82:27:14:1a:49:
dd:b9:8e:a7:e2:45:84:d3:fa:26:7c:d6:44:d7:cd:54:d9:16:
5d:04:75:56:61:96:3e:60:ab:eb:91:69:e5:65:9e:7f:ac:f4:
31:34:7d:e8:42:d4:7b:82:ba:ef:11:70:82:25:46:16:11:55:
75:df:37:ca:70:9f:07:e4:5d:fb:a6:74:e5:0a:1b:60:a6:cb:
5b:fc:d0:56:74:29:a5:1b:eb:0c:26:8c:5e:5c:3a:38:e9:0f:
8e:d4:25:12:6d:72:32:fa:60:be:91:3f:66:f6:a9:5e:08:ed:
34:2b:1e:90:28:8a:f9:c7:bb:f2:8b:2a:dc:a9:a4:56:74:c9:
78:c2:ad:77:82:81:44:2b:61:b5:3a:92:d6:68:bb:c5:4c:7d:
3e:dc:6d:0b:0a:f6:b2:cc:49:e9:44:5b:9b:d4:17:b7:47:81:
3e:29:6d:fd:b7:84:46:cc:b8:93:eb:b4:a5:98:1a:4b:c4:58:
f8:25:2e:63:74:f9:a0:6c:07:7a:12:d5:4b:22:7b:b8:b7:c7:
96:6a:8f:78:51:48:ca:ea:ba:34:8a:f7:8b:40:09:db:b9:06:
a5:27:9f:7f:84:e8:92:e6:b8:6a:6f:fe:38:6d:b2:52:0d:ac:
d9:e3:a7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:44:09 2025 by rpki-client