Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
File: OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft (raw, json)
Hash identifier: mIr5G0xNFPwwuqLPaNfRak1AqWsiHdNa/wuw6cxJDCk=
Subject key identifier: 32:8D:89:32:6A:4B:46:1E:56:F5:CB:1B:C9:E8:17:01:8F:E7:13:83
Authority key identifier: 39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
Certificate issuer: /CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Certificate serial: 0196BAB6446C427F96397CAC9267CF587D38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
Manifest number: 0CB5
Signing time: Sat 10 May 2025 15:00:29 +0000
Manifest this update: Sat 10 May 2025 15:00:29 +0000
Manifest next update: Sun 11 May 2025 15:00:29 +0000
Files and hashes: 1: OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl (hash: e1QjVZ1vrqb41nUhMVNp/0kgiFsx8Xw+AC8x4lDq+w8=)
2: m3UPJQ_Zh7wapyw5537rzzPo3os.roa (hash: EUy+4/7WXUAZtQJhe/6fh4vD4Ks9aUtYKkwAIbRuQrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:44:6c:42:7f:96:39:7c:ac:92:67:cf:58:7d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=399dc13619aaba7f222ceacb05f1bbac59bd3a9a
Validity
Not Before: May 10 15:00:29 2025 GMT
Not After : May 11 15:00:29 2025 GMT
Subject: CN=328d89326a4b461e56f5cb1bc9e817018fe71383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:31:4f:2f:9e:de:a4:c2:75:f7:20:7c:8e:87:
84:41:cb:72:27:d1:8d:2a:2c:76:a8:31:2c:de:c8:
be:63:7c:9e:65:c0:5b:fe:53:44:15:9b:f7:2e:bd:
8e:0e:c6:32:15:c5:e0:94:9c:9a:89:9a:37:e1:2d:
32:36:4a:dd:e0:3f:30:26:ad:1f:f7:a0:f0:a4:d1:
30:1b:a2:96:64:11:8a:70:d5:e7:10:1c:49:0f:91:
3c:d2:78:05:56:87:b2:65:ed:88:4c:ee:81:39:09:
12:00:a1:7b:a3:a4:af:a4:e7:d9:ed:48:d1:af:fb:
b8:aa:1c:ca:55:b8:30:2b:78:94:90:2c:ec:14:47:
cc:f2:c4:61:b7:ba:02:1a:2f:43:0c:5f:f4:4b:f1:
fe:ba:cb:e2:3b:fe:bc:e7:af:f4:59:a7:96:ed:4e:
e1:8f:b5:49:94:c2:d9:de:d4:00:45:38:fa:4c:22:
79:54:92:a6:9a:44:e2:cb:e4:92:66:a3:94:3c:23:
2b:e4:ad:ce:e5:67:d7:f5:7f:68:fc:0c:46:ac:bb:
c1:c2:4e:ee:05:18:41:f4:6e:bf:47:d1:de:56:ff:
9a:ea:01:1b:ea:80:0d:f0:d4:ce:b2:b3:21:4b:29:
4f:d5:62:89:72:a1:2b:4c:92:f3:17:ab:3b:d6:9c:
f6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:8D:89:32:6A:4B:46:1E:56:F5:CB:1B:C9:E8:17:01:8F:E7:13:83
X509v3 Authority Key Identifier:
keyid:39:9D:C1:36:19:AA:BA:7F:22:2C:EA:CB:05:F1:BB:AC:59:BD:3A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZ3BNhmqun8iLOrLBfG7rFm9Opo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/efa225-16dc-4f43-aae9-0032fdc5450b/1/OZ3BNhmqun8iLOrLBfG7rFm9Opo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:2a:7c:82:e2:9c:50:7b:7b:e8:0f:2c:93:da:2d:4c:a8:cc:
aa:6c:07:52:eb:5b:bf:1c:4d:05:11:20:6d:24:44:df:fe:48:
b2:8d:d7:17:0a:2a:5f:81:d6:00:0e:29:0b:5c:24:e8:4a:15:
7a:60:e4:96:17:d4:48:8a:1d:ca:b0:67:d9:1c:dc:00:ee:3e:
f1:10:a0:15:3f:dd:bb:8c:9e:e9:ed:18:f3:6f:05:cb:bc:d4:
ea:b2:03:ec:7c:85:57:c8:c9:dc:f1:fe:10:51:81:2d:85:e6:
92:ab:f9:fc:54:fd:22:7b:ad:04:98:50:06:f4:e9:91:bb:e7:
be:6b:37:6f:ed:34:2a:3c:e5:55:69:46:fa:0c:5c:8a:4b:ca:
93:a9:85:7e:3b:47:5b:bf:9b:97:3d:c2:e1:d5:88:26:f4:db:
5f:a7:a3:c7:12:b8:f7:95:47:1b:78:04:4c:98:f6:9d:ce:0e:
d3:5f:95:bd:eb:f2:29:a5:ea:9e:f3:0b:19:0b:6e:68:01:cf:
41:6a:65:7a:9c:59:ed:d4:b9:9d:c3:3f:73:c1:dd:32:b1:1e:
18:00:59:c9:0d:3c:a2:f3:7b:68:a3:73:03:3e:d5:0e:4b:41:
dd:0f:63:dd:90:94:64:34:22:e8:b0:4c:95:18:29:9b:39:72:
83:18:95:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:56:41 2025 by rpki-client