Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
File: OzBfl6JvMdgAYFn7OrGerPt4NFU.mft (raw, json)
Hash identifier: /o4rSCZlEOSWzsIzpYgtoYlMNIVfrsM24ZLCWyNZMMU=
Subject key identifier: 65:78:0F:C7:A8:46:2E:BD:30:9D:78:AF:A6:B8:E5:CC:15:F8:19:7A
Authority key identifier: 3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
Certificate issuer: /CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Certificate serial: 0196C314E1A2374E14DA1BC300AC6753696C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
Manifest number: 0921
Signing time: Mon 12 May 2025 06:00:47 +0000
Manifest this update: Mon 12 May 2025 06:00:47 +0000
Manifest next update: Tue 13 May 2025 06:00:47 +0000
Files and hashes: 1: 6t5f4Ujb0FAO84dMqgRAqgV1jVs.roa (hash: u7nakvY2IzZI/nPIoCHOpaknwKeAH1RDuYLRGXqd0p4=)
2: OzBfl6JvMdgAYFn7OrGerPt4NFU.crl (hash: 5f5gU4CUMOB4/cL0ReldIGPFYGsTNFffQKDgjVhVzPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:14:e1:a2:37:4e:14:da:1b:c3:00:ac:67:53:69:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b305f97a26f31d8006059fb3ab19eacfb783455
Validity
Not Before: May 12 06:00:47 2025 GMT
Not After : May 13 06:00:47 2025 GMT
Subject: CN=65780fc7a8462ebd309d78afa6b8e5cc15f8197a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:3b:cd:ed:8b:e6:2f:e1:e6:97:5d:22:c2:
13:5d:6d:42:06:7c:3b:93:4d:1f:39:46:c6:27:8a:
94:43:c2:27:73:40:fd:bf:10:58:74:e2:19:2b:63:
67:1d:c5:ef:0b:a5:13:ec:02:2e:dd:f7:24:a1:71:
3b:3d:c3:8f:b9:30:28:c7:79:ff:5c:b6:ce:77:70:
b9:ad:a1:db:ba:90:60:5b:fa:d5:0f:32:8e:26:e1:
e2:e8:e1:67:87:1a:7a:78:4f:6f:33:24:5a:b2:bb:
38:a3:8e:c4:0d:23:98:fc:00:83:c5:a8:35:24:ba:
71:97:90:56:ba:ab:84:61:01:da:37:5c:2b:ac:d4:
ba:d6:20:e9:63:7c:4e:63:63:35:da:ba:78:9b:85:
43:27:04:80:c1:c6:5c:5b:df:38:ee:a3:9b:cc:24:
36:7d:17:b3:ba:bc:86:76:08:31:42:bf:11:44:d0:
32:06:0d:bb:42:74:b0:c7:6a:48:16:f8:68:c1:a4:
85:a5:d2:18:45:e7:8b:b8:4a:8c:be:2a:ee:dc:11:
45:d6:fc:4f:4e:5e:88:27:57:07:3e:cc:c2:01:fb:
98:74:55:b7:02:41:fb:00:e3:63:ce:ec:65:37:f8:
04:8d:39:64:af:6b:3c:a7:91:cf:81:74:0e:41:6e:
47:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:78:0F:C7:A8:46:2E:BD:30:9D:78:AF:A6:B8:E5:CC:15:F8:19:7A
X509v3 Authority Key Identifier:
keyid:3B:30:5F:97:A2:6F:31:D8:00:60:59:FB:3A:B1:9E:AC:FB:78:34:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzBfl6JvMdgAYFn7OrGerPt4NFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/1aa951-6c48-493d-ad89-58b9b0c2440b/1/OzBfl6JvMdgAYFn7OrGerPt4NFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:5c:64:78:9a:e0:7b:58:f8:5c:3f:46:3a:7c:7c:04:7d:e8:
9f:9d:44:99:6b:9a:9c:26:33:9a:52:90:91:76:58:7b:a9:36:
e2:59:30:d5:79:0f:ec:d9:54:44:9c:42:3b:48:6d:0e:b6:85:
f3:91:67:4e:f3:d4:5a:9e:26:b5:4e:b0:1a:98:b1:61:2f:5d:
25:fe:ec:90:79:b4:07:2b:8b:2b:0b:f8:c1:73:c6:07:10:9b:
9e:4b:c9:c3:74:67:a9:73:93:71:27:45:e9:28:f0:25:2f:ad:
d6:41:2b:78:33:62:2c:85:a0:f4:f8:33:18:6e:0f:2f:df:46:
80:6e:08:0e:f8:24:ef:d6:25:5b:2d:10:10:0c:f1:2d:b0:f2:
da:92:9e:99:c1:47:09:85:d4:37:cd:66:35:6b:ce:66:39:2d:
a6:74:d8:be:ab:76:c6:71:5b:70:ed:d7:9e:c3:e3:0a:ba:6e:
11:f2:33:88:4d:98:aa:e6:e4:9f:93:74:f8:9f:ce:8f:51:cb:
89:db:45:c9:bf:f0:a1:7c:30:22:d4:0d:56:6e:66:81:67:b5:
45:65:fe:12:f1:4d:f6:fa:31:b1:78:94:e1:aa:9d:4a:6a:cd:
33:6d:56:22:42:0e:f3:c7:91:92:e3:1e:22:99:30:47:52:bf:
d1:e6:fd:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 12:05:47 2025 by rpki-client