Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
File: OGKIZa_YpN-v3e-BHvz8ecA4czI.mft (raw, json)
Hash identifier: 978zPk8Ze6crGmZE1Rv9RpMYd+3wwlzRqZ4FZvU3qqE=
Subject key identifier: 5E:E5:9D:2F:77:6A:8E:9B:1E:E8:44:65:C6:FB:2B:2E:CD:0C:A8:B5
Authority key identifier: 38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32
Certificate issuer: /CN=38628865afd8a4dfafddef811efcfc79c0387332
Certificate serial: 0196D4AD4FAE0E1539EADA582CE3CAB8E73E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
Manifest number: 0A37
Signing time: Thu 15 May 2025 16:00:49 +0000
Manifest this update: Thu 15 May 2025 16:00:49 +0000
Manifest next update: Fri 16 May 2025 16:00:49 +0000
Files and hashes: 1: OGKIZa_YpN-v3e-BHvz8ecA4czI.crl (hash: zoHZLux4qT9cYPN5Y3l2QCoEOhNWHG1vwYqbOOEaNlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:ad:4f:ae:0e:15:39:ea:da:58:2c:e3:ca:b8:e7:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38628865afd8a4dfafddef811efcfc79c0387332
Validity
Not Before: May 15 16:00:49 2025 GMT
Not After : May 16 16:00:49 2025 GMT
Subject: CN=5ee59d2f776a8e9b1ee84465c6fb2b2ecd0ca8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a1:b1:fb:6a:30:37:5a:37:30:f7:80:00:d0:
eb:4e:df:f3:c8:d5:75:34:ec:bf:0f:4b:6e:fe:d3:
19:45:d5:dc:e0:b0:6a:c4:de:75:59:e8:8c:d7:83:
d7:f3:28:a4:99:48:51:db:2c:4f:ea:f0:e5:d3:39:
fb:92:64:08:1c:f6:cb:cc:94:f0:22:d4:1e:2c:8f:
10:13:79:89:7d:92:1b:94:65:8f:f5:83:5b:f6:3c:
62:6c:c7:a3:bc:c4:82:72:a5:91:48:44:5d:df:eb:
4e:97:29:8d:cc:af:1d:45:4e:a3:8f:e8:47:98:0b:
10:d2:3a:51:e0:24:05:58:4e:5d:0d:b3:07:95:e1:
48:f3:9f:ac:55:0e:94:eb:97:af:cc:8d:de:69:0c:
db:ab:f3:81:c2:19:f1:ff:91:4b:8f:5a:ff:3c:fe:
a8:67:72:f4:cc:ef:4c:1f:b7:7f:98:21:df:9a:81:
32:68:09:9d:af:4e:4d:3f:34:7a:3a:bf:7b:b8:dd:
41:05:06:7c:c4:56:c4:50:f0:a0:11:12:12:49:a1:
8e:8a:66:1e:0d:e1:c5:bc:0f:83:9f:1e:da:82:b9:
50:06:45:db:fb:9c:95:c1:ac:aa:d0:17:a7:92:1c:
91:21:c8:03:41:80:79:a1:2a:84:90:db:8d:39:b3:
66:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E5:9D:2F:77:6A:8E:9B:1E:E8:44:65:C6:FB:2B:2E:CD:0C:A8:B5
X509v3 Authority Key Identifier:
keyid:38:62:88:65:AF:D8:A4:DF:AF:DD:EF:81:1E:FC:FC:79:C0:38:73:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OGKIZa_YpN-v3e-BHvz8ecA4czI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/2bf1b1-1683-4c99-9fbe-dbee66d73313/1/OGKIZa_YpN-v3e-BHvz8ecA4czI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:0e:fc:02:22:30:e4:5d:7a:75:a6:fa:a1:b6:ad:3d:8d:a9:
e7:9a:30:a4:2f:2c:db:fc:5b:86:0a:ea:11:e4:9c:ef:bb:18:
b7:6d:07:f4:2b:ea:d7:05:e1:59:6a:72:6e:67:69:8a:30:77:
3c:97:40:ab:fc:0f:9d:40:76:2c:3d:2e:e6:58:f7:dc:2d:32:
b3:15:30:d8:5d:c3:f5:4b:d6:30:d9:19:ed:de:49:8c:5d:31:
fa:6a:65:b1:75:f6:86:ed:2e:0a:2a:0d:47:fd:f6:8c:24:f5:
3f:4b:13:37:20:df:e2:eb:92:1c:a5:57:08:43:90:40:b4:73:
2e:57:d3:0c:a7:66:0b:f1:53:00:aa:5b:df:3a:19:b1:16:a7:
0e:2e:db:1f:66:15:30:7c:36:53:3b:9b:ba:c4:ef:26:50:2b:
f5:75:8e:db:64:d3:9c:72:d0:bf:a4:99:b8:cb:28:a7:26:b5:
b3:a7:00:1f:7f:4d:7e:a0:aa:c0:03:39:5e:a1:cd:d1:0d:33:
6e:89:dc:46:d8:fb:6e:9f:10:ac:1e:09:f7:53:ae:18:bb:6c:
b3:cb:53:df:8b:d2:86:2b:3c:2a:58:71:f0:8c:c4:27:1b:1d:
24:17:98:7f:dd:46:23:f8:f6:a7:e8:08:b4:9a:5d:93:25:4a:
57:c6:fc:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 20:24:12 2025 by rpki-client