Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: D6cw72gQKEn9ZCNLeN7y0g91l9mpheib7Z5jubiOJgI=
Subject key identifier: 13:A0:D6:69:75:FD:9E:96:28:87:CC:B1:34:16:37:DE:34:F0:0B:03
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 0196BC6E69E01BB319F73415A5AEC4ECFD03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 0513
Signing time: Sat 10 May 2025 23:01:14 +0000
Manifest this update: Sat 10 May 2025 23:01:14 +0000
Manifest next update: Sun 11 May 2025 23:01:14 +0000
Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: CfQmNd+tbL2J8Tc3fN8nTFEuA4/WIQY6N/Lel18JaiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:69:e0:1b:b3:19:f7:34:15:a5:ae:c4:ec:fd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: May 10 23:01:14 2025 GMT
Not After : May 11 23:01:14 2025 GMT
Subject: CN=13a0d66975fd9e962887ccb1341637de34f00b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:41:98:69:3a:bb:6d:aa:f5:46:b8:37:d4:3e:
0c:2b:cd:04:c3:44:56:42:16:56:5d:29:a5:4c:21:
5c:6a:76:ee:78:16:4f:b8:e3:aa:8d:f3:fa:22:68:
e0:20:c2:82:e4:03:c0:ff:5a:c6:1f:17:d1:aa:57:
b8:79:11:16:cf:1a:b2:f6:49:9b:3b:a5:01:08:6b:
45:7d:2a:b5:92:d2:3f:f6:e9:11:ab:aa:8d:84:94:
d1:ae:ba:ed:99:61:35:3b:4c:c0:65:7a:b8:00:1c:
90:66:41:26:b4:24:16:dc:a4:72:90:b0:db:3a:fb:
64:71:38:d6:df:e4:6a:9c:4b:03:d8:e4:12:6d:79:
29:13:51:af:1a:96:70:9c:17:e1:66:57:be:3b:8e:
c1:ed:e4:a9:38:7c:fe:59:dd:f3:28:97:e5:00:18:
c7:59:eb:f9:5d:72:1c:6f:96:50:8a:25:25:be:6e:
1e:63:97:3e:7d:d5:1c:f0:1d:51:e0:4f:1b:74:c3:
95:df:ad:e7:d7:db:28:c8:da:f0:59:79:ec:52:ea:
e7:1f:48:b1:78:83:a4:db:1f:67:97:13:e7:d3:12:
f3:59:79:70:a6:db:f4:25:e0:1c:1f:07:4e:b5:2f:
54:78:97:73:a2:1b:bb:50:1c:f2:ec:78:9c:09:0d:
7c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A0:D6:69:75:FD:9E:96:28:87:CC:B1:34:16:37:DE:34:F0:0B:03
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:4c:7e:14:c4:39:59:94:70:67:a7:08:84:cd:04:88:58:01:
78:9a:e8:71:1c:73:80:4e:ea:11:11:23:d3:89:9c:a5:e4:c7:
dd:73:05:8b:18:55:1f:28:aa:35:97:71:6e:d5:a9:89:20:aa:
55:ac:11:c5:ee:d2:5c:9c:23:1c:d7:dc:c3:a5:39:6a:88:05:
5b:28:3f:39:67:3d:3f:6d:04:b7:d2:8a:2a:3a:e4:75:50:ba:
71:1d:95:0f:4d:ec:1b:95:49:a6:18:dc:b8:66:a5:31:4a:a1:
ba:7c:09:e9:47:f8:d2:59:02:f2:4e:88:71:ae:a1:dd:87:9c:
62:d3:1e:60:c1:04:4d:96:54:14:af:bb:1f:ae:ca:0c:a9:e8:
de:82:93:b3:42:ce:36:2b:b7:eb:1f:22:c5:81:7a:91:8d:46:
d4:fa:0a:d9:ad:6a:09:09:2f:7a:95:bc:aa:6d:2b:79:8d:7a:
2a:ac:36:5e:db:6d:de:17:c7:1f:d8:dd:79:a4:07:b6:b5:19:
dc:4a:cb:df:75:b0:f1:d5:87:60:32:ec:fa:8e:90:7c:79:89:
6b:0c:92:75:24:d4:3e:74:ce:ba:5f:c1:c7:83:eb:ad:11:2d:
54:28:ed:81:2a:0b:1e:d5:4c:d5:bf:4c:93:d3:3c:ef:53:94:
e2:be:3d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:27:02 2025 by rpki-client