Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
File: OzoF27nHf6Fu0QRpdHpcbm6riN4.mft (raw, json)
Hash identifier: SktG6WUu9Cb825BXVu46UYGQ85njIn5e/hzaQ5zoYTA=
Subject key identifier: 5F:37:9E:F5:5B:7E:7A:8F:0E:3B:89:C0:65:3B:29:54:15:7D:B1:79
Authority key identifier: 3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
Certificate issuer: /CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Certificate serial: 0197B77CB94AFCCD07496F1BBDC844705390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
Manifest number: 0595
Signing time: Sat 28 Jun 2025 17:01:33 +0000
Manifest this update: Sat 28 Jun 2025 17:01:33 +0000
Manifest next update: Sun 29 Jun 2025 17:01:33 +0000
Files and hashes: 1: 2bBaeD35kseI457ZAPL2x12So_w.roa (hash: oq5BcVgGKnzmBudzjO96n+tl2tyiGaHICIAPgJhlDTA=)
2: OzoF27nHf6Fu0QRpdHpcbm6riN4.crl (hash: ynAnXkORMnFq2jSyJqFiND+Zh74zvsXMG8dnTjqH3pM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:b9:4a:fc:cd:07:49:6f:1b:bd:c8:44:70:53:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b3a05dbb9c77fa16ed10469747a5c6e6eab88de
Validity
Not Before: Jun 28 17:01:33 2025 GMT
Not After : Jun 29 17:01:33 2025 GMT
Subject: CN=5f379ef55b7e7a8f0e3b89c0653b2954157db179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:77:d6:fe:c1:8d:c3:bd:f6:b5:4a:35:ae:b8:
2c:8f:d4:3b:c1:dc:8f:95:cf:52:d2:0a:2f:cc:7a:
39:5a:87:e3:fe:1a:57:32:10:50:58:fa:74:39:c2:
2c:cd:3b:8c:12:b8:c6:df:08:0b:6d:6d:0a:87:bd:
a7:03:6c:b8:8b:e0:d2:56:27:74:06:66:f1:aa:75:
a5:89:55:21:93:61:45:b1:77:37:ad:56:84:27:af:
dc:df:24:fb:c6:f3:d6:69:e3:81:da:8e:68:b2:a0:
81:ed:bb:f6:a2:77:26:a9:3b:76:ae:f9:a2:26:92:
32:a8:75:e6:17:70:1b:31:09:e9:dd:84:fc:8f:68:
1a:e2:bb:88:4b:2d:05:68:8e:79:e4:b1:11:c4:6c:
ed:42:d4:78:e8:20:2f:45:c5:d1:37:74:e9:48:88:
74:61:6a:b7:ab:9b:67:69:72:b6:de:7d:c8:08:10:
05:eb:f0:89:25:32:47:1d:0c:a6:3d:2a:97:69:3c:
78:73:b5:29:c9:53:8e:f6:cc:1f:11:ac:59:c3:30:
f1:ff:e5:ee:fc:f2:c5:19:76:ea:12:5f:87:d0:cb:
8d:ee:35:7b:8c:17:71:6f:8b:7f:75:d8:79:86:70:
d0:b6:94:60:32:6c:25:dc:69:16:a0:6f:0f:b5:b2:
33:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:37:9E:F5:5B:7E:7A:8F:0E:3B:89:C0:65:3B:29:54:15:7D:B1:79
X509v3 Authority Key Identifier:
keyid:3B:3A:05:DB:B9:C7:7F:A1:6E:D1:04:69:74:7A:5C:6E:6E:AB:88:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzoF27nHf6Fu0QRpdHpcbm6riN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5aa05a-720e-4d56-a3a8-a01c37b88728/1/OzoF27nHf6Fu0QRpdHpcbm6riN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:5f:09:e3:66:27:63:c3:ad:6d:d0:4b:1c:2c:8a:c4:d6:63:
ad:46:c1:66:c1:85:9c:35:1d:01:5b:2e:53:ab:3f:f4:7c:f5:
6a:a2:0b:5e:4a:05:bf:25:8c:19:dd:b8:e6:05:46:5b:59:95:
cf:72:26:1e:3e:b9:81:38:cf:fa:69:a6:d5:83:8e:10:cc:b1:
9a:79:06:69:1c:f8:aa:c9:a7:8f:a6:ca:9f:24:96:ba:15:fe:
28:58:59:76:13:63:01:78:17:09:79:8e:7c:1d:3b:51:2a:e7:
a3:de:eb:44:f4:19:35:45:8c:eb:fd:eb:ad:06:59:d4:34:db:
ea:51:e8:5f:8d:07:6c:41:a2:99:5d:c7:18:a4:e6:06:fb:7f:
b2:3b:6a:d6:c5:b9:53:cb:b2:24:40:3c:20:62:17:a7:58:45:
32:d8:f5:22:f1:77:6f:b8:2f:f6:22:9c:19:87:31:0a:67:b7:
8e:b4:58:9e:61:3a:5b:df:bb:d1:e1:6a:43:5c:e3:0b:4f:79:
1d:76:89:ac:67:73:da:5e:ae:b7:f0:20:8f:a0:d7:a5:c8:e2:
e8:59:5e:9d:ac:68:fd:ba:30:13:a6:f7:45:91:f3:77:16:db:
c4:9e:41:97:97:7e:d9:4b:46:3f:8e:56:7b:81:0c:4a:41:fa:
3c:ba:eb:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:46:13 2025 by rpki-client