Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
File: OzdnJSANjYwAzw91FK8l_zYjEPA.mft (raw, json)
Hash identifier: vil4x1wB11JRlw0rLttG3/NiuRXFxV9p9HlkmeGgapU=
Subject key identifier: 63:E0:5E:7A:50:5D:E9:2F:7F:B1:15:42:47:6F:CE:62:AB:BF:A3:6A
Authority key identifier: 3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
Certificate issuer: /CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Certificate serial: 0196760C12B1957888AD19AB5E59977D3962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 07:00:24 +0000
Manifest this update: Sun 27 Apr 2025 07:00:24 +0000
Manifest next update: Mon 28 Apr 2025 07:00:24 +0000
Files and hashes: 1: OzdnJSANjYwAzw91FK8l_zYjEPA.crl (hash: xP6m6HGm/XqxMjZngQgtnb5IgPnsThXACYNdH6Xr+mU=)
2: mY9DqP6sBYRDAuWwviu5NNB6lIA.roa (hash: Jpwfq6zWzFUKhEKM7+C1EDuHC9fqQSYeca6cvS8lEYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:12:b1:95:78:88:ad:19:ab:5e:59:97:7d:39:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Validity
Not Before: Apr 27 07:00:24 2025 GMT
Not After : Apr 28 07:00:24 2025 GMT
Subject: CN=63e05e7a505de92f7fb11542476fce62abbfa36a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0c:b4:34:ab:08:10:f3:aa:f6:21:1f:83:e6:
0d:97:9e:ab:f0:74:b4:2e:a4:e2:60:65:f2:40:77:
47:11:d9:e0:4d:e7:72:7e:c7:12:79:a1:0b:4c:2e:
6a:3d:e2:cd:04:fe:e8:18:fd:e3:2e:ff:c6:10:75:
1e:40:97:4d:74:f5:fa:f1:e0:b1:15:19:74:bb:84:
26:70:37:03:f1:5e:03:50:58:63:5c:3e:77:ed:ac:
af:76:1b:46:69:51:14:2f:5f:fa:f3:19:20:98:a6:
fd:b2:e4:8e:1f:8f:e6:91:a6:ee:6e:7a:01:18:27:
b1:46:60:98:89:3c:3f:03:f6:7d:94:ad:b5:de:e6:
fb:62:0e:92:70:33:04:79:7b:ea:68:b7:f7:37:76:
6f:76:b1:5f:c3:d8:e1:19:76:3b:11:8d:c2:2f:1e:
6a:65:48:50:a7:5b:c7:ec:23:a3:92:8c:fb:51:9c:
88:95:f2:b4:50:2f:b9:1e:4e:d7:79:72:de:fa:55:
c2:fd:b8:09:a4:43:a0:a8:fc:ca:3f:92:6b:56:1c:
b3:b3:23:a2:a7:d6:a3:ab:c7:7a:d3:57:95:0b:70:
1e:06:b8:f3:69:2b:56:f3:93:9f:4b:59:6c:bc:03:
ab:7d:fa:0d:47:0f:f7:1d:80:71:d2:de:21:1c:27:
06:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E0:5E:7A:50:5D:E9:2F:7F:B1:15:42:47:6F:CE:62:AB:BF:A3:6A
X509v3 Authority Key Identifier:
keyid:3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:98:83:6f:12:1c:2b:89:4c:fa:15:9b:10:e2:a8:75:33:82:
60:0c:0f:cb:bd:4e:f1:5e:06:f8:45:69:4d:f5:4e:28:46:9c:
d4:b0:7d:9e:9c:1d:ca:c2:cb:82:f8:75:99:83:bd:71:bb:8f:
65:90:66:08:71:07:3c:70:a9:ba:23:28:8e:b8:47:9a:8e:cc:
b3:22:2f:57:3b:70:fe:88:fd:0f:3a:b1:35:f2:04:1e:8b:04:
36:ce:e5:c5:9f:a4:ad:aa:3b:04:37:65:ba:19:9a:df:e0:2d:
e4:7b:6e:0b:26:e1:f2:99:03:3e:a3:7c:a3:b5:51:eb:23:d4:
05:58:f2:df:aa:08:f6:c3:15:a1:e1:97:1f:ea:c2:9d:dd:32:
41:1f:4f:95:f1:0d:6a:0e:7d:c9:42:ed:5a:16:d0:cc:30:4a:
eb:b0:21:5a:b7:eb:f1:ca:49:bf:90:3a:0f:e3:4e:2c:eb:c2:
de:80:f8:06:39:f5:a5:e4:1d:69:a0:db:09:50:3d:cd:41:b7:
92:b5:b8:1b:98:54:13:5c:9f:99:62:c3:a6:51:ca:0a:f3:6a:
46:2f:2c:32:fe:24:65:a7:8c:ce:c9:9e:19:40:de:f2:a0:a6:
7c:0c:23:05:9a:bb:58:e3:b8:f8:fd:bb:6a:f7:50:3b:6b:4b:
53:e7:f0:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:34:25 2025 by rpki-client