Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
File: OzdnJSANjYwAzw91FK8l_zYjEPA.mft (raw, json)
Hash identifier: zWzT1rInL/bfHi/8Kcj6R7+oNFbuGxFgLXCcI1DDMbA=
Subject key identifier: E5:70:8E:4D:94:B1:A3:DD:4F:F0:94:00:F5:44:EC:B1:71:0E:85:3D
Authority key identifier: 3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
Certificate issuer: /CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Certificate serial: 0197696081EC27C9FD05F2B02AFEB9F9F2C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
Manifest number: 158E
Signing time: Fri 13 Jun 2025 13:00:21 +0000
Manifest this update: Fri 13 Jun 2025 13:00:21 +0000
Manifest next update: Sat 14 Jun 2025 13:00:21 +0000
Files and hashes: 1: OzdnJSANjYwAzw91FK8l_zYjEPA.crl (hash: TJXjQndeN2BG2/Y5XQLWPG3fONDCmyQllDGI1NBfd94=)
2: mY9DqP6sBYRDAuWwviu5NNB6lIA.roa (hash: Jpwfq6zWzFUKhEKM7+C1EDuHC9fqQSYeca6cvS8lEYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:81:ec:27:c9:fd:05:f2:b0:2a:fe:b9:f9:f2:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b376725200d8d8c00cf0f7514af25ff362310f0
Validity
Not Before: Jun 13 13:00:21 2025 GMT
Not After : Jun 14 13:00:21 2025 GMT
Subject: CN=e5708e4d94b1a3dd4ff09400f544ecb1710e853d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:76:90:26:d2:f0:60:c5:25:34:5f:b3:25:32:
93:0d:1c:90:af:ec:bc:0c:a1:1a:30:29:58:04:9f:
38:8b:af:7a:58:c1:e4:d1:0e:fd:fa:2c:df:22:d3:
db:cd:cf:72:8f:24:33:0c:09:6f:07:dc:73:e6:0f:
46:4e:0c:fc:63:45:cf:b1:51:55:d1:b1:fb:1e:05:
23:ee:45:b7:df:e4:87:63:e8:bd:b0:1a:23:a8:af:
6c:b5:1e:9c:76:d6:8c:72:74:14:f5:7c:e7:d5:0e:
ee:b0:af:57:63:77:a9:f4:cc:ee:5a:62:9e:1e:af:
d9:55:75:5f:b3:a8:0b:b6:e4:ec:0e:e6:a5:1e:92:
e5:eb:c8:e3:d0:f8:d3:04:5e:4b:31:37:23:d0:00:
88:80:81:bc:79:fc:3c:84:9e:ef:d3:83:8b:e1:07:
99:c1:3d:1f:e9:d4:be:a0:6e:41:51:f2:7e:dd:ef:
1e:43:34:5e:cf:d2:c7:84:75:a5:88:cd:ef:75:65:
f0:c0:a5:83:f9:e7:6a:09:7c:e9:36:8c:7c:a2:30:
07:37:eb:88:a4:6c:f3:c4:e2:86:58:40:e9:e3:c6:
84:53:3b:20:2c:a8:d5:df:68:74:44:48:1f:54:48:
74:bf:07:6b:45:d0:93:51:5a:95:b5:ac:21:4e:43:
0a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:70:8E:4D:94:B1:A3:DD:4F:F0:94:00:F5:44:EC:B1:71:0E:85:3D
X509v3 Authority Key Identifier:
keyid:3B:37:67:25:20:0D:8D:8C:00:CF:0F:75:14:AF:25:FF:36:23:10:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OzdnJSANjYwAzw91FK8l_zYjEPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e54a63-36b4-4684-9159-292098da2e39/1/OzdnJSANjYwAzw91FK8l_zYjEPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:12:34:e0:9f:f8:b0:02:5d:c4:7a:6b:ff:06:1e:7d:ed:94:
54:33:0f:1c:9e:29:cf:b6:f0:01:64:33:59:8d:60:d4:c0:e0:
ba:69:a3:f6:dd:b0:e7:37:df:75:f1:ca:9e:ef:9a:c1:14:08:
50:e3:c5:02:16:e6:d3:e8:db:91:e8:f1:e3:e2:79:31:be:61:
0b:b3:62:88:65:bb:1e:e5:fb:3d:67:7d:41:6e:71:de:61:cf:
96:f3:4e:c9:ff:d7:61:8c:92:38:23:08:ab:25:3a:0c:d4:9c:
f7:4f:f5:53:3c:c5:be:be:f7:74:5d:2b:0b:8d:f2:ef:d5:3d:
7d:05:ff:1c:3d:87:48:59:f8:44:79:d9:51:a2:43:81:43:01:
52:e2:ee:28:77:09:bd:e1:35:3a:64:f6:1a:9c:50:da:c7:47:
10:81:7e:92:6a:b1:60:2c:fe:6a:f9:37:42:4e:9b:bd:45:44:
b9:d0:28:58:a9:45:d2:e8:50:32:9c:52:6f:ba:32:bd:59:91:
a3:11:0e:b9:c4:a3:4d:21:d4:bd:ca:ce:f1:09:6d:e5:db:7a:
50:a3:51:bb:40:20:25:45:8b:f0:a0:f3:c1:c1:dd:71:a9:78:
f6:4c:29:40:e9:2e:ab:63:30:93:44:d8:e0:af:a9:37:c4:53:
c5:9c:1a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:10:45 2025 by rpki-client