Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
File: OZETdfzEhZYSGQ6-zHrjcaAaam0.mft (raw, json)
Hash identifier: xuolSiQpBdaGbH/UdXfbo6sTPrOHmL1i4ebTeH/Kumc=
Subject key identifier: 11:E1:82:C4:AD:AB:CF:A1:61:F8:2F:FE:EA:8E:89:B9:05:0E:74:7E
Authority key identifier: 39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
Certificate issuer: /CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Certificate serial: 01968435B5747BD6D973601824F71D086CBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
Manifest number: 0E3F
Signing time: Wed 30 Apr 2025 01:00:34 +0000
Manifest this update: Wed 30 Apr 2025 01:00:34 +0000
Manifest next update: Thu 01 May 2025 01:00:34 +0000
Files and hashes: 1: OZETdfzEhZYSGQ6-zHrjcaAaam0.crl (hash: xCIbamP6pwkerI/cVAB8Onx77JAg7xoifWdyVlHjyws=)
2: mV-huyQ7uf2YxiJ1JUpDypBxzhA.roa (hash: XQgQ9aC7Ey76psDYNwOwzM5lgNTkkh3rEJlv1Rte2h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:b5:74:7b:d6:d9:73:60:18:24:f7:1d:08:6c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39911375fcc4859612190ebecc7ae371a01a6a6d
Validity
Not Before: Apr 30 01:00:34 2025 GMT
Not After : May 1 01:00:34 2025 GMT
Subject: CN=11e182c4adabcfa161f82ffeea8e89b9050e747e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0d:55:5f:b1:43:61:58:fa:d6:01:af:49:02:
ab:c8:34:33:40:4f:22:17:9a:62:94:48:ba:3a:08:
20:bc:94:51:d2:b4:fa:01:65:55:8f:98:9e:4d:8a:
96:d4:48:9d:dc:c6:88:81:a6:6c:ce:ff:0a:0f:81:
a7:6a:9a:4b:fc:90:f6:2e:7f:6c:e1:86:c7:78:bd:
55:fb:24:34:64:29:74:4f:eb:b8:96:ac:96:0b:5e:
30:5f:ab:a7:bc:c2:0d:a9:1e:37:8c:7c:fc:71:73:
89:9b:49:14:90:5e:de:a1:dc:3d:c6:ff:79:c0:f7:
b7:95:18:df:9b:fd:83:a2:e2:8d:79:01:e7:1a:a5:
bd:09:e7:9d:fa:f0:67:e7:ba:8c:ca:ba:b5:09:97:
3c:74:b8:85:89:84:5f:5c:e4:39:3b:08:ba:76:b9:
2a:5e:81:59:57:9f:95:18:49:01:cd:0d:2b:c4:16:
70:7a:a5:82:57:3e:c6:62:be:b7:d9:e7:13:c4:de:
2a:34:e2:bb:61:a1:cf:06:62:44:e4:7a:aa:43:cb:
3b:07:b3:ac:91:b2:e0:70:0d:51:fe:bd:9e:68:64:
f0:a3:3a:c4:e0:3f:48:3b:a6:24:8d:d7:6e:36:e1:
e6:a6:67:47:25:4f:72:aa:9d:58:09:f9:ce:34:7e:
76:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:E1:82:C4:AD:AB:CF:A1:61:F8:2F:FE:EA:8E:89:B9:05:0E:74:7E
X509v3 Authority Key Identifier:
keyid:39:91:13:75:FC:C4:85:96:12:19:0E:BE:CC:7A:E3:71:A0:1A:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OZETdfzEhZYSGQ6-zHrjcaAaam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/61c0c5-5257-453c-8e74-933d92d0000c/1/OZETdfzEhZYSGQ6-zHrjcaAaam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:0c:8f:7b:fd:34:c7:46:ca:50:ba:f8:c3:b3:44:f8:ae:13:
e7:ae:d1:e0:2f:a8:9b:54:72:33:f8:d4:ec:19:5e:f8:31:d2:
7f:ff:b4:a5:43:a6:f1:8b:3c:92:fd:4d:ce:d1:4c:78:1c:00:
f8:54:9a:4a:95:2c:49:02:bb:33:45:3b:45:f8:02:63:7c:0d:
c8:63:2a:af:ec:dd:1e:7f:13:5a:a8:32:52:16:1b:23:23:0a:
14:dd:8f:c8:61:30:b5:16:b1:1e:40:e8:71:cb:ce:f7:26:9b:
d5:2b:ec:72:f0:6e:0b:ea:8b:be:b2:29:72:3f:56:e2:29:b5:
f6:d3:53:18:ee:df:c6:6a:96:6e:91:2a:a0:46:95:7c:cf:81:
88:21:91:6f:db:31:13:28:55:c1:11:1f:4b:cc:b8:f3:6a:82:
e2:31:3f:ec:1c:85:1b:e6:ec:4d:9f:7d:99:74:d9:4f:69:58:
c1:81:8e:70:89:57:43:d4:12:b1:68:5e:aa:a2:ac:bf:16:1c:
58:66:14:c5:35:c0:f0:c9:f5:3e:f2:a1:63:ff:a9:ab:ac:c2:
5e:b0:ce:f8:36:72:b0:ab:ad:01:c5:24:b5:ae:df:3e:63:b9:
8f:95:18:13:df:51:d2:67:ac:2f:0b:8d:aa:98:0e:87:40:ca:
89:af:96:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:41:43 2025 by rpki-client