Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: RA2tOccPtGdbfTVSmRQlEKvhNLkjoeBoi+7AIIzAcxc=
Subject key identifier: 89:FD:55:C1:3F:EC:37:E3:68:B7:35:1B:10:10:09:B0:A0:3D:52:36
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 019EC25BC357E800472EBBFB42434C9B6E3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 053E
Signing time: Sat 13 Jun 2026 19:00:54 +0000
Manifest this update: Sat 13 Jun 2026 19:00:54 +0000
Manifest next update: Sun 14 Jun 2026 19:00:54 +0000
Files and hashes: 1: 1-CvN4vL-gOumnUiw8kqYnlyhsGg.roa (hash: j8Mlx4J1MdSRge54lSRG985DTWF3u6cnasrSWFkZ6ac=)
2: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: jmrskCziAcBank8Jr5UetrtM5uM4N5oN388MKgzH/RA=)
3: t25FS3p7VfnEPbzfHv-DyXEln4A.roa (hash: 71ZKU18culvAhzrOg6y8Lw3IENicOoZIJiAlIOqPr8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5b:c3:57:e8:00:47:2e:bb:fb:42:43:4c:9b:6e:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Jun 13 19:00:54 2026 GMT
Not After : Jun 14 19:00:54 2026 GMT
Subject: CN=89fd55c13fec37e368b7351b101009b0a03d5236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:72:d4:df:65:1e:4b:76:41:3c:50:2e:1a:8b:
0e:15:23:ed:c2:88:4f:da:90:1a:aa:18:b9:86:fc:
dd:ac:a2:d1:f4:8f:aa:19:26:4d:e9:a6:15:d5:26:
e0:a3:f0:9d:0e:c2:1f:a7:24:f1:bd:26:3d:f3:71:
67:bb:e9:ca:5c:e2:d9:31:1e:af:fb:64:f3:b2:73:
f9:9d:22:cb:20:ea:8c:de:cf:f0:23:58:40:db:9d:
db:af:cd:35:91:f8:51:02:9e:bd:31:e8:2c:70:bd:
3f:13:aa:7a:b3:fd:15:9a:2d:20:54:c7:51:2e:f8:
6e:eb:1d:fb:7b:f6:9f:ae:12:df:3b:f2:ea:93:81:
89:4f:d0:24:89:44:fc:96:83:a7:a5:2f:10:a9:be:
c9:91:c9:f3:2b:ae:8c:58:b3:a0:7e:c0:ef:b5:6b:
a5:d4:9b:3d:fc:9e:80:60:e7:f1:84:da:09:af:67:
36:77:bf:55:fb:4f:f2:e0:86:ef:4b:50:d9:89:29:
34:76:38:ee:eb:2b:92:a5:a0:0b:76:ae:dc:04:e5:
6e:b0:30:ac:94:bd:e9:f3:03:0d:03:ae:a2:54:10:
7e:5e:c3:69:d4:f0:20:b9:c8:29:37:c6:72:7a:76:
dd:5b:f2:23:b7:a4:f1:69:45:5c:b4:a1:50:fd:8d:
e4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:FD:55:C1:3F:EC:37:E3:68:B7:35:1B:10:10:09:B0:A0:3D:52:36
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:01:ab:40:4b:bc:0a:42:71:a0:e2:78:b1:c6:99:ca:69:bd:
97:51:f9:13:74:ef:76:2a:c0:32:62:38:bd:c3:af:7b:d9:ae:
39:55:4e:8b:1f:8a:24:b6:80:de:fc:53:e9:18:e2:21:f7:34:
e2:7d:e4:ee:3d:81:b1:44:ea:7a:8b:92:7b:ca:f3:22:0e:b9:
a2:e6:85:52:5a:aa:8c:c6:d0:ed:8f:d4:fe:d8:af:d5:dd:39:
2f:46:ce:4a:8f:85:d2:9c:98:ec:e9:f4:6f:ed:d3:f7:db:b6:
0c:03:fa:40:d2:57:dd:a6:c9:de:d1:84:ea:70:69:43:f0:2d:
6b:13:b8:5c:3b:90:f4:45:7c:53:8a:10:21:34:9a:bb:49:9c:
fd:33:26:7e:99:49:21:bc:68:4d:26:3d:73:00:86:1b:2b:a3:
8a:75:37:36:57:46:3e:a6:43:01:94:03:2d:ab:10:db:0e:81:
25:78:1a:ba:de:a6:f9:7f:65:06:a8:ca:e5:f9:19:b4:c0:51:
71:13:da:4b:19:cb:14:a1:7b:07:73:1e:22:34:28:65:db:f7:
3c:69:ba:ee:68:44:b7:9f:8f:ff:47:46:73:db:65:39:dd:39:
6c:d6:24:fe:e3:00:0d:00:96:42:91:dd:e3:0e:f4:74:b5:4d:
71:4c:aa:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:52:25 2026 by rpki-client