Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: AEDK2vbAc+W8pWq/DxJOBgpdwJPQC1TkksCA1+x0KSU=
Subject key identifier: F8:2E:D7:8D:0E:85:4D:30:75:82:12:5C:83:CF:9A:C4:F0:FC:AC:46
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 01976BF43CDD085BBBD33B2B599C230149CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 016D
Signing time: Sat 14 Jun 2025 01:00:57 +0000
Manifest this update: Sat 14 Jun 2025 01:00:57 +0000
Manifest next update: Sun 15 Jun 2025 01:00:57 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: 7VQoPrJMFB0MMAEKdvwkk7u1Q6fHVvNbtuwEyrXPU5M=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:3c:dd:08:5b:bb:d3:3b:2b:59:9c:23:01:49:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Jun 14 01:00:57 2025 GMT
Not After : Jun 15 01:00:57 2025 GMT
Subject: CN=f82ed78d0e854d307582125c83cf9ac4f0fcac46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f9:03:90:b8:fe:ad:a9:3f:06:30:1e:42:4d:
10:ab:e0:2d:16:9e:74:8c:3a:a6:74:89:be:e5:d6:
6a:ea:03:91:8e:02:e9:d1:f6:ee:51:00:86:8f:7c:
f4:33:50:37:72:a7:43:df:8e:91:cf:03:a7:ae:15:
3d:7a:1e:b6:0d:d0:89:93:af:1a:d3:64:15:e0:d7:
b7:8b:ff:33:64:f4:06:ae:6d:c6:e2:a7:71:4c:94:
9e:34:53:d1:47:85:c9:c1:89:14:e4:ff:9d:d2:71:
83:67:6e:f2:2d:0e:78:24:d9:99:c1:dd:a9:66:e4:
69:b5:dc:c1:e0:df:81:92:7a:f8:52:fd:d0:a3:e7:
75:95:90:d9:c4:0a:c9:61:58:cb:5f:3b:52:dd:fc:
58:1c:6e:9b:d2:cd:5f:0f:91:5c:01:06:11:61:3e:
e6:35:91:09:ae:9c:27:bd:2d:4c:1a:24:9c:cc:b0:
f1:45:dd:ca:a7:d9:e0:31:7a:75:14:31:4c:e6:7a:
ab:f7:93:15:4f:44:b5:a7:02:05:39:b5:cd:c7:20:
e0:2b:0b:ae:e6:cf:54:7d:d0:3c:b1:51:c0:1e:fc:
55:2f:d9:13:f2:6b:4b:f6:4f:28:cc:b5:05:ac:00:
55:07:0d:12:18:21:e4:b8:99:d5:37:57:2b:cd:a3:
ce:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2E:D7:8D:0E:85:4D:30:75:82:12:5C:83:CF:9A:C4:F0:FC:AC:46
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:62:af:e5:0d:1d:1e:8b:a6:c6:20:1e:1a:f8:a7:9f:ce:23:
41:66:41:f8:09:56:2c:b3:93:84:89:dc:5e:8a:14:26:8f:c3:
2a:1c:32:74:b4:95:34:da:20:c7:96:94:fc:90:9b:c8:b2:a0:
3e:f6:87:e1:cd:96:9a:fd:cf:b4:3b:1e:b6:ae:04:bc:7d:15:
4f:85:fc:b6:b9:29:2e:7f:a3:62:1e:b5:6d:c6:2b:fa:06:ef:
fa:25:80:a4:4b:1d:3c:55:53:6b:10:27:d7:54:28:1b:ad:d7:
ed:12:f6:f1:09:bf:cd:4c:48:f8:75:26:9a:03:6a:3e:bb:5b:
e7:c4:91:8c:2b:18:83:4d:99:b3:67:c2:c9:c2:7d:ec:db:a6:
ec:cd:aa:f3:5b:f2:8c:90:35:86:e2:69:08:bb:20:ca:f1:27:
08:bd:ef:a0:e9:7d:76:59:99:f0:39:05:14:98:57:73:91:fb:
8c:06:4b:c1:a3:0e:33:6f:42:d0:63:80:e3:06:b8:7b:3d:66:
4b:3d:f6:e0:40:01:15:7d:cc:37:b6:d7:19:cc:81:6f:72:2b:
51:b2:f7:9b:3b:74:d6:b7:9a:84:e1:97:c6:12:ef:f0:66:7c:
9c:eb:41:b0:d0:62:d1:bb:d1:37:f3:ce:58:56:89:c6:a6:21:
5e:aa:58:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdr9DzdCFu70zsrWZwjAUnMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MmY4NmYyZGJkMDc3NmM0ZTUxOWM5YzlhZTRmYWQwNDI2
ZjM5ZmYwHhcNMjUwNjE0MDEwMDU3WhcNMjUwNjE1MDEwMDU3WjAzMTEwLwYDVQQD
EyhmODJlZDc4ZDBlODU0ZDMwNzU4MjEyNWM4M2NmOWFjNGYwZmNhYzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfkDkLj+rak/BjAeQk0Qq+AtFp50
jDqmdIm+5dZq6gORjgLp0fbuUQCGj3z0M1A3cqdD346RzwOnrhU9eh62DdCJk68a
02QV4Ne3i/8zZPQGrm3G4qdxTJSeNFPRR4XJwYkU5P+d0nGDZ27yLQ54JNmZwd2p
ZuRptdzB4N+Bknr4Uv3Qo+d1lZDZxArJYVjLXztS3fxYHG6b0s1fD5FcAQYRYT7m
NZEJrpwnvS1MGiSczLDxRd3Kp9ngMXp1FDFM5nqr95MVT0S1pwIFObXNxyDgKwuu
5s9UfdA8sVHAHvxVL9kT8mtL9k8ozLUFrABVBw0SGCHkuJnVN1crzaPOiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPgu140OhU0wdYISXIPPmsTw/KxGMB8GA1UdIwQY
MBaAFDgvhvLb0HdsTlGcnJrk+tBCbzn/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wNDc0OGQtOTIzYi00Mjg0LTk2Mjgt
MjAzNTYzZjg0NWJiLzEvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wNDc0OGQtOTIzYi00Mjg0LTk2MjgtMjAzNTYzZjg0NWJi
LzEvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnWKv5Q0d
HoumxiAeGvinn84jQWZB+AlWLLOThIncXooUJo/DKhwydLSVNNogx5aU/JCbyLKg
PvaH4c2Wmv3PtDsetq4EvH0VT4X8trkpLn+jYh61bcYr+gbv+iWApEsdPFVTaxAn
11QoG63X7RL28Qm/zUxI+HUmmgNqPrtb58SRjCsYg02Zs2fCycJ97Num7M2q81vy
jJA1huJpCLsgyvEnCL3voOl9dlmZ8DkFFJhXc5H7jAZLwaMOM29C0GOA4wa4ez1m
Sz324EABFX3MN7bXGcyBb3IrUbL3mzt01reahOGXxhLv8GZ8nOtBsNBi0bvRN/PO
WFaJxqYhXqpY0A==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:06:25 2025 by rpki-client