Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: VAFek32gVTz1d4jBbDXFU7v3ZH3PY5bEME06DqVwgp8=
Subject key identifier: C4:4C:A5:53:0F:F5:AC:3E:36:7F:AE:0B:6D:B4:4B:4B:32:E9:0B:48
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 01987E2EEA2F7AE1A332F57786E5A4AB2922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 01FB
Signing time: Wed 06 Aug 2025 07:01:00 +0000
Manifest this update: Wed 06 Aug 2025 07:01:00 +0000
Manifest next update: Thu 07 Aug 2025 07:01:00 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: nPpCwV1Qc740uKTsqaD3FtUghFqaNJNjbgH5W20F6xA=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2e:ea:2f:7a:e1:a3:32:f5:77:86:e5:a4:ab:29:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Aug 6 07:01:00 2025 GMT
Not After : Aug 7 07:01:00 2025 GMT
Subject: CN=c44ca5530ff5ac3e367fae0b6db44b4b32e90b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e6:ea:f4:e6:c7:06:72:a4:4f:32:55:2a:f3:
44:7d:e4:27:34:cc:f8:b1:8f:99:58:3e:9e:02:b4:
bc:83:d9:54:4a:cf:8e:e6:b2:bd:38:f8:4e:7c:52:
4c:43:e0:25:67:1d:51:89:1a:c4:5e:21:68:41:0a:
e8:11:a3:97:84:c6:69:5a:20:b7:05:e4:d5:1e:a5:
e7:da:c8:20:e0:26:bf:30:70:24:d1:f5:49:c7:91:
de:5f:40:0d:39:54:2e:df:27:32:a3:3c:5d:09:05:
17:29:7d:7a:0c:b9:2b:c3:33:ed:42:49:f7:3b:62:
de:a7:56:db:96:9e:2a:b1:f3:75:5e:6d:81:24:ba:
16:f8:be:7d:b5:8a:57:55:32:59:34:23:78:0b:f7:
01:dd:0e:16:31:96:3a:05:85:9b:7f:5c:12:83:b7:
c6:7b:6f:39:60:c6:b7:9f:2e:2a:d0:86:ea:d8:76:
4d:55:47:f4:8d:c5:2d:8c:df:79:fc:d2:26:c5:b8:
f6:37:00:a0:ac:92:ae:62:e3:b6:79:5f:8f:8a:9c:
22:02:95:56:94:de:90:59:3f:37:57:54:5a:29:b2:
0d:17:6c:a8:27:f7:84:48:a8:a6:b4:36:95:84:47:
48:3e:41:3a:a8:d6:74:a5:d5:5b:4e:74:59:8d:c3:
97:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:4C:A5:53:0F:F5:AC:3E:36:7F:AE:0B:6D:B4:4B:4B:32:E9:0B:48
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ca:f6:a1:16:24:24:d2:39:6d:fd:d7:f2:32:1f:f8:87:33:
6c:3d:4b:0f:40:63:df:fb:0b:80:1a:9d:53:83:d9:6f:09:e5:
0c:c0:89:ef:7a:db:2f:e4:a8:ca:e4:50:cf:6b:36:4f:17:1d:
b6:0a:d4:73:2d:ba:8c:62:7e:45:70:c3:08:90:48:55:6a:d9:
75:99:63:90:e4:d9:ac:d3:e4:c9:ea:39:79:b6:68:72:b0:d6:
f8:c1:ea:45:91:cb:89:d0:1d:d2:c3:f1:39:0f:88:5a:7e:a8:
86:5a:b7:a2:e1:36:da:49:a9:d1:9e:df:48:d8:62:16:8b:8f:
fd:10:68:f0:81:a4:6b:d4:2d:f7:17:9c:1f:c3:bc:48:7e:31:
01:81:ae:20:bb:2d:da:34:1e:e4:f5:1b:94:ad:84:9d:e8:f8:
ab:ce:5f:f7:9e:05:a7:8d:ba:6f:a2:80:92:48:1c:79:5c:a9:
fe:e0:2a:6e:52:20:f2:27:14:eb:b9:24:8f:e5:28:a7:d0:e6:
52:b3:5d:87:d7:0d:18:0a:14:d5:09:49:93:fd:69:0c:3f:a9:
1a:a6:e9:26:b4:85:91:48:e9:f9:92:06:4d:dd:33:56:83:f4:
5e:94:07:74:ca:f5:bb:d3:a8:f5:b1:30:de:79:5d:04:0b:89:
36:d9:23:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:42:16 2025 by rpki-client