Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/914d91-ee71-4224-b300-6ce52bee666a/1/OCrZBtcZpmqFoxPRBSlAAstlf3s.mft
File: OCrZBtcZpmqFoxPRBSlAAstlf3s.mft (raw, json)
Hash identifier: z0l/ykNLvR2IIR2p6ubWnwnZ46+SiXS++cud1pho1AU=
Subject key identifier: 4B:F8:E4:10:A9:7C:6E:4F:68:34:B3:A9:9C:03:F4:6E:A1:17:76:FD
Authority key identifier: 38:2A:D9:06:D7:19:A6:6A:85:A3:13:D1:05:29:40:02:CB:65:7F:7B
Certificate issuer: /CN=382ad906d719a66a85a313d105294002cb657f7b
Certificate serial: 019880C22304A8DE5676F04C5D217FAF07F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCrZBtcZpmqFoxPRBSlAAstlf3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/914d91-ee71-4224-b300-6ce52bee666a/1/OCrZBtcZpmqFoxPRBSlAAstlf3s.mft
Manifest number: 01FE
Signing time: Wed 06 Aug 2025 19:01:03 +0000
Manifest this update: Wed 06 Aug 2025 19:01:03 +0000
Manifest next update: Thu 07 Aug 2025 19:01:03 +0000
Files and hashes: 1: OCrZBtcZpmqFoxPRBSlAAstlf3s.crl (hash: q2jYCz3JS+KUQEUDgsTBiwWMEuKXWKURBwF7eAieanc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/914d91-ee71-4224-b300-6ce52bee666a/1/OCrZBtcZpmqFoxPRBSlAAstlf3s.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/914d91-ee71-4224-b300-6ce52bee666a/1/OCrZBtcZpmqFoxPRBSlAAstlf3s.mft
rsync://rpki.ripe.net/repository/DEFAULT/OCrZBtcZpmqFoxPRBSlAAstlf3s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:23:04:a8:de:56:76:f0:4c:5d:21:7f:af:07:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382ad906d719a66a85a313d105294002cb657f7b
Validity
Not Before: Aug 6 19:01:03 2025 GMT
Not After : Aug 7 19:01:03 2025 GMT
Subject: CN=4bf8e410a97c6e4f6834b3a99c03f46ea11776fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:49:e2:9c:27:c8:d0:0f:19:3f:29:b9:85:2d:
e7:53:6f:2d:9b:57:a6:de:a3:4d:99:75:0f:cf:78:
80:9f:49:ae:ae:58:bb:37:52:97:a4:f7:c7:08:48:
ff:ec:b0:ac:c5:a0:6b:fb:9b:57:46:55:0b:17:9e:
bb:55:3d:06:cd:1c:09:3d:46:ba:7e:53:59:37:b5:
cb:eb:00:0c:38:2a:5f:fd:d9:7f:91:24:6a:4f:6d:
43:b8:6c:d2:4e:fc:5f:aa:11:c8:54:db:9e:fc:5f:
c2:3d:91:14:eb:10:96:35:7d:fb:de:7b:1f:c9:91:
ec:68:98:66:84:eb:a4:d4:69:a5:bb:d4:b7:61:6d:
0e:4a:cc:88:81:64:f0:70:08:a4:35:4c:93:4a:79:
da:ce:51:db:bf:b8:c7:8f:e4:bf:de:27:e2:bc:93:
cb:a9:14:c0:13:36:4c:f9:91:17:f4:39:59:ec:9f:
23:ab:57:93:db:3c:21:ad:9c:63:e8:4b:86:bc:1f:
1b:ee:fe:e3:42:5a:b2:87:b3:da:97:89:4d:b3:94:
c2:8b:5f:32:c8:e2:9a:ca:69:7f:f5:56:dd:1e:a3:
cf:9d:c1:a8:f0:84:7f:c6:8e:e7:44:51:eb:46:08:
18:26:34:fc:7c:60:ed:05:48:99:4d:8d:0e:5e:d3:
d2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F8:E4:10:A9:7C:6E:4F:68:34:B3:A9:9C:03:F4:6E:A1:17:76:FD
X509v3 Authority Key Identifier:
keyid:38:2A:D9:06:D7:19:A6:6A:85:A3:13:D1:05:29:40:02:CB:65:7F:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCrZBtcZpmqFoxPRBSlAAstlf3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/914d91-ee71-4224-b300-6ce52bee666a/1/OCrZBtcZpmqFoxPRBSlAAstlf3s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/914d91-ee71-4224-b300-6ce52bee666a/1/OCrZBtcZpmqFoxPRBSlAAstlf3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:54:53:0d:1e:08:ea:61:cb:2c:d2:dc:61:80:80:c8:6c:68:
0b:37:4c:ef:bd:78:fa:39:a9:b3:01:b6:36:21:98:91:24:df:
9c:4d:ab:80:ef:be:ae:3c:a0:c1:50:52:55:02:70:84:b3:79:
6a:62:38:f4:17:97:e0:a6:53:81:ec:b1:b9:12:5e:ea:7a:67:
cd:b0:0f:c9:65:fe:56:5f:ac:67:cc:a9:3c:9e:c4:e6:a0:96:
45:81:96:4d:bb:9c:cf:a4:78:35:40:ac:b9:5b:0f:8c:90:fd:
66:02:eb:fe:be:df:f5:67:6a:e6:cd:ea:1f:66:25:60:30:9d:
7e:70:0a:d2:a1:07:b3:31:a3:94:a2:76:41:83:d2:61:f9:a3:
0d:09:5a:76:b8:36:05:dc:d9:5b:83:5f:eb:5d:00:7c:a1:b3:
fb:4d:1b:53:b0:bb:8a:90:54:0d:ad:77:38:a4:4a:aa:32:06:
2a:5e:43:3f:74:d4:3f:25:93:87:ae:43:df:61:e4:67:51:0b:
f2:bc:3b:9b:5e:ca:dd:d6:c7:f3:ec:c5:e1:a0:0c:03:0f:5d:
aa:1c:77:2a:a6:32:e5:9b:5b:b5:54:6f:4c:ac:51:c5:dc:79:
4b:9f:66:28:25:32:59:a6:f4:96:fd:4f:02:fc:c4:37:7d:f4:
5e:e4:42:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:56:18 2025 by rpki-client