Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: DMzKB0juTuSjSqOpHUSy7eq1uVyLGsEKFbLgCmwfNPY=
Subject key identifier: 76:F4:1A:BB:5A:0C:29:E0:F2:D5:4E:2E:3F:98:09:A8:41:C4:E7:3D
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 0196B66B9CE1A8DAD902F7D1B6B3261FA728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 010F
Signing time: Fri 09 May 2025 19:00:27 +0000
Manifest this update: Fri 09 May 2025 19:00:27 +0000
Manifest next update: Sat 10 May 2025 19:00:27 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: cLEtxboGcXx9MDVg7vYr0E/4v/1qh3LsWY/NN01Puf8=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:6b:9c:e1:a8:da:d9:02:f7:d1:b6:b3:26:1f:a7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: May 9 19:00:27 2025 GMT
Not After : May 10 19:00:27 2025 GMT
Subject: CN=76f41abb5a0c29e0f2d54e2e3f9809a841c4e73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:1e:e9:89:5b:16:a2:22:1a:9e:c8:59:da:
26:f8:5f:cf:13:64:3e:2a:de:ae:1e:d6:61:a7:a7:
54:ff:9a:5a:25:ca:69:41:21:fa:3c:ec:93:9e:d8:
9b:27:79:f6:02:c2:4a:81:6d:97:6d:98:78:7c:b7:
a4:5c:4d:a3:5e:a9:48:d5:3c:f7:ff:a1:23:ef:0e:
62:2c:9e:ee:24:09:61:ec:ab:76:3f:fa:2f:e7:f9:
32:e4:59:8c:2c:08:4f:a3:09:6d:90:f6:d9:31:a5:
dd:d5:63:3f:a4:fa:ab:6c:f5:b5:a6:30:be:88:2e:
44:a3:69:eb:a4:99:50:f3:7a:e8:2e:54:8f:24:60:
1d:c8:30:ec:f9:9e:86:67:8e:16:aa:cf:de:32:51:
98:1e:b6:e3:32:9b:6b:cd:05:da:6b:17:2a:d9:b7:
c7:eb:be:86:a8:f3:75:88:31:a4:53:03:46:58:72:
94:7d:03:3a:62:fb:29:b8:21:60:0b:8c:9d:bd:5d:
30:c2:ec:8f:6b:26:98:35:d4:db:c9:e3:0d:87:38:
42:a1:ff:34:62:55:fc:37:25:cd:2c:e9:7f:e4:70:
9a:e3:f5:72:12:ad:02:60:47:d5:2f:99:22:6d:07:
a0:3c:e5:aa:a7:fc:4b:70:5b:32:80:6f:33:4c:58:
cc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F4:1A:BB:5A:0C:29:E0:F2:D5:4E:2E:3F:98:09:A8:41:C4:E7:3D
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:71:05:20:0e:d9:1e:14:e9:84:87:00:d8:b4:ca:70:8e:c7:
7d:39:af:8c:6e:99:32:10:22:1b:06:04:2f:72:38:77:b1:d7:
72:ea:bb:5f:7b:6b:c5:42:1f:c7:4c:93:4b:53:7d:c1:37:d7:
34:23:27:8f:2c:34:e8:cd:57:40:30:c6:06:30:fb:24:c5:c1:
2a:a6:64:d6:b0:71:66:32:36:1f:00:14:29:a4:47:31:4a:8d:
37:d1:87:3a:89:ff:2e:05:e6:d1:45:a1:46:69:8b:d9:3f:1a:
7d:a0:5d:51:6f:1e:4f:ff:b7:64:7a:ca:b3:c8:05:bc:0a:f3:
c0:2e:ab:40:53:c5:88:f1:70:77:5e:49:09:be:c7:86:81:b8:
23:1a:57:e2:d5:b1:ce:fe:42:ce:8e:b9:5f:dc:a8:04:56:f9:
b6:0e:54:2b:06:1c:24:1f:d7:26:8a:94:24:65:eb:38:6e:0c:
0a:ed:01:29:a3:76:bc:16:df:ae:61:65:da:29:1e:08:ef:37:
74:28:f1:2c:54:a9:b6:e0:a5:2e:0b:47:ab:89:67:d4:1d:a1:
78:c9:33:56:dc:c1:5d:b9:2f:c2:2d:b7:8b:0f:e4:f6:56:87:
ef:26:8a:c7:f7:62:c0:3b:52:92:32:98:0c:2b:d1:db:64:fc:
15:33:b6:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 05:21:48 2025 by rpki-client