Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: NOfZ6NVdGuQbTxAbnSV+xqdcI2aecJ6eUFkQB8nz4vU=
Subject key identifier: 11:3B:EF:37:BA:2B:BF:80:BE:5D:48:CE:B6:67:9C:67:71:32:91:2B
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 0198D515A6C0AB0BC45E2769F6D89D0EEB40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 0228
Signing time: Sat 23 Aug 2025 04:00:22 +0000
Manifest this update: Sat 23 Aug 2025 04:00:22 +0000
Manifest next update: Sun 24 Aug 2025 04:00:22 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: s1oNIQ0IZodTVulp48UipI8hcyO3JcfUi3RBui1Bn6Q=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:a6:c0:ab:0b:c4:5e:27:69:f6:d8:9d:0e:eb:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Aug 23 04:00:22 2025 GMT
Not After : Aug 24 04:00:22 2025 GMT
Subject: CN=113bef37ba2bbf80be5d48ceb6679c677132912b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:64:af:b5:39:0e:3b:17:ce:7a:e1:b1:03:41:
72:65:af:bc:f6:dc:9f:02:61:e8:35:c8:ec:e3:d5:
58:7c:b3:09:a6:ac:bf:00:e1:42:05:e9:02:d2:72:
2d:a0:10:4d:5a:90:26:ef:7b:45:78:79:78:1a:63:
6d:03:7a:bb:06:de:af:1c:cb:d8:e1:4d:5a:cd:5a:
fa:41:7e:30:3b:ae:60:a4:9c:cc:6a:88:d2:dd:17:
c1:3a:45:39:79:18:b3:01:c2:85:cc:27:e6:59:e6:
20:a3:3b:ed:f7:52:58:53:dd:22:1d:5c:38:0a:b1:
4f:b2:a5:44:7c:b1:e8:c6:9a:c2:33:b2:4f:44:1f:
77:ed:b1:b7:20:60:92:56:fe:b8:6a:b2:c6:0f:ea:
22:29:6c:b8:74:1d:1d:d8:29:82:f6:23:59:8d:c5:
f9:e1:89:fc:dc:41:a2:43:d9:d7:8a:a4:38:6a:77:
fb:6b:be:1b:32:b5:86:dc:1f:61:88:ca:47:9c:fa:
96:86:19:3c:79:d2:70:d5:f1:06:f8:d0:b4:1e:d1:
fe:d8:4f:58:49:fe:30:33:6c:35:b9:62:9a:3d:d5:
07:99:dd:f2:d1:fb:23:33:6d:7e:5e:fc:e8:e7:37:
1a:8d:c5:c1:31:a4:bc:f2:50:06:0f:6a:72:d8:d8:
92:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:3B:EF:37:BA:2B:BF:80:BE:5D:48:CE:B6:67:9C:67:71:32:91:2B
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:59:9c:6b:6e:62:1c:77:4d:fb:a7:29:ed:f0:60:c6:31:8b:
69:1e:66:b7:48:72:4b:f0:db:a0:13:a8:cf:2e:32:d9:f4:43:
b4:29:f3:40:56:b4:b5:40:ff:f8:22:08:c0:e6:b1:60:eb:01:
fa:71:16:13:5e:cb:e0:38:6f:38:6c:14:5c:03:71:cb:9f:72:
51:44:32:62:d6:7e:3c:44:7c:35:49:83:16:89:1a:8e:95:8a:
f2:19:89:0d:52:78:f6:9c:79:eb:40:e2:66:ff:12:f6:d1:1c:
31:c7:3c:84:4b:b4:44:93:07:eb:65:27:5c:0b:09:53:2f:b2:
e8:42:75:7f:ff:5d:22:a9:76:ff:43:8f:4b:c3:9b:65:e5:b3:
43:9f:37:7f:a7:04:bd:74:87:28:9f:ce:96:2a:8a:ae:be:7c:
cc:fe:a2:ef:4b:bf:05:97:7b:f9:39:5e:71:6d:3a:6f:b4:25:
3d:28:4a:18:be:5b:2a:37:37:e3:00:84:f9:68:e6:a9:d6:d9:
f1:b2:0a:e4:bb:46:ad:db:41:ce:13:8f:b8:3e:79:ce:e2:56:
ab:4d:4b:a9:de:45:25:dc:8b:b1:27:fe:92:d0:a8:3f:9b:bc:
4f:9b:b3:0d:49:16:e1:ee:ec:71:5d:ef:e4:24:e3:ce:46:cb:
29:1d:0b:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:24:12 2025 by rpki-client