Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: VeS7r2QlfJgehVwSPbmfWbLsIlW1tLY327XKWyltWHs=
Subject key identifier: 06:36:44:B5:7E:5C:04:44:FF:3E:61:9D:13:23:80:7F:DE:B5:82:13
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 0197B74546F72CF0308942C0A6FC0A48377B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 0194
Signing time: Sat 28 Jun 2025 16:00:59 +0000
Manifest this update: Sat 28 Jun 2025 16:00:59 +0000
Manifest next update: Sun 29 Jun 2025 16:00:59 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: UNbNTt6wEMLfSgNRJATNeen18B0E/Q/7oG/hdYmmkys=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:46:f7:2c:f0:30:89:42:c0:a6:fc:0a:48:37:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Jun 28 16:00:59 2025 GMT
Not After : Jun 29 16:00:59 2025 GMT
Subject: CN=063644b57e5c0444ff3e619d1323807fdeb58213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:91:ef:8e:c8:c7:86:90:db:e1:c0:de:12:fa:
b5:ea:a1:f1:11:65:e2:06:02:f9:84:44:09:b4:e6:
cb:2c:96:94:06:15:1a:32:bd:6f:b1:cd:e3:51:fa:
f1:74:39:50:57:52:8a:87:a7:a9:d9:92:9c:8d:69:
12:54:3d:a3:a2:8e:52:32:06:41:b1:58:27:ad:a0:
bd:65:2e:38:f9:ff:0f:31:f2:1e:7b:50:57:f7:cb:
9c:ca:57:16:91:96:eb:d5:d7:ce:62:6d:c5:0d:1b:
de:9d:55:47:df:21:c5:c6:a4:42:d7:1e:a2:d7:0a:
05:d5:db:42:9d:3e:a7:a0:c8:e1:ba:9c:55:86:7b:
2e:2a:d0:9b:30:1e:91:2b:5d:88:1d:5b:b3:f3:d5:
40:db:7e:74:e6:c7:cc:7e:f6:5e:86:e5:14:8f:62:
be:d3:f2:26:51:1f:f0:10:35:ad:ab:53:d6:a8:52:
84:31:43:04:0f:ad:a3:d2:be:8b:eb:1f:e4:7a:9f:
84:68:81:66:36:50:e0:43:c6:c7:7d:ae:51:0a:b7:
df:f3:08:7b:0f:b6:2f:43:e0:78:29:13:47:14:16:
6b:81:7c:bf:94:09:91:18:55:e7:16:d9:38:d4:a4:
f1:b2:e9:99:ce:2b:e3:9e:cb:91:1e:c2:04:9b:6e:
a0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:36:44:B5:7E:5C:04:44:FF:3E:61:9D:13:23:80:7F:DE:B5:82:13
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:0a:c1:e2:63:18:fd:bd:79:a6:bf:83:5f:1d:b0:b1:45:a4:
28:8a:a8:46:0d:9d:87:a8:ee:05:21:52:af:f8:b3:52:79:96:
56:95:3a:03:82:c6:3f:45:90:7e:db:42:53:af:85:02:2a:0c:
ca:6d:a4:73:3a:0e:db:72:17:87:e8:22:fd:04:80:3b:19:43:
b3:f9:f9:dd:a9:1e:85:1a:7f:0c:6f:c9:0c:dd:43:c0:8e:b5:
42:1d:76:57:80:62:bb:90:27:66:9a:cf:ae:aa:e3:2f:e7:fe:
46:2f:91:29:4f:03:d8:21:91:dc:37:7c:98:a5:c2:67:3e:f8:
1a:9b:5e:63:6e:fa:43:20:ee:1c:3e:69:35:7a:53:af:5b:a1:
76:14:25:cf:12:45:9a:df:ad:13:87:bd:22:62:b9:ee:58:c7:
6c:14:8f:c8:09:f6:cc:3a:cb:70:0a:ae:22:0e:a1:78:8d:fc:
22:5e:0c:8a:39:21:39:04:9d:6b:86:88:45:ee:0e:d2:8c:12:
18:c5:05:ff:91:f8:0c:55:98:ec:4a:8e:73:13:f4:c8:97:ec:
fa:34:50:e6:f1:19:89:5b:cd:70:30:71:4e:e6:7e:cf:ba:00:
83:1f:b1:67:73:a7:7e:c6:a9:77:07:8c:82:87:8a:fc:9d:c8:
23:47:9d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:59 2025 by rpki-client