Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: pz8H0icCljEewdKITaJ/mgt2hKFf3OGgHGgZlRrvAM0=
Subject key identifier: 19:C9:AE:0B:24:F7:50:6B:F9:61:B2:B6:5F:62:DE:AE:BB:E0:4C:DC
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 019E20239CEE9A01A3F6E8D40EE1AE11C544
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 04EA
Signing time: Wed 13 May 2026 07:01:05 +0000
Manifest this update: Wed 13 May 2026 07:01:05 +0000
Manifest next update: Thu 14 May 2026 07:01:05 +0000
Files and hashes: 1: 1-CvN4vL-gOumnUiw8kqYnlyhsGg.roa (hash: j8Mlx4J1MdSRge54lSRG985DTWF3u6cnasrSWFkZ6ac=)
2: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: wceuCjjK2hXkebxhDGkaIf/y1GU9jPYIq8FxrZBUJjQ=)
3: t25FS3p7VfnEPbzfHv-DyXEln4A.roa (hash: 71ZKU18culvAhzrOg6y8Lw3IENicOoZIJiAlIOqPr8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:9c:ee:9a:01:a3:f6:e8:d4:0e:e1:ae:11:c5:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: May 13 07:01:05 2026 GMT
Not After : May 14 07:01:05 2026 GMT
Subject: CN=19c9ae0b24f7506bf961b2b65f62deaebbe04cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0f:b7:b3:74:9c:75:97:99:ad:49:72:41:36:
4f:68:40:0a:49:6b:5c:09:fc:e6:50:97:f3:2a:0a:
f5:51:72:89:70:44:0f:ba:45:e0:72:7d:69:c6:77:
82:bf:25:b4:b3:b3:18:e1:0b:93:b3:74:2e:84:82:
f8:ce:0a:37:d5:02:50:82:24:a4:54:77:44:01:ab:
7f:41:98:17:71:41:8b:c3:4c:42:f8:25:83:8d:bb:
6f:3a:d7:a2:7a:ae:7f:ed:3a:51:6f:1d:1d:93:ef:
a1:1f:66:e8:46:02:3f:60:03:ef:10:63:de:ad:c4:
c9:b0:5a:34:57:2f:f4:c5:f1:3f:5b:f8:71:cc:71:
7c:59:06:f4:e0:31:87:72:9e:a4:e7:2d:ad:67:b3:
2f:69:92:51:83:28:cb:58:95:82:01:04:c4:89:84:
ba:19:74:a0:83:20:ee:b0:97:ce:6a:b5:26:5f:af:
00:c2:ce:54:df:fa:29:9c:e1:8c:f2:f0:f8:6c:61:
5a:af:86:c3:2f:cf:f1:2a:06:23:21:07:c8:6b:08:
55:c7:a9:c4:36:be:e4:ed:99:16:0c:84:ab:c4:d8:
5d:ad:49:49:42:b6:b0:80:8b:a0:14:db:33:49:35:
c8:ec:0e:6e:67:f2:62:46:e1:8f:ca:3a:87:02:06:
36:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C9:AE:0B:24:F7:50:6B:F9:61:B2:B6:5F:62:DE:AE:BB:E0:4C:DC
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:38:96:a3:4a:51:e2:ac:40:c9:66:fa:24:69:e2:18:d9:01:
cb:ea:ac:00:56:f2:1f:0a:a6:bc:d0:83:ac:0e:e5:c7:41:5d:
28:77:ac:ad:8e:07:ef:f6:d7:4d:85:9f:4c:13:32:09:94:92:
98:bc:78:ac:6c:14:69:e1:6b:30:66:97:e7:20:45:e2:ee:bc:
a5:ba:27:34:b8:c1:6b:fd:5b:e1:c0:c5:53:b0:10:58:a1:04:
09:13:88:2f:f6:f2:21:f0:24:5b:86:71:6e:13:3e:80:b8:a1:
90:77:c0:f4:e8:5c:67:db:9b:a4:6b:b7:dc:3b:a2:6b:e8:27:
93:97:c8:e2:c0:9f:a7:0a:e9:cf:59:d1:7e:3f:61:3b:91:22:
38:85:2d:8c:5d:5d:57:03:1a:f2:60:28:b2:d8:71:31:c9:90:
d9:94:54:40:2e:32:b0:97:9e:26:38:85:fe:11:de:45:9f:84:
60:b9:6b:72:f2:82:03:67:99:a1:92:c7:d4:d6:2b:2d:df:42:
f8:3a:fa:1b:74:29:dd:f5:3d:f6:a4:4c:ef:36:a3:2b:0d:c0:
ee:90:32:c3:b3:6b:0c:f4:d5:8c:2e:c6:58:93:e0:94:b7:bb:
80:9b:ad:17:02:f7:66:b7:7f:d4:99:d5:f6:d1:3c:b0:26:47:
c3:f6:89:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:21:10 2026 by rpki-client