Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: 5UKWKuKHdwgsWo7GwRLEK/rxV5EtWyyhfVvefnOiAvE=
Subject key identifier: EE:39:B6:90:F9:80:A6:87:C9:BF:FF:AC:B5:73:29:E0:16:14:77:88
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 0199FAA15099B02A92802F9AD4F713044AF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 02C0
Signing time: Sun 19 Oct 2025 04:01:39 +0000
Manifest this update: Sun 19 Oct 2025 04:01:39 +0000
Manifest next update: Mon 20 Oct 2025 04:01:39 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: Knyu6y9JzKfRtU5bMF3KYb2ltR6iRzWeXmPyUyvMJ8U=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:50:99:b0:2a:92:80:2f:9a:d4:f7:13:04:4a:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Oct 19 04:01:39 2025 GMT
Not After : Oct 20 04:01:39 2025 GMT
Subject: CN=ee39b690f980a687c9bfffacb57329e016147788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:98:1b:e1:c4:0a:1d:bd:c7:93:02:dd:cc:f6:
61:c1:0d:0f:e0:23:f9:4e:df:82:3a:a0:9d:71:62:
30:60:d4:db:1f:9e:41:04:c3:a2:80:99:c1:4d:a4:
d5:03:a8:29:a2:07:ad:d2:8b:c8:83:e7:1f:90:8a:
8f:7e:38:7e:83:9b:6b:42:bb:15:30:48:ce:7b:5a:
1e:8e:fd:21:6a:c9:f8:d9:89:58:d9:ba:93:00:9c:
00:63:32:26:8d:99:65:4e:fa:72:c7:eb:45:aa:0c:
4f:54:03:53:98:96:54:8f:92:96:b2:3b:c2:0c:4b:
50:bd:da:02:89:1c:0f:9c:ab:c3:27:43:b3:81:d0:
76:6b:1e:64:10:7c:83:22:e4:e6:9e:a9:0a:27:8a:
1a:41:fc:ba:77:54:a1:4b:eb:b7:bc:9f:ce:19:91:
85:9c:47:b7:ae:3a:27:e6:35:eb:aa:cc:08:40:bb:
18:31:bd:86:57:1e:28:6b:9a:c9:7b:aa:3f:ff:6f:
7f:f8:29:cd:ef:13:2e:e2:05:6c:a0:3f:15:0e:8b:
fb:d6:26:c7:c2:73:7c:c8:1b:db:59:b3:34:9f:43:
0b:a6:e5:70:a7:c7:fd:b7:f2:2e:72:78:75:0e:6c:
7a:25:84:cd:88:ac:47:be:32:81:58:28:0c:d2:5f:
da:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:39:B6:90:F9:80:A6:87:C9:BF:FF:AC:B5:73:29:E0:16:14:77:88
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:22:8f:42:31:b7:1d:9b:1c:31:66:4e:b5:38:fb:5a:07:9b:
86:8a:1f:b6:76:fe:cf:27:04:52:18:bb:ff:4d:6e:0a:dc:62:
75:7d:f2:2f:b8:74:cc:a1:12:32:57:51:b8:11:53:c5:95:63:
20:03:f2:73:24:18:f1:e5:fc:ee:93:87:ae:fe:80:a5:f8:ff:
08:95:a6:bd:df:69:ed:dc:d1:d2:20:f5:f2:2f:04:3c:d5:70:
53:e2:ac:1a:93:9e:dd:9b:c1:86:5f:19:63:4f:d0:ed:3a:6a:
b9:e5:d6:ef:1c:f2:da:f0:6b:a4:8a:39:52:ad:e1:91:1c:39:
28:91:d3:67:67:df:5c:fe:a6:82:fd:75:74:b0:96:0b:39:fe:
44:7f:f7:ad:c0:f2:1c:5c:cb:02:10:4d:20:b1:0c:6c:d2:1e:
de:cc:f0:d6:e8:3c:d6:47:f8:fa:8b:74:a4:f6:c0:4b:d1:64:
66:9f:0d:4b:ac:82:84:86:f5:31:04:3d:54:08:e1:84:9a:21:
85:dd:7a:e4:7b:08:3a:91:4a:22:d5:67:b6:42:d0:03:39:5f:
13:6c:fd:4a:40:f7:40:5e:71:e4:90:ad:b1:9a:12:29:ff:21:
0f:c4:c5:57:be:18:23:27:03:a2:02:db:5e:f8:6c:a4:22:ad:
c8:a1:70:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:20 2025 by rpki-client