Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
File: ocG-CYGk51dsVi9vCeZcF8GA48o.mft (raw, json)
Hash identifier: HvQFBIK7qDdHnNDdt6WSkWwjUsdsErNykY4P6eO+jiQ=
Subject key identifier: 89:90:A7:42:C5:23:5D:D2:C9:46:72:2D:77:3D:20:42:DE:51:21:31
Authority key identifier: A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
Certificate issuer: /CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Certificate serial: 0199233119EFF052FC2C34D0C3E221FB0297
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 08:00:44 +0000
Manifest this update: Sun 07 Sep 2025 08:00:44 +0000
Manifest next update: Mon 08 Sep 2025 08:00:44 +0000
Files and hashes: 1: Nmiqzb5OKDKFPEDZ9AhOwfzW5jQ.roa (hash: 16HSNwP1Wfx8pQJ0EjO/70dnXDCvO8XmFYI9/xms5GY=)
2: ocG-CYGk51dsVi9vCeZcF8GA48o.crl (hash: uUTPiINGeYFsm5JnI4eOBqTFjXbI3cfh5dLJz9WtHCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:19:ef:f0:52:fc:2c:34:d0:c3:e2:21:fb:02:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Validity
Not Before: Sep 7 08:00:44 2025 GMT
Not After : Sep 8 08:00:44 2025 GMT
Subject: CN=8990a742c5235dd2c946722d773d2042de512131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:1c:8f:f4:20:6e:6d:cf:bf:d1:6f:33:63:
59:76:d2:14:7f:97:19:b0:51:44:5c:c9:51:fd:2f:
5c:5d:70:e2:39:8e:50:96:cb:1f:ae:e3:05:d4:33:
7a:b1:50:08:d5:4c:4b:8b:15:2a:50:d8:2d:75:a1:
90:55:42:da:df:89:07:65:5d:f9:40:cc:dc:8c:d4:
86:82:d9:99:e7:52:07:e6:6d:3f:0b:52:e2:02:d5:
cf:e1:50:2c:b3:b7:c9:07:5b:a6:d7:e2:38:c4:60:
d9:22:e3:63:36:32:c7:65:18:24:f8:3e:92:a3:e7:
8e:ce:c8:52:11:26:e0:0a:73:ad:b7:80:64:f6:91:
87:1c:9a:86:5a:fc:3f:50:8a:b5:2a:f4:7b:81:15:
f4:cb:a0:3b:c5:6a:fc:4e:7a:df:3d:ed:21:d0:15:
f9:1c:25:6e:70:69:72:45:15:f4:a8:2f:ec:b7:d9:
1f:41:58:1b:6e:d1:a9:58:06:7f:15:fa:2d:37:ca:
99:52:ec:78:3f:39:9c:82:7d:9c:aa:9b:89:88:6d:
cb:80:ed:e7:d8:42:bf:60:2c:74:5c:61:88:4c:62:
e3:28:46:bd:98:91:af:de:26:9f:29:be:14:11:59:
ea:43:4a:dc:f6:3d:15:b3:a7:0f:1a:f2:07:40:4b:
f2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:90:A7:42:C5:23:5D:D2:C9:46:72:2D:77:3D:20:42:DE:51:21:31
X509v3 Authority Key Identifier:
keyid:A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:4a:b4:87:6b:89:f1:1d:80:7c:e7:9e:0e:3b:46:29:cf:6f:
c5:a1:79:a5:c3:ef:87:11:48:76:02:06:5e:55:f1:94:95:49:
46:52:0f:cb:60:cf:08:9b:12:6e:a7:e0:7e:1e:6c:8e:a1:2f:
21:c5:dc:c4:62:e0:db:d8:c1:95:8a:ad:16:de:65:0a:21:f0:
56:2d:38:06:d3:57:c6:8f:34:2f:36:ed:8d:54:0c:bd:17:00:
96:0b:ef:00:52:70:4b:61:d1:8c:bd:63:ce:30:98:d0:90:d1:
a2:1d:87:30:51:99:fb:ca:7c:64:c9:9c:69:c1:4e:2f:24:24:
71:89:15:f7:01:f9:5f:1e:ee:22:d0:7e:20:f1:3e:56:80:8a:
49:a9:51:83:ac:ac:58:8c:9e:d1:44:0a:86:a9:89:ec:86:77:
d3:54:d9:d2:46:b2:81:34:ba:b2:b9:bd:a3:91:a9:12:79:44:
ce:3b:91:fe:f1:f0:9b:c6:02:3f:91:d0:1b:46:37:6b:7a:a5:
b9:89:0c:dd:8c:0c:07:8e:b8:29:d3:63:b3:2a:90:d7:7b:b2:
5b:f9:91:d5:3c:f2:fd:82:d3:90:e1:a7:66:f2:23:9e:7c:f2:
4c:ce:0f:9c:68:ec:67:9b:fd:7b:7f:30:d7:9d:e4:4d:a2:46:
97:2e:70:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:35 2025 by rpki-client