Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
File: ocG-CYGk51dsVi9vCeZcF8GA48o.mft (raw, json)
Hash identifier: YyvNxC/C71R7cZwRYYIjDFm2lRd7liJXCL67lj//LSo=
Subject key identifier: 5F:AA:50:36:B9:1A:4F:5F:46:5E:91:6C:0D:99:43:24:8B:95:C4:2C
Authority key identifier: A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
Certificate issuer: /CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Certificate serial: 01964556DD8687A50957E04229E7AF2D7222
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
Manifest number: 14F8
Signing time: Thu 17 Apr 2025 20:00:42 +0000
Manifest this update: Thu 17 Apr 2025 20:00:42 +0000
Manifest next update: Fri 18 Apr 2025 20:00:42 +0000
Files and hashes: 1: Nmiqzb5OKDKFPEDZ9AhOwfzW5jQ.roa (hash: 16HSNwP1Wfx8pQJ0EjO/70dnXDCvO8XmFYI9/xms5GY=)
2: ocG-CYGk51dsVi9vCeZcF8GA48o.crl (hash: btJeEFlumvYqa8Tf+PjXZPMzixhRKacV2Zzl8OvN6s0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:dd:86:87:a5:09:57:e0:42:29:e7:af:2d:72:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Validity
Not Before: Apr 17 20:00:42 2025 GMT
Not After : Apr 18 20:00:42 2025 GMT
Subject: CN=5faa5036b91a4f5f465e916c0d9943248b95c42c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:26:1b:c7:b9:49:cf:9f:c7:29:80:b0:16:3f:
3a:59:e1:57:22:2d:e0:c1:30:8c:45:68:59:aa:44:
6a:c5:5c:88:eb:5f:61:be:11:47:e1:d8:48:fc:cd:
d3:5f:65:ab:e0:91:b4:f8:44:09:ea:34:70:bd:33:
f0:72:82:67:f9:90:cc:45:52:3d:f3:22:4b:e7:98:
4c:86:9f:5d:43:58:dd:0e:35:99:65:db:7d:49:65:
f9:36:14:ec:9f:51:75:13:fa:9c:5b:72:94:52:ca:
9d:c0:52:46:4c:06:2c:e1:79:81:ee:b1:a6:02:f4:
a0:b3:5e:2b:01:b0:f0:1b:4f:59:28:e3:c3:fd:62:
21:67:76:ba:f0:54:80:ff:65:8f:20:10:aa:93:09:
df:54:bf:0e:79:b3:8e:40:a3:25:48:74:4b:f2:6b:
fe:72:9f:96:e2:a7:d4:72:df:c7:6a:bf:cc:7e:25:
1b:72:db:10:e8:a1:1f:a1:19:39:8f:34:3e:12:c1:
24:73:96:33:21:81:91:75:51:9a:31:3b:8d:ee:65:
17:87:f8:e3:86:4c:33:c0:da:7b:50:47:25:0f:21:
dd:b8:5b:29:c5:36:f5:d1:a9:5b:08:23:6b:37:fe:
99:5d:01:1f:33:51:a9:9c:02:67:91:8d:a8:fb:e6:
68:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:AA:50:36:B9:1A:4F:5F:46:5E:91:6C:0D:99:43:24:8B:95:C4:2C
X509v3 Authority Key Identifier:
keyid:A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:60:13:3f:79:ce:a3:cf:a1:c1:8e:c7:41:62:c3:1e:34:a2:
98:0c:95:78:99:55:86:6b:f1:d9:be:ce:24:b4:a7:ff:f8:f2:
3b:91:1b:b9:c0:cd:36:9b:bc:b2:1d:c0:a1:00:e4:fb:f1:10:
2c:35:cd:d9:5c:ef:d3:6d:9f:da:b4:be:12:be:de:5c:ee:c4:
0a:08:ae:12:02:96:f8:6d:ba:83:03:80:86:6b:a1:e8:bd:4a:
80:9b:52:f3:6c:54:8a:31:67:22:5d:76:23:8e:7c:75:ee:72:
86:c9:41:26:5b:85:f2:b2:b5:64:85:6a:98:24:e9:f6:e9:88:
cf:03:56:20:2f:b8:eb:46:e5:17:bf:b1:bc:7f:15:74:26:f2:
7b:d8:c1:79:8d:66:9a:c0:11:0b:df:92:2d:30:48:51:e2:34:
d9:12:6c:5d:5f:36:a0:4f:38:f6:ff:84:79:cb:5c:9b:76:d7:
97:21:bc:8c:20:b4:be:a3:05:22:3e:fd:60:4d:d2:83:03:32:
9c:b8:2d:e0:2a:10:f4:74:d1:9a:2d:48:c6:6f:1c:ea:39:d7:
ed:c4:14:34:d5:50:d3:cd:1c:e2:fd:46:d0:f8:b0:45:35:f8:
97:aa:f0:42:35:36:7f:73:26:3a:7c:fc:48:71:96:97:82:30:
b3:f4:d1:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZFVt2Gh6UJV+BCKeevLXIiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExYzFiZTA5ODFhNGU3NTc2YzU2MmY2ZjA5ZTY1YzE3YzE4
MGUzY2EwHhcNMjUwNDE3MjAwMDQyWhcNMjUwNDE4MjAwMDQyWjAzMTEwLwYDVQQD
Eyg1ZmFhNTAzNmI5MWE0ZjVmNDY1ZTkxNmMwZDk5NDMyNDhiOTVjNDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyYbx7lJz5/HKYCwFj86WeFXIi3g
wTCMRWhZqkRqxVyI619hvhFH4dhI/M3TX2Wr4JG0+EQJ6jRwvTPwcoJn+ZDMRVI9
8yJL55hMhp9dQ1jdDjWZZdt9SWX5NhTsn1F1E/qcW3KUUsqdwFJGTAYs4XmB7rGm
AvSgs14rAbDwG09ZKOPD/WIhZ3a68FSA/2WPIBCqkwnfVL8OebOOQKMlSHRL8mv+
cp+W4qfUct/Har/MfiUbctsQ6KEfoRk5jzQ+EsEkc5YzIYGRdVGaMTuN7mUXh/jj
hkwzwNp7UEclDyHduFspxTb10albCCNrN/6ZXQEfM1GpnAJnkY2o++ZozQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+qUDa5Gk9fRl6RbA2ZQySLlcQsMB8GA1UdIwQY
MBaAFKHBvgmBpOdXbFYvbwnmXBfBgOPKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2NHLUNZR2s1MWRzVmk5dkNlWmNGOEdBNDhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi84MWU1YTUtYWMzOS00M2MxLTg3MmYt
OThkZmMyZWU2ZTBjLzEvb2NHLUNZR2s1MWRzVmk5dkNlWmNGOEdBNDhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi84MWU1YTUtYWMzOS00M2MxLTg3MmYtOThkZmMyZWU2ZTBj
LzEvb2NHLUNZR2s1MWRzVmk5dkNlWmNGOEdBNDhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjGATP3nO
o8+hwY7HQWLDHjSimAyVeJlVhmvx2b7OJLSn//jyO5EbucDNNpu8sh3AoQDk+/EQ
LDXN2Vzv022f2rS+Er7eXO7ECgiuEgKW+G26gwOAhmuh6L1KgJtS82xUijFnIl12
I458de5yhslBJluF8rK1ZIVqmCTp9umIzwNWIC+460blF7+xvH8VdCbye9jBeY1m
msARC9+SLTBIUeI02RJsXV82oE849v+Eectcm3bXlyG8jCC0vqMFIj79YE3SgwMy
nLgt4CoQ9HTRmi1Ixm8c6jnX7cQUNNVQ080c4v1G0PiwRTX4l6rwQjU2f3MmOnz8
SHGWl4Iws/TRBA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:37 2025 by rpki-client