Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: gIcKc1KRBbzfhCB5evR6AuKStRYL+vX4eqZEdG6QrC4=
Subject key identifier: 63:26:38:18:D0:90:C6:D8:0B:98:FD:8E:30:D0:92:4F:D5:DA:E4:B8
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 019918AD4DE6BC1F5A1D4C1DD91F52EF43AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 024B
Signing time: Fri 05 Sep 2025 07:00:34 +0000
Manifest this update: Fri 05 Sep 2025 07:00:34 +0000
Manifest next update: Sat 06 Sep 2025 07:00:34 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: rI98oOJFETSD/yQWys5SWMF+DmTSzKl4EPRsaaSK/yQ=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 07:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:ad:4d:e6:bc:1f:5a:1d:4c:1d:d9:1f:52:ef:43:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Sep 5 07:00:34 2025 GMT
Not After : Sep 6 07:00:34 2025 GMT
Subject: CN=63263818d090c6d80b98fd8e30d0924fd5dae4b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:fb:b9:07:c4:00:96:dc:98:f4:a7:bf:02:
35:fc:d2:d7:9b:fd:87:8b:2d:e3:be:90:ff:7e:28:
95:0b:9b:01:65:e1:c1:ab:41:71:14:06:3b:b6:be:
de:17:87:e6:9f:0e:a5:83:c3:79:c4:81:ff:54:ae:
2d:7b:63:3b:f8:53:91:12:a5:33:a5:44:30:85:04:
79:6b:e9:d9:21:1d:40:e9:c0:86:3b:1f:6d:5a:f9:
c3:2f:1b:83:be:39:27:07:86:a2:6f:36:1f:fa:86:
37:f7:8b:42:ba:e1:99:c4:6b:41:23:1b:d1:e9:15:
cd:b6:92:48:60:b1:3b:b1:4a:3c:64:7d:4d:5c:b6:
8f:f5:c0:b2:43:78:73:3d:6b:08:bb:1b:17:35:62:
ec:2e:83:23:58:80:24:dc:8b:b2:09:38:b3:33:55:
1e:56:11:75:44:a3:6f:ea:99:af:de:4a:ef:e1:29:
f2:f0:d8:51:11:d3:a4:ac:b1:9e:6e:20:9c:ee:47:
87:ba:53:9f:a0:da:c0:66:45:ab:c0:ce:53:90:28:
ce:d5:29:7b:b2:73:1e:cf:57:42:4c:29:d6:1a:8f:
6c:f2:19:a5:30:80:ce:e1:57:51:f2:e3:91:5a:8d:
46:3a:ce:ee:a4:a0:07:fc:bd:ea:5f:30:2c:cf:c3:
9b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:26:38:18:D0:90:C6:D8:0B:98:FD:8E:30:D0:92:4F:D5:DA:E4:B8
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:fa:aa:b2:a1:94:fb:35:a5:3e:f7:1f:7d:0a:6f:08:24:fd:
36:9b:83:84:2f:32:38:a2:b9:d4:d1:87:d4:4d:d0:50:24:9e:
bf:8c:70:7a:00:72:1b:c8:21:7e:90:00:68:07:8b:5b:15:82:
f2:d3:a1:a6:9d:c8:bf:e0:22:b8:c9:72:4d:c2:18:e8:8e:13:
30:c0:a0:9c:5d:a1:0e:f9:08:1e:60:94:d6:f4:f5:8f:0a:c7:
c2:15:68:65:e8:bc:4d:b5:7e:66:06:08:4c:ba:a2:34:9b:56:
3c:13:ef:a1:f0:83:38:64:66:2e:66:8c:c8:2c:4d:d7:34:2d:
65:48:3c:bb:3f:b7:ea:95:a2:75:be:d0:94:03:5c:38:64:bc:
53:f7:b5:6a:a1:ee:24:61:ac:91:48:44:cd:ac:84:56:4b:cf:
34:b7:b0:21:78:a8:1a:ce:83:fd:dc:1c:37:a6:ff:53:fc:91:
7b:86:9d:1f:f2:6d:99:84:15:d5:f2:0d:12:14:24:a4:a6:17:
41:49:c2:de:b4:ee:e1:3f:19:40:6d:4d:f6:6f:7f:4a:1a:f1:
73:9b:13:32:8b:d9:fb:f5:b2:82:3d:9d:3b:43:43:78:34:62:
1c:c0:ed:e2:f9:13:1f:12:a4:1f:1f:54:c6:1a:b4:9e:f1:7a:
a2:2d:5c:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYrU3mvB9aHUwd2R9S70OqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MmY4NmYyZGJkMDc3NmM0ZTUxOWM5YzlhZTRmYWQwNDI2
ZjM5ZmYwHhcNMjUwOTA1MDcwMDM0WhcNMjUwOTA2MDcwMDM0WjAzMTEwLwYDVQQD
Eyg2MzI2MzgxOGQwOTBjNmQ4MGI5OGZkOGUzMGQwOTI0ZmQ1ZGFlNGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+b7uQfEAJbcmPSnvwI1/NLXm/2H
iy3jvpD/fiiVC5sBZeHBq0FxFAY7tr7eF4fmnw6lg8N5xIH/VK4te2M7+FOREqUz
pUQwhQR5a+nZIR1A6cCGOx9tWvnDLxuDvjknB4aibzYf+oY394tCuuGZxGtBIxvR
6RXNtpJIYLE7sUo8ZH1NXLaP9cCyQ3hzPWsIuxsXNWLsLoMjWIAk3IuyCTizM1Ue
VhF1RKNv6pmv3krv4Sny8NhREdOkrLGebiCc7keHulOfoNrAZkWrwM5TkCjO1Sl7
snMez1dCTCnWGo9s8hmlMIDO4VdR8uORWo1GOs7upKAH/L3qXzAsz8ObsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGMmOBjQkMbYC5j9jjDQkk/V2uS4MB8GA1UdIwQY
MBaAFDgvhvLb0HdsTlGcnJrk+tBCbzn/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8wNDc0OGQtOTIzYi00Mjg0LTk2Mjgt
MjAzNTYzZjg0NWJiLzEvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8wNDc0OGQtOTIzYi00Mjg0LTk2MjgtMjAzNTYzZjg0NWJi
LzEvT0MtRzh0dlFkMnhPVVp5Y211VDYwRUp2T2Y4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtPqqsqGU
+zWlPvcffQpvCCT9NpuDhC8yOKK51NGH1E3QUCSev4xwegByG8ghfpAAaAeLWxWC
8tOhpp3Iv+AiuMlyTcIY6I4TMMCgnF2hDvkIHmCU1vT1jwrHwhVoZei8TbV+ZgYI
TLqiNJtWPBPvofCDOGRmLmaMyCxN1zQtZUg8uz+36pWidb7QlANcOGS8U/e1aqHu
JGGskUhEzayEVkvPNLewIXioGs6D/dwcN6b/U/yRe4adH/JtmYQV1fINEhQkpKYX
QUnC3rTu4T8ZQG1N9m9/Shrxc5sTMovZ+/Wygj2dO0NDeDRiHMDt4vkTHxKkHx9U
xhq0nvF6oi1cvg==
-----END CERTIFICATE-----
Generated at Fri Sep 5 11:27:19 2025 by rpki-client