Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: K1ZMDKfljattO/asZk7tZq2tGJ8aFXeoSJXKcqCGNLg=
Subject key identifier: F1:85:F1:4E:78:F2:D1:32:67:36:30:18:36:3A:D3:5E:1E:34:35:7D
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 019A006C23696AF35BDED70B01DB6F6A3844
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 02C3
Signing time: Mon 20 Oct 2025 07:01:18 +0000
Manifest this update: Mon 20 Oct 2025 07:01:18 +0000
Manifest next update: Tue 21 Oct 2025 07:01:18 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: ZcHD2vD5lh7o8hXP/vOh9mGsSM05GpWsMyu/9IjNGto=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6c:23:69:6a:f3:5b:de:d7:0b:01:db:6f:6a:38:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Oct 20 07:01:18 2025 GMT
Not After : Oct 21 07:01:18 2025 GMT
Subject: CN=f185f14e78f2d13267363018363ad35e1e34357d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:05:ef:9a:62:b2:72:49:d4:65:7d:b1:d7:76:
08:5b:7d:f7:a6:0e:c3:08:15:c4:d3:02:a8:be:1c:
61:2b:dd:df:aa:50:55:b5:33:6d:a8:44:22:cf:c5:
34:9c:cb:d4:22:50:84:56:f6:58:85:2b:90:fb:c9:
80:9b:f2:6e:91:c4:7e:a6:32:f6:af:f1:df:c3:0f:
a3:36:59:b1:cf:e0:a4:fc:24:85:15:a0:aa:47:d3:
81:d5:d2:99:de:62:68:8d:c4:2c:84:c2:b4:c9:a2:
06:b6:a5:fc:f0:6c:c2:1a:88:0a:89:14:1a:1b:75:
64:c0:04:d5:bd:53:0d:92:d9:36:e4:90:d3:40:57:
e3:a8:eb:ed:92:d4:ac:34:c8:cc:a8:9e:9c:3e:0f:
24:87:98:be:81:d6:77:54:31:ee:84:5c:01:66:f4:
84:f5:6f:b6:4e:6c:30:e1:15:39:57:3e:c2:f6:85:
d2:4c:59:91:55:a0:74:ca:30:ce:f7:b2:5b:66:77:
91:57:79:3e:75:80:5d:0e:3f:9d:1f:2f:04:82:47:
5a:5d:7a:0f:7d:a8:40:09:90:f1:29:db:c2:96:dd:
8b:e2:de:a0:3c:5f:ca:fb:07:4a:04:cb:65:2d:e6:
eb:9e:0e:2d:17:7e:08:f3:e2:f7:e4:dc:48:44:03:
ac:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:85:F1:4E:78:F2:D1:32:67:36:30:18:36:3A:D3:5E:1E:34:35:7D
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:f9:88:77:08:b9:bd:b4:af:ae:8d:f3:68:51:f4:13:db:0a:
df:ed:0b:12:f0:69:bd:78:a1:0b:fe:f4:6b:03:e1:e3:35:f6:
3a:00:17:fd:5d:18:54:41:57:70:16:eb:ef:5b:68:67:90:78:
19:a3:b5:25:97:31:4d:64:9a:d5:5b:c5:9a:a7:f7:c1:80:1d:
c6:29:99:be:e9:43:0c:d1:f2:f7:09:c4:73:76:cb:80:f2:dd:
a0:cc:12:7b:7b:bc:37:e0:21:1d:14:8e:bb:bd:63:a5:fd:40:
d2:d5:0b:00:ef:fd:6a:18:2a:57:cc:f0:0e:0d:81:d7:d2:be:
fa:ac:8b:8d:bb:c6:df:c5:0b:56:fb:a0:04:2d:21:d6:f6:66:
73:e9:77:95:50:11:25:0d:4f:58:74:54:2a:6a:d7:db:12:68:
34:34:41:e8:2e:a1:f5:5c:fc:27:33:7f:5c:52:5a:c7:45:ea:
80:d3:75:fe:3f:c2:a2:87:f1:87:0e:d0:51:1b:ce:20:27:4c:
be:87:e1:39:fa:5e:2f:c5:44:3e:0b:13:f0:25:1b:cf:81:3d:
7c:bb:90:3b:86:d5:99:75:3a:f1:3e:51:48:ea:84:da:3f:88:
5b:22:5b:ca:90:ba:2f:00:65:d7:c5:5a:5e:79:21:7f:e8:f2:
7c:cc:f0:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:59:43 2025 by rpki-client