Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: Mu3jxqlZpwQxZG1l1+miU44Ff75/TXF8XNGDH+6v2Xg=
Subject key identifier: 1B:67:FB:32:7F:E6:15:3E:99:E3:77:17:05:91:C5:5A:19:1E:39:AB
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 0197474284CB4027890B172F51BBBC92EF39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 015A
Signing time: Fri 06 Jun 2025 22:00:31 +0000
Manifest this update: Fri 06 Jun 2025 22:00:31 +0000
Manifest next update: Sat 07 Jun 2025 22:00:31 +0000
Files and hashes: 1: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: XMZtZ7pBRpRBwfBwWJuKFXw2D/WLF0kHL29sXJtGmD0=)
2: b1pNAkro7aHA3V-NejpmqoURwAk.roa (hash: spfghQnj6hS6URb2NmqLLwW6s6Py+YxHJ+ws3VJ1shQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:42:84:cb:40:27:89:0b:17:2f:51:bb:bc:92:ef:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Jun 6 22:00:31 2025 GMT
Not After : Jun 7 22:00:31 2025 GMT
Subject: CN=1b67fb327fe6153e99e377170591c55a191e39ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b8:64:6b:c9:02:ea:d9:ac:de:83:c3:7c:1c:
b8:88:3d:9c:e8:a5:c8:45:f4:2f:41:90:4e:37:16:
1e:08:ee:19:d6:80:32:52:88:91:2c:b8:e6:e4:4e:
8b:5b:5f:e1:8f:f1:0e:85:99:13:cc:7c:d5:97:59:
a5:e2:51:30:86:56:f8:c7:d6:69:26:0a:dd:44:e5:
dd:f6:3f:89:be:56:8a:38:90:e6:da:75:d2:3d:eb:
d8:ea:0c:c4:65:fe:a9:02:38:0a:9f:5a:eb:f8:d5:
fe:62:53:47:b4:95:e0:bc:3a:54:b8:d2:46:bc:95:
a9:3e:7b:c9:9c:f0:57:34:54:8d:87:14:c5:5b:2e:
23:93:b5:fc:9b:3a:4c:79:a0:c2:db:a8:7c:2b:56:
0d:25:95:c5:47:1b:a4:75:84:f6:cc:46:0f:5c:18:
b5:d3:b4:10:0a:96:7e:9d:a5:55:30:50:78:b1:70:
b7:7a:71:d7:9e:e5:45:d0:72:23:da:7e:19:48:45:
81:9c:36:0a:64:e3:e4:2e:14:39:0d:a6:b6:5b:48:
70:ec:81:fa:ec:d3:9d:1f:72:8f:9c:05:cb:63:af:
33:d0:c1:a3:48:1b:b0:33:07:24:2b:c2:6d:d2:28:
9f:eb:97:55:0a:52:79:2d:05:a1:be:6c:82:9a:c9:
a6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:67:FB:32:7F:E6:15:3E:99:E3:77:17:05:91:C5:5A:19:1E:39:AB
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:bd:db:df:e7:a6:e8:e7:5a:1f:d9:ce:e4:80:27:19:22:2d:
39:81:9d:ff:37:df:e1:b3:38:26:21:66:ce:22:10:50:f5:3b:
26:b9:b7:86:03:5b:4a:af:e0:eb:09:39:c7:6e:d5:1c:7e:6c:
cc:2c:5f:da:aa:63:3c:ad:4e:9f:c3:3b:75:6b:e7:be:b9:a5:
ac:b0:c5:0d:c4:a7:48:89:dc:03:f2:84:9d:c2:1f:ea:58:6d:
12:09:e9:22:2d:a5:ae:9f:2e:fb:b1:95:db:b3:5c:b7:8c:ef:
98:79:cd:ec:13:19:e6:05:0f:54:9e:30:fc:75:9c:5e:57:68:
41:5d:e7:eb:91:a8:fb:d3:27:7a:3d:d4:90:68:74:43:b9:9e:
f0:1a:23:28:39:63:aa:d4:0f:69:5b:7f:0e:83:63:53:74:da:
54:32:ef:8b:80:f8:ad:b2:74:d1:d9:84:56:32:2d:74:67:ab:
f7:fb:39:85:4a:1b:f1:55:f8:09:39:cb:fb:81:c8:fb:a0:34:
0c:4f:6b:b8:c1:b0:2d:64:79:5c:36:71:29:0d:e2:d4:4b:18:
47:6a:00:af:98:4e:71:4e:39:31:12:b1:2a:17:a3:cb:21:71:
09:74:7c:f8:d2:6f:42:8d:c7:37:5c:7c:cb:fb:98:0f:f7:54:
aa:f6:d3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:28:33 2025 by rpki-client