Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
File: OC-G8tvQd2xOUZycmuT60EJvOf8.mft (raw, json)
Hash identifier: Qb+LHsbJiaiw3+BN2R6mPKh+LWBrrZ/kuHB45mPK1gQ=
Subject key identifier: 59:B6:C2:3F:F7:AF:FA:23:A7:5F:63:3C:FA:2E:C8:7E:08:E2:BD:96
Authority key identifier: 38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
Certificate issuer: /CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Certificate serial: 019E8E372EC0EACE032BE6E3E63A7F2AAD3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
Manifest number: 0523
Signing time: Wed 03 Jun 2026 16:00:41 +0000
Manifest this update: Wed 03 Jun 2026 16:00:41 +0000
Manifest next update: Thu 04 Jun 2026 16:00:41 +0000
Files and hashes: 1: 1-CvN4vL-gOumnUiw8kqYnlyhsGg.roa (hash: j8Mlx4J1MdSRge54lSRG985DTWF3u6cnasrSWFkZ6ac=)
2: OC-G8tvQd2xOUZycmuT60EJvOf8.crl (hash: 5E84S84OTfoHNPRwSkgISz2FSyJhFl1Sc+jy97etc0Q=)
3: t25FS3p7VfnEPbzfHv-DyXEln4A.roa (hash: 71ZKU18culvAhzrOg6y8Lw3IENicOoZIJiAlIOqPr8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 13:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:37:2e:c0:ea:ce:03:2b:e6:e3:e6:3a:7f:2a:ad:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=382f86f2dbd0776c4e519c9c9ae4fad0426f39ff
Validity
Not Before: Jun 3 16:00:41 2026 GMT
Not After : Jun 4 16:00:41 2026 GMT
Subject: CN=59b6c23ff7affa23a75f633cfa2ec87e08e2bd96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4e:57:75:69:a3:5d:80:46:2a:b2:3d:50:86:
28:9b:28:3d:cb:d9:ec:9b:93:8a:84:da:8e:f8:de:
60:d4:1a:ff:5d:a3:5c:12:e0:a2:6e:b4:d4:63:3c:
e8:28:9f:62:78:9a:64:9c:9b:1c:39:a1:f3:09:a7:
50:78:b3:8a:06:14:20:51:ee:eb:08:1c:74:4a:d5:
e7:c3:c8:20:35:11:eb:c6:6b:d3:12:b2:ff:a0:33:
b2:6a:74:69:b9:06:51:9a:0e:57:f9:35:6b:d1:c8:
21:1c:25:2a:96:5f:21:12:87:fd:ce:58:9e:d6:80:
0c:f8:d6:a5:7d:1d:5a:11:0b:ec:23:58:f4:c6:ea:
21:5a:d7:17:90:95:97:50:95:e9:d6:c1:fd:1c:7c:
8f:a2:6f:da:54:a4:d2:48:9c:91:b7:d1:d3:22:e5:
71:e2:81:cf:90:dc:bf:6c:92:d5:4c:74:7f:be:35:
ec:23:f8:bb:13:6d:9e:e9:82:86:a0:70:76:14:69:
c4:a6:54:01:02:60:71:1b:a3:7b:df:9c:93:59:66:
9c:73:50:f3:2f:4c:df:6f:9a:ba:13:78:db:e1:0d:
44:b4:42:82:48:82:51:67:fd:81:f5:8b:0f:24:d8:
2b:f6:10:86:21:b2:54:8d:35:1a:6b:ce:59:4c:7a:
fb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B6:C2:3F:F7:AF:FA:23:A7:5F:63:3C:FA:2E:C8:7E:08:E2:BD:96
X509v3 Authority Key Identifier:
keyid:38:2F:86:F2:DB:D0:77:6C:4E:51:9C:9C:9A:E4:FA:D0:42:6F:39:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OC-G8tvQd2xOUZycmuT60EJvOf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/04748d-923b-4284-9628-203563f845bb/1/OC-G8tvQd2xOUZycmuT60EJvOf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:16:03:ba:08:2a:21:4a:91:17:08:80:8e:a3:92:f2:8d:57:
0d:75:23:b2:6f:c6:e4:96:4a:2e:cf:40:a1:26:6c:87:26:9a:
76:8f:62:86:c3:b4:c4:32:29:02:0d:cb:54:70:37:c0:4d:03:
ae:6e:da:9f:fc:54:61:4c:0a:44:2e:e9:29:53:26:d6:ca:d3:
6e:bf:32:b3:32:03:30:7e:2c:82:65:9d:3f:a8:44:59:6f:06:
3c:fd:4a:1e:7c:5c:d5:b8:96:ac:c3:62:57:29:d8:bd:ee:57:
47:a1:05:c3:54:e5:a4:3f:85:30:44:ed:3a:c9:62:eb:90:04:
59:1a:7a:a7:10:5d:39:d3:eb:01:9c:cc:7b:4e:20:28:26:5e:
ab:84:83:89:3f:61:f4:e7:09:b1:d5:c0:2d:3b:4c:8d:4a:30:
04:d6:cf:40:4b:11:1b:8c:2f:d2:56:1c:0b:04:b2:63:7d:73:
06:c2:91:3f:18:4a:d7:86:17:ce:1b:2d:2d:92:3e:38:e7:c4:
30:fe:bd:90:9f:fe:3b:8a:2e:68:07:4f:4a:b7:86:d2:72:4d:
0b:a5:5e:14:79:bf:ec:7d:6e:72:b5:e7:4a:e4:79:63:7a:b6:
2d:c0:be:38:04:53:d9:25:3e:f4:f4:27:60:97:16:c7:68:d1:
7e:43:2b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 20:00:55 2026 by rpki-client