Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
File: OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json)
Hash identifier: rPtorhFDcR+K80srKR3WaB6vJ2Hic4OK/UFDn3fJPAs=
Subject key identifier: 1D:7B:DA:52:6C:F9:8A:F5:0C:D7:86:D0:C0:2C:8D:02:97:DD:35:DF
Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
Certificate issuer: /CN=38b912a1eab18eb729745e8978138b25c4407761
Certificate serial: 0199221F23023F66F1CAF7E80FCF94F5F4EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
Manifest number: 0D53
Signing time: Sun 07 Sep 2025 03:01:29 +0000
Manifest this update: Sun 07 Sep 2025 03:01:29 +0000
Manifest next update: Mon 08 Sep 2025 03:01:29 +0000
Files and hashes: 1: FVz1Gs3goS-mz1CP7z4LNut0fHE.roa (hash: +EzGyBevLVejen0VLkmFtejit+8sBRd5jz7yFu64Sbw=)
2: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: AMLUpLefTSF6ruPtB6w3SPxhPqhe9tt6dEzcNPTvArw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:23:02:3f:66:f1:ca:f7:e8:0f:cf:94:f5:f4:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761
Validity
Not Before: Sep 7 03:01:29 2025 GMT
Not After : Sep 8 03:01:29 2025 GMT
Subject: CN=1d7bda526cf98af50cd786d0c02c8d0297dd35df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:71:60:cc:05:17:d1:0f:4e:7a:82:a2:04:5e:
9d:71:b2:d5:22:8f:87:5d:36:3a:a4:0a:f4:58:e6:
c5:3e:75:b9:24:f9:5e:31:cf:1a:78:37:2e:8d:17:
e3:21:a6:56:76:75:a6:07:97:9e:24:a9:00:5a:72:
ec:f6:2f:8a:89:0b:18:85:fe:b6:14:83:7a:19:32:
43:2a:18:aa:66:9f:bc:bb:ac:b4:a8:d7:7a:57:b5:
c1:7b:5e:9e:3e:63:4f:b9:dc:e9:62:e8:e5:48:02:
46:7d:40:0c:1a:7c:83:71:65:2f:44:85:a6:ce:99:
98:49:db:d5:06:88:c0:0d:10:6a:1e:3b:3c:4a:de:
05:91:38:a2:aa:09:8f:ca:36:e1:52:62:f3:bd:9d:
26:37:9b:73:53:71:38:79:e0:a4:9e:12:f8:50:d2:
ec:47:02:78:07:a7:3f:75:29:c7:29:e8:c0:bc:61:
d3:3c:88:b9:6e:2d:15:1f:3e:5a:b8:ff:2b:a2:94:
5a:7b:bc:bb:3d:75:3a:c8:79:10:83:a2:15:c9:c1:
3c:5e:dd:79:97:27:00:72:06:25:8e:0c:ec:d4:ad:
05:8a:16:5d:7a:a0:7c:a6:7a:3c:66:7a:9b:e3:ff:
04:5d:27:f3:5f:eb:0c:4f:78:6a:a7:cd:15:f2:08:
15:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7B:DA:52:6C:F9:8A:F5:0C:D7:86:D0:C0:2C:8D:02:97:DD:35:DF
X509v3 Authority Key Identifier:
keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:7d:e0:29:b6:54:10:91:3e:00:8b:b9:9e:0b:e5:f8:9e:ad:
1b:dc:4b:da:a4:9c:3b:0f:c6:3a:02:83:83:ce:e2:e3:74:3c:
0d:81:ce:43:93:9b:6e:a7:9e:ac:91:5b:59:80:6f:87:e0:53:
1e:61:70:84:80:b7:ce:ae:4c:8a:ce:7b:9e:13:c5:cc:66:91:
b3:db:2f:2d:87:94:71:6e:e3:d5:7d:40:60:2b:1e:ca:93:b6:
48:26:80:df:a4:72:2d:7e:d7:05:7f:4a:88:f7:a7:44:4d:3d:
65:6f:3c:fb:6f:42:11:13:b6:b8:9a:40:c2:91:a8:a3:60:18:
ce:b3:83:32:9d:c9:0f:9e:79:ce:6b:ee:1c:85:cf:c2:e0:5f:
3b:bd:11:79:38:d8:7d:ab:78:c2:18:f8:8d:9d:84:2c:9a:bc:
61:83:33:e7:10:ce:62:28:76:85:40:e4:5d:ac:05:75:62:14:
dc:79:ce:d4:cf:c7:49:b3:a8:ff:1a:aa:20:b3:53:01:25:a7:
d5:3f:e9:9d:97:bb:5e:18:39:dd:4a:c3:ef:05:db:64:68:15:
12:40:60:e5:c0:e1:df:18:53:57:36:46:39:15:ce:41:1e:0f:
d2:e7:b8:c8:ad:ed:71:91:00:3e:84:97:ac:3b:82:80:6d:71:
16:01:2f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:10 2025 by rpki-client