Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
File:                     OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json)
Hash identifier:          yRKIDoNTl89lEO4mJkblVtWoXwSHifM0iKaxtnBryLw=
Subject key identifier:   C3:41:A2:67:4E:87:2A:8E:51:44:E2:C0:AE:B8:69:23:FA:05:95:C4
Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
Certificate issuer:       /CN=38b912a1eab18eb729745e8978138b25c4407761
Certificate serial:       019767DFF2E7F206778173A4A9407A62A2F2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
Manifest number:          0C6E
Signing time:             Fri 13 Jun 2025 06:00:19 +0000
Manifest this update:     Fri 13 Jun 2025 06:00:19 +0000
Manifest next update:     Sat 14 Jun 2025 06:00:19 +0000
Files and hashes:         1: FVz1Gs3goS-mz1CP7z4LNut0fHE.roa (hash: +EzGyBevLVejen0VLkmFtejit+8sBRd5jz7yFu64Sbw=)
                          2: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: ny0qQbJpEXoedF3dWAUZ/ttRwQ3vSgm9SXxpJKTbxOc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 06:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:df:f2:e7:f2:06:77:81:73:a4:a9:40:7a:62:a2:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761
        Validity
            Not Before: Jun 13 06:00:19 2025 GMT
            Not After : Jun 14 06:00:19 2025 GMT
        Subject: CN=c341a2674e872a8e5144e2c0aeb86923fa0595c4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:d5:92:59:12:d6:d0:aa:9c:02:c3:70:6d:09:
                    df:40:17:c7:33:e1:ae:ee:32:1c:df:27:86:c6:83:
                    ea:c9:61:2c:44:7f:30:e0:41:e8:17:dc:9c:e9:fc:
                    76:25:37:dc:69:54:ad:d4:20:65:0e:a5:c5:2f:18:
                    9c:aa:0b:ac:df:23:43:94:2f:a0:fc:7c:f1:ca:e2:
                    19:ac:c5:4e:7e:02:6f:9f:6f:81:76:ca:0d:1e:52:
                    b2:95:ff:8d:44:43:51:b9:ca:a3:4f:77:a7:bd:3c:
                    59:e1:cf:92:8e:1f:3f:e5:44:50:98:af:89:94:74:
                    54:e2:bd:de:a4:28:cd:11:4d:64:32:62:65:1a:1d:
                    7e:c1:21:69:9a:8d:b1:28:d9:0a:2d:0c:32:6a:59:
                    b7:cc:3a:60:f5:b2:66:f6:0f:93:07:ba:e9:6a:6f:
                    c2:a9:46:85:53:c0:8d:b9:19:1a:f5:0e:e4:62:91:
                    db:ee:c3:75:ff:a6:de:5b:eb:5f:5b:55:db:1e:47:
                    97:42:cd:0f:e8:99:0c:88:33:9a:37:c8:32:1e:4c:
                    26:3f:21:b2:cb:e9:1a:3d:f5:75:18:16:ec:71:38:
                    7a:c7:f6:2c:6d:c5:96:25:27:a9:16:4e:17:44:ed:
                    38:f0:86:2b:11:f8:8e:82:87:36:4b:8d:ca:15:e7:
                    e5:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:41:A2:67:4E:87:2A:8E:51:44:E2:C0:AE:B8:69:23:FA:05:95:C4
            X509v3 Authority Key Identifier:
                keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b5:15:b3:e4:45:d3:e7:fc:5a:40:6b:9c:c6:09:1f:e7:7f:b6:
         18:ac:da:c1:fe:07:64:60:f1:cd:fa:9b:ce:39:ff:81:07:8a:
         a7:f9:b5:77:c6:80:9e:39:3e:c4:f1:b9:23:1c:06:6f:4b:51:
         b7:f2:80:4e:9b:27:c6:f7:43:52:ac:93:17:d4:10:2c:3b:16:
         84:b9:ff:af:3e:e5:3f:4a:c6:f6:50:ae:d2:bb:b1:a6:3a:8f:
         93:d7:e6:b0:3a:67:07:ff:d8:84:72:f5:c4:ad:65:be:41:d9:
         fd:73:01:1d:1e:25:61:cd:ae:16:6d:03:3a:27:91:1b:67:b3:
         83:1b:24:43:bd:0a:a3:8d:0f:8c:22:ce:da:de:7f:db:78:f7:
         ab:6a:80:90:bc:19:d2:3a:86:34:92:da:cf:07:0f:84:cf:e3:
         29:03:49:8e:a2:c2:c6:fd:e2:61:77:3a:56:3d:80:b6:ec:86:
         a5:88:d6:4b:8f:e8:f9:ba:44:42:60:0c:40:76:51:27:3b:30:
         c2:e9:16:ea:4a:f4:c4:9c:1a:8b:d0:fe:8a:f3:c6:2f:b7:06:
         e5:dc:db:22:00:bd:10:8e:b2:51:93:ec:16:2c:a2:11:46:da:
         e5:72:8d:27:82:4c:72:f9:15:39:eb:89:78:ac:37:c2:23:4c:
         61:50:c9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:27:08 2025 by rpki-client