Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
File: OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json)
Hash identifier: yRKIDoNTl89lEO4mJkblVtWoXwSHifM0iKaxtnBryLw=
Subject key identifier: C3:41:A2:67:4E:87:2A:8E:51:44:E2:C0:AE:B8:69:23:FA:05:95:C4
Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
Certificate issuer: /CN=38b912a1eab18eb729745e8978138b25c4407761
Certificate serial: 019767DFF2E7F206778173A4A9407A62A2F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
Manifest number: 0C6E
Signing time: Fri 13 Jun 2025 06:00:19 +0000
Manifest this update: Fri 13 Jun 2025 06:00:19 +0000
Manifest next update: Sat 14 Jun 2025 06:00:19 +0000
Files and hashes: 1: FVz1Gs3goS-mz1CP7z4LNut0fHE.roa (hash: +EzGyBevLVejen0VLkmFtejit+8sBRd5jz7yFu64Sbw=)
2: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: ny0qQbJpEXoedF3dWAUZ/ttRwQ3vSgm9SXxpJKTbxOc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:67:df:f2:e7:f2:06:77:81:73:a4:a9:40:7a:62:a2:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761
Validity
Not Before: Jun 13 06:00:19 2025 GMT
Not After : Jun 14 06:00:19 2025 GMT
Subject: CN=c341a2674e872a8e5144e2c0aeb86923fa0595c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d5:92:59:12:d6:d0:aa:9c:02:c3:70:6d:09:
df:40:17:c7:33:e1:ae:ee:32:1c:df:27:86:c6:83:
ea:c9:61:2c:44:7f:30:e0:41:e8:17:dc:9c:e9:fc:
76:25:37:dc:69:54:ad:d4:20:65:0e:a5:c5:2f:18:
9c:aa:0b:ac:df:23:43:94:2f:a0:fc:7c:f1:ca:e2:
19:ac:c5:4e:7e:02:6f:9f:6f:81:76:ca:0d:1e:52:
b2:95:ff:8d:44:43:51:b9:ca:a3:4f:77:a7:bd:3c:
59:e1:cf:92:8e:1f:3f:e5:44:50:98:af:89:94:74:
54:e2:bd:de:a4:28:cd:11:4d:64:32:62:65:1a:1d:
7e:c1:21:69:9a:8d:b1:28:d9:0a:2d:0c:32:6a:59:
b7:cc:3a:60:f5:b2:66:f6:0f:93:07:ba:e9:6a:6f:
c2:a9:46:85:53:c0:8d:b9:19:1a:f5:0e:e4:62:91:
db:ee:c3:75:ff:a6:de:5b:eb:5f:5b:55:db:1e:47:
97:42:cd:0f:e8:99:0c:88:33:9a:37:c8:32:1e:4c:
26:3f:21:b2:cb:e9:1a:3d:f5:75:18:16:ec:71:38:
7a:c7:f6:2c:6d:c5:96:25:27:a9:16:4e:17:44:ed:
38:f0:86:2b:11:f8:8e:82:87:36:4b:8d:ca:15:e7:
e5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:41:A2:67:4E:87:2A:8E:51:44:E2:C0:AE:B8:69:23:FA:05:95:C4
X509v3 Authority Key Identifier:
keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:15:b3:e4:45:d3:e7:fc:5a:40:6b:9c:c6:09:1f:e7:7f:b6:
18:ac:da:c1:fe:07:64:60:f1:cd:fa:9b:ce:39:ff:81:07:8a:
a7:f9:b5:77:c6:80:9e:39:3e:c4:f1:b9:23:1c:06:6f:4b:51:
b7:f2:80:4e:9b:27:c6:f7:43:52:ac:93:17:d4:10:2c:3b:16:
84:b9:ff:af:3e:e5:3f:4a:c6:f6:50:ae:d2:bb:b1:a6:3a:8f:
93:d7:e6:b0:3a:67:07:ff:d8:84:72:f5:c4:ad:65:be:41:d9:
fd:73:01:1d:1e:25:61:cd:ae:16:6d:03:3a:27:91:1b:67:b3:
83:1b:24:43:bd:0a:a3:8d:0f:8c:22:ce:da:de:7f:db:78:f7:
ab:6a:80:90:bc:19:d2:3a:86:34:92:da:cf:07:0f:84:cf:e3:
29:03:49:8e:a2:c2:c6:fd:e2:61:77:3a:56:3d:80:b6:ec:86:
a5:88:d6:4b:8f:e8:f9:ba:44:42:60:0c:40:76:51:27:3b:30:
c2:e9:16:ea:4a:f4:c4:9c:1a:8b:d0:fe:8a:f3:c6:2f:b7:06:
e5:dc:db:22:00:bd:10:8e:b2:51:93:ec:16:2c:a2:11:46:da:
e5:72:8d:27:82:4c:72:f9:15:39:eb:89:78:ac:37:c2:23:4c:
61:50:c9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:27:08 2025 by rpki-client