Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
File: OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json)
Hash identifier: D94goKEvrC6tAINpFZFuMs0GgkXd6mzdPOaBWQoUdw0=
Subject key identifier: 97:0E:56:8F:A6:DC:B0:AD:29:DE:43:86:D8:9A:34:81:45:A8:FB:CF
Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
Certificate issuer: /CN=38b912a1eab18eb729745e8978138b25c4407761
Certificate serial: 0196D13E0E9BAC0BA70BA9BFE7BCE05FA4D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
Manifest number: 0C20
Signing time: Thu 15 May 2025 00:00:27 +0000
Manifest this update: Thu 15 May 2025 00:00:27 +0000
Manifest next update: Fri 16 May 2025 00:00:27 +0000
Files and hashes: 1: FVz1Gs3goS-mz1CP7z4LNut0fHE.roa (hash: +EzGyBevLVejen0VLkmFtejit+8sBRd5jz7yFu64Sbw=)
2: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: 1+lvLYBU/CU5XXb/Fe5Nc843Ve9Hl25TJnLWqTY4iBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:3e:0e:9b:ac:0b:a7:0b:a9:bf:e7:bc:e0:5f:a4:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761
Validity
Not Before: May 15 00:00:27 2025 GMT
Not After : May 16 00:00:27 2025 GMT
Subject: CN=970e568fa6dcb0ad29de4386d89a348145a8fbcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ac:57:97:3e:9a:13:f0:dd:ef:e5:de:40:3c:
95:a4:56:dd:84:00:c5:3a:37:f5:d2:19:93:20:7f:
c2:7c:5e:77:64:dd:fe:09:bb:52:30:8a:c7:e2:41:
51:0e:7d:55:6d:ca:a3:66:a0:a7:9a:d5:aa:81:98:
25:8c:bf:aa:87:9b:ea:c4:4f:21:da:3e:c4:78:03:
85:d0:99:fa:c1:7d:67:d0:cc:66:02:6e:98:a3:58:
02:a6:5e:37:2c:6a:51:0f:31:89:24:2c:b2:ed:26:
f8:e9:9b:c8:5b:42:45:ba:4e:17:6d:5b:41:03:46:
ef:dd:58:93:c7:d0:0d:a8:2f:db:45:8d:f9:1c:03:
1c:7a:73:2f:b4:88:ec:58:79:72:bd:24:7f:18:11:
3b:81:c0:8f:54:c3:b2:fc:e7:51:17:a8:da:2a:5c:
46:6d:6b:42:4e:57:0f:73:df:41:72:97:e6:6b:ab:
2b:0a:cb:bf:b2:91:e0:45:36:10:b8:6e:f7:ac:a9:
2d:7f:5d:dc:52:aa:86:c7:e2:bf:26:2d:97:40:a9:
bc:f8:1c:22:53:51:a7:42:b9:57:b0:b7:02:dd:d1:
9f:82:38:c9:9b:0b:ba:d1:66:bf:bd:1e:b2:92:91:
4a:07:51:6c:6e:f4:c4:06:50:1b:20:9e:5e:50:00:
d1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:0E:56:8F:A6:DC:B0:AD:29:DE:43:86:D8:9A:34:81:45:A8:FB:CF
X509v3 Authority Key Identifier:
keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:d0:c9:74:d2:c4:d4:b2:4e:57:7b:b7:5b:4f:d6:4a:bb:77:
a0:1f:93:0b:01:9d:bd:82:f2:32:c4:df:ba:e4:ea:6a:bf:fc:
bb:16:a7:54:a2:b0:f0:76:e6:11:79:a8:52:06:60:20:c3:d6:
24:7c:93:b9:3e:f8:35:8d:f9:ff:ec:9b:c6:dc:65:1a:18:a5:
de:7b:67:55:cd:2a:4d:23:20:81:94:81:58:a9:50:83:39:4f:
56:fc:74:d9:30:ef:f5:09:34:d2:bf:f9:47:0e:42:f1:b7:86:
51:0c:40:7e:fd:8d:64:cc:83:b0:f2:4b:f9:df:11:2f:3a:b9:
c4:4a:f0:b0:16:33:e8:42:58:8a:08:4d:fb:78:12:74:75:5b:
09:f5:3d:85:ef:33:ff:96:41:79:0a:92:d3:88:63:e2:52:0b:
a7:25:7b:d3:1d:57:53:07:2a:70:d3:26:04:34:04:e6:69:be:
15:61:a3:58:de:f7:97:50:59:00:5a:40:6a:42:30:21:8b:3b:
22:09:89:58:27:0c:ac:4d:c4:d9:f8:ba:60:7d:de:8a:b7:c6:
b0:b4:70:e6:67:4c:bb:dc:5a:6b:46:5c:da:75:19:af:cf:1c:
24:e9:64:6a:11:9c:0a:b7:dc:c0:fb:17:8c:47:03:6b:fe:44:
8b:53:43:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbRPg6brAunC6m/57zgX6TRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjkxMmExZWFiMThlYjcyOTc0NWU4OTc4MTM4YjI1YzQ0
MDc3NjEwHhcNMjUwNTE1MDAwMDI3WhcNMjUwNTE2MDAwMDI3WjAzMTEwLwYDVQQD
Eyg5NzBlNTY4ZmE2ZGNiMGFkMjlkZTQzODZkODlhMzQ4MTQ1YThmYmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaxXlz6aE/Dd7+XeQDyVpFbdhADF
Ojf10hmTIH/CfF53ZN3+CbtSMIrH4kFRDn1VbcqjZqCnmtWqgZgljL+qh5vqxE8h
2j7EeAOF0Jn6wX1n0MxmAm6Yo1gCpl43LGpRDzGJJCyy7Sb46ZvIW0JFuk4XbVtB
A0bv3ViTx9ANqC/bRY35HAMcenMvtIjsWHlyvSR/GBE7gcCPVMOy/OdRF6jaKlxG
bWtCTlcPc99Bcpfma6srCsu/spHgRTYQuG73rKktf13cUqqGx+K/Ji2XQKm8+Bwi
U1GnQrlXsLcC3dGfgjjJmwu60Wa/vR6ykpFKB1FsbvTEBlAbIJ5eUADR1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJcOVo+m3LCtKd5DhtiaNIFFqPvPMB8GA1UdIwQY
MBaAFDi5EqHqsY63KXReiXgTiyXEQHdhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xrU29lcXhqcmNwZEY2SmVCT0xKY1JBZDJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8zZmFlOTYtNGFhZS00NTQ0LWJlZjIt
YzFkNTIxMTY2YmVjLzEvT0xrU29lcXhqcmNwZEY2SmVCT0xKY1JBZDJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi8zZmFlOTYtNGFhZS00NTQ0LWJlZjItYzFkNTIxMTY2YmVj
LzEvT0xrU29lcXhqcmNwZEY2SmVCT0xKY1JBZDJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj9DJdNLE
1LJOV3u3W0/WSrt3oB+TCwGdvYLyMsTfuuTqar/8uxanVKKw8HbmEXmoUgZgIMPW
JHyTuT74NY35/+ybxtxlGhil3ntnVc0qTSMggZSBWKlQgzlPVvx02TDv9Qk00r/5
Rw5C8beGUQxAfv2NZMyDsPJL+d8RLzq5xErwsBYz6EJYighN+3gSdHVbCfU9he8z
/5ZBeQqS04hj4lILpyV70x1XUwcqcNMmBDQE5mm+FWGjWN73l1BZAFpAakIwIYs7
IgmJWCcMrE3E2fi6YH3eirfGsLRw5mdMu9xaa0Zc2nUZr88cJOlkahGcCrfcwPsX
jEcDa/5Ei1ND+w==
-----END CERTIFICATE-----
Generated at Thu May 15 09:18:00 2025 by rpki-client