Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
File: OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft (raw, json)
Hash identifier: aB03piwT6gNa2qonVeXzO8aIK2TmvyD8nJHs7RjWd1A=
Subject key identifier: BF:50:F5:12:C0:60:FC:B1:57:E9:BA:06:E3:D2:8E:08:27:DB:76:DD
Authority key identifier: 38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
Certificate issuer: /CN=38b912a1eab18eb729745e8978138b25c4407761
Certificate serial: 0198D8BE08088F2F2864D6D0DD7F69F90DDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
Manifest number: 0D2D
Signing time: Sat 23 Aug 2025 21:03:09 +0000
Manifest this update: Sat 23 Aug 2025 21:03:09 +0000
Manifest next update: Sun 24 Aug 2025 21:03:09 +0000
Files and hashes: 1: FVz1Gs3goS-mz1CP7z4LNut0fHE.roa (hash: +EzGyBevLVejen0VLkmFtejit+8sBRd5jz7yFu64Sbw=)
2: OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl (hash: TJhEPztPihtjIBCHl0gbfrBQ7whPyqkZIXbLwM21EMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 21:03:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:be:08:08:8f:2f:28:64:d6:d0:dd:7f:69:f9:0d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b912a1eab18eb729745e8978138b25c4407761
Validity
Not Before: Aug 23 21:03:09 2025 GMT
Not After : Aug 24 21:03:09 2025 GMT
Subject: CN=bf50f512c060fcb157e9ba06e3d28e0827db76dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2a:a5:e7:49:90:78:1e:75:d8:e9:53:63:d2:
60:f1:0e:29:a0:11:8f:e1:2f:88:f9:8e:1b:ef:0a:
37:0e:02:f0:34:b7:bf:b7:6a:bc:93:a6:76:8d:cc:
68:ee:b7:c9:ad:90:51:66:fc:1f:d3:0a:50:ec:da:
6c:15:a4:6c:6e:72:39:78:d4:de:27:0c:b7:94:99:
49:73:a5:5b:7a:94:9a:db:a5:0d:b7:16:af:b8:7a:
c9:a9:1d:16:22:79:5f:99:6a:69:b2:22:d3:e1:90:
22:d6:fa:81:48:f8:b5:b5:46:c4:30:cd:ec:e3:52:
65:7b:c5:b2:99:24:b4:98:39:56:8b:84:9b:e1:0c:
8f:e2:5b:86:3c:55:ed:9e:c7:c4:34:72:3e:b9:cf:
54:87:e7:74:0f:13:a0:43:65:48:dc:2e:4a:6e:db:
05:e0:a6:9b:7b:3c:16:26:f4:cb:6d:34:e0:4b:2b:
1b:89:f1:9a:77:95:9f:96:7c:a1:d0:75:af:0c:b5:
14:7b:08:9e:9a:74:73:3f:e2:12:b1:41:c3:77:72:
eb:0d:9e:b8:4e:ef:46:30:7c:a9:0c:5a:e6:51:08:
10:df:c7:e7:e3:21:14:f6:1a:a3:25:b2:04:c4:79:
97:d2:75:54:18:bf:e7:9e:db:b1:ef:05:88:cf:f0:
ad:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:50:F5:12:C0:60:FC:B1:57:E9:BA:06:E3:D2:8E:08:27:DB:76:DD
X509v3 Authority Key Identifier:
keyid:38:B9:12:A1:EA:B1:8E:B7:29:74:5E:89:78:13:8B:25:C4:40:77:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLkSoeqxjrcpdF6JeBOLJcRAd2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3fae96-4aae-4544-bef2-c1d521166bec/1/OLkSoeqxjrcpdF6JeBOLJcRAd2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:75:7c:db:2d:31:05:98:e1:cb:c8:f6:bd:87:4f:90:ec:22:
5d:11:7a:56:5e:43:75:8e:59:9b:22:75:a9:84:56:8d:f7:02:
c2:10:2c:46:c6:78:7e:c5:5e:1d:6c:b3:e6:c6:32:29:25:91:
84:53:e3:fe:7b:4d:b2:f7:a8:34:e4:ed:99:55:b6:bd:8c:0f:
13:26:b6:38:9c:c2:14:b4:a9:a7:b0:04:a9:5f:37:5c:33:8f:
82:90:35:d1:1c:52:f9:f6:fc:a5:7f:d5:3d:42:8b:70:fa:bf:
f5:55:ca:f4:46:6a:d6:9a:58:e6:2f:1c:8c:86:9c:8e:19:47:
cf:f9:59:75:f7:a7:b8:c2:ea:9a:a3:66:ff:31:3e:d7:1b:2d:
e4:d9:ba:73:56:46:54:15:c7:77:2f:66:2e:d2:02:8c:59:c3:
e2:1b:cf:5e:75:77:82:e1:93:4c:46:ca:7a:fc:a1:b1:47:93:
97:aa:f3:9a:a8:62:f0:d6:f7:19:c0:5d:4d:df:79:d8:16:bc:
9d:35:f9:a4:56:60:2a:47:02:15:9b:fc:09:ee:d0:42:a8:c0:
85:a5:ab:4b:ff:d5:fe:c7:d0:5d:d4:b2:4b:a4:c1:3d:3b:e1:
d3:ae:19:4b:11:52:b2:9f:16:25:1d:33:93:45:0c:d8:f0:5f:
c3:cc:90:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 05:02:01 2025 by rpki-client