Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
File: oLalsaFMhtTPtGxOhuzUBmgEzJA.mft (raw, json)
Hash identifier: 17aVOUqfVPAEydev1/41puf3XyT/Qsd8GW25uRHtNig=
Subject key identifier: E7:A2:C5:B3:90:1B:93:CD:0E:A7:A1:B8:D0:5F:33:A5:88:D5:55:9F
Authority key identifier: A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
Certificate issuer: /CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Certificate serial: 0198481BBDECCE322A33BE3E9140898E7F91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
Manifest number: 061C
Signing time: Sat 26 Jul 2025 19:00:34 +0000
Manifest this update: Sat 26 Jul 2025 19:00:34 +0000
Manifest next update: Sun 27 Jul 2025 19:00:34 +0000
Files and hashes: 1: MCk_wjcNWplBl8XuQ-Q-tXaOPdg.roa (hash: FrFfJHN2MqG7rUNbBMB2RUeLHgQ0eftZ7IS2VaSzx58=)
2: oLalsaFMhtTPtGxOhuzUBmgEzJA.crl (hash: jhPVGE8got7QMdKmjvTlYYsWq9jxq1Tm5ZxSe0DypsY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:1b:bd:ec:ce:32:2a:33:be:3e:91:40:89:8e:7f:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Validity
Not Before: Jul 26 19:00:34 2025 GMT
Not After : Jul 27 19:00:34 2025 GMT
Subject: CN=e7a2c5b3901b93cd0ea7a1b8d05f33a588d5559f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:21:5e:27:91:e9:dc:2b:d2:14:da:38:a8:9b:
3d:ee:65:ba:09:d4:8a:0b:bd:f4:7e:d1:02:7d:25:
77:be:12:e7:e0:8a:8b:40:c4:05:b7:f8:73:0c:a4:
30:e1:60:e1:d0:e7:25:0b:f9:61:62:d6:45:39:63:
e0:e0:d6:e8:ea:5f:58:ef:21:b0:b3:b1:86:a9:11:
20:4f:b6:9a:38:96:3e:fe:26:52:35:12:4f:5c:45:
fe:bb:20:3e:7c:b6:89:bd:67:d7:7d:98:05:37:28:
d7:ea:60:b0:0b:cc:bb:97:de:ff:40:7e:1f:d1:1f:
4c:1a:e2:0e:d4:f5:0c:fb:a1:da:ff:3d:43:2f:33:
df:a6:2a:46:61:32:dd:a1:b7:12:e4:7c:50:eb:5e:
67:f9:24:00:00:e6:e5:fa:4d:f3:dd:60:f5:30:86:
b0:1b:a2:d7:27:9b:e4:23:79:1b:0c:92:84:89:ee:
b1:99:b7:66:2f:2a:39:9b:1d:39:4d:9d:fc:82:76:
f8:dc:71:d7:47:1b:83:9c:52:04:da:68:1a:3d:21:
0a:e9:25:2d:2e:ff:1c:90:c1:63:9d:ee:62:d7:db:
58:8c:dc:84:cb:c1:e2:bf:ff:3f:da:66:82:5c:d4:
54:db:32:8a:f0:b5:c1:2c:7c:65:22:97:19:0b:4c:
b7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A2:C5:B3:90:1B:93:CD:0E:A7:A1:B8:D0:5F:33:A5:88:D5:55:9F
X509v3 Authority Key Identifier:
keyid:A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:23:d3:0f:44:48:0c:2d:da:cd:db:27:35:2c:97:3d:ee:31:
a2:ca:9c:b8:a3:7e:e0:3e:ce:9f:94:1d:02:da:c9:86:05:a6:
f6:d9:6a:87:ca:ee:ed:91:35:f5:c3:52:de:5b:f3:a4:23:bc:
a0:77:f7:e5:94:4b:98:64:6c:55:4e:ee:57:a7:aa:f0:d9:ea:
fb:58:4e:d7:ae:6b:5f:9c:4b:08:56:5b:14:9f:74:fe:f0:0b:
cd:2d:01:82:31:c2:b0:ee:5b:72:c6:4d:ec:3a:56:3d:45:2a:
1a:f3:d8:4c:2d:f8:74:79:ce:94:f0:47:70:ca:ff:8e:36:ea:
54:33:1f:c8:7c:23:c7:64:dd:34:4c:7b:11:81:63:1f:79:2a:
bd:20:de:f4:fe:0a:19:7a:74:f1:0d:7a:dd:27:72:74:f4:07:
25:c2:ad:c1:1a:0d:10:22:c7:7d:4c:fa:cb:70:84:b5:a0:86:
2a:e1:ba:d1:cd:db:aa:2d:5b:cf:a5:e5:3f:58:1d:3c:6b:89:
0d:d3:70:53:db:e2:3a:70:18:ce:db:32:ef:13:5b:8e:9e:c7:
26:4b:45:60:21:91:1f:92:fd:f7:e7:ef:06:b2:fe:a4:8e:62:
ff:91:2e:1e:02:23:85:c2:4b:18:6b:df:9f:26:c5:30:12:3f:
d6:76:48:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:32:59 2025 by rpki-client