Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
File: oLalsaFMhtTPtGxOhuzUBmgEzJA.mft (raw, json)
Hash identifier: HHTuFcGkrF3R+hNijHJ66VpdQSTThDVhDKHZ8bG4kso=
Subject key identifier: 35:11:7C:A1:01:C5:BD:92:A8:FD:7C:DF:FC:94:3C:8D:C9:6D:79:84
Authority key identifier: A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
Certificate issuer: /CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Certificate serial: 0196BA48706A29D23525A20449DE2E4F17A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
Manifest number: 054E
Signing time: Sat 10 May 2025 13:00:31 +0000
Manifest this update: Sat 10 May 2025 13:00:31 +0000
Manifest next update: Sun 11 May 2025 13:00:31 +0000
Files and hashes: 1: MCk_wjcNWplBl8XuQ-Q-tXaOPdg.roa (hash: FrFfJHN2MqG7rUNbBMB2RUeLHgQ0eftZ7IS2VaSzx58=)
2: oLalsaFMhtTPtGxOhuzUBmgEzJA.crl (hash: D6a6vRkH+2ggAWw6Ygdp1NdCNAp3HGnJEIt6VxW6mGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:48:70:6a:29:d2:35:25:a2:04:49:de:2e:4f:17:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Validity
Not Before: May 10 13:00:31 2025 GMT
Not After : May 11 13:00:31 2025 GMT
Subject: CN=35117ca101c5bd92a8fd7cdffc943c8dc96d7984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cd:51:a4:3b:36:85:cb:83:c3:35:71:c5:1d:
9e:91:d7:0d:cf:55:58:cd:db:66:0c:35:56:88:57:
a0:73:d5:72:db:7b:1f:00:48:5a:e0:74:0a:4f:2c:
a5:b9:47:cd:fb:0f:d6:0d:dc:e8:c4:db:2b:25:a8:
e1:4c:68:08:89:05:f0:88:85:91:f4:9a:0e:50:8d:
a3:f5:98:cf:f5:33:93:e2:1c:55:81:05:98:a9:eb:
12:3f:69:74:70:9b:92:c3:63:6a:9e:ca:c9:33:06:
fa:a5:4d:c9:01:9d:9e:de:13:36:5f:e5:a4:3d:83:
2d:48:94:1e:5d:f1:6f:14:d3:cb:75:b3:66:ee:57:
0f:1f:64:7c:c0:aa:a0:7a:13:fb:b6:63:39:a9:03:
e9:8a:46:c4:e4:33:95:4d:f0:a2:45:95:73:de:3e:
95:12:8c:0d:98:0e:02:1b:29:2e:41:a3:a2:3d:44:
ba:cf:0d:a4:e5:5b:80:95:0c:5d:40:45:75:cb:a8:
3a:88:00:3a:2a:83:50:3f:09:b3:2b:08:77:5b:86:
c9:5a:d0:f6:0a:21:e8:34:e3:0a:b3:8b:fa:62:4b:
66:64:a1:b5:43:f5:4d:f3:bb:38:8f:f1:ca:7f:ae:
d6:4c:14:ca:20:16:77:22:de:b4:d5:c0:c0:55:83:
fc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:11:7C:A1:01:C5:BD:92:A8:FD:7C:DF:FC:94:3C:8D:C9:6D:79:84
X509v3 Authority Key Identifier:
keyid:A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:28:72:71:3e:95:c6:1a:33:48:6b:13:b5:67:a1:95:0e:0b:
dd:12:fe:02:23:c8:3b:10:a8:fe:54:43:59:f6:e8:4f:8c:1d:
d0:19:ab:d6:f2:ac:f8:69:b7:7b:f1:fa:12:45:ef:b0:f3:90:
33:32:66:81:f9:a5:60:4b:00:cd:22:7f:bb:f5:ab:22:7b:15:
bf:2b:e1:1f:09:69:72:28:73:81:5a:2b:b6:ff:c6:32:f5:32:
28:bb:2c:72:11:0f:1c:3f:d9:e4:38:e0:3d:3f:80:ae:1f:30:
80:8d:a7:a4:e5:43:46:c7:62:99:f5:59:1b:7d:a7:fd:9c:ec:
70:6f:03:a5:9e:22:d7:89:cc:9f:b8:7e:94:9b:fc:c7:88:33:
ec:50:92:4b:3b:dd:ff:68:97:d4:c4:8b:28:ef:4c:16:5f:2b:
43:9e:3d:e4:5c:1a:12:cf:23:c7:73:f5:cb:cc:2f:65:c2:bb:
4d:96:98:06:1a:4c:6b:eb:97:66:1c:94:c6:b0:10:a7:43:df:
ce:59:e9:0e:b2:23:70:43:64:9a:7f:af:0a:c4:fa:80:4b:a2:
0a:6d:df:a3:d4:5d:ec:2b:42:6f:58:93:ec:32:b6:85:ec:37:
b5:61:cc:a9:91:bb:77:4c:16:8a:c7:4c:4b:4c:e6:12:26:81:
1e:d5:c5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:58:16 2025 by rpki-client