Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
File: oLalsaFMhtTPtGxOhuzUBmgEzJA.mft (raw, json)
Hash identifier: hPH7bRvsHLX5BeAQ8QMSx0QAyaNTfY5AySGDjyCBudg=
Subject key identifier: FB:19:B9:72:53:8E:B4:F6:4B:11:B6:B3:10:41:80:95:4B:7A:FE:26
Authority key identifier: A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
Certificate issuer: /CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Certificate serial: 0198D515BB10539B4AB665EEF059827910F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
Manifest number: 0665
Signing time: Sat 23 Aug 2025 04:00:27 +0000
Manifest this update: Sat 23 Aug 2025 04:00:27 +0000
Manifest next update: Sun 24 Aug 2025 04:00:27 +0000
Files and hashes: 1: MCk_wjcNWplBl8XuQ-Q-tXaOPdg.roa (hash: FrFfJHN2MqG7rUNbBMB2RUeLHgQ0eftZ7IS2VaSzx58=)
2: oLalsaFMhtTPtGxOhuzUBmgEzJA.crl (hash: mdSUlKNgP1e/sOApaKj08Z5CbkpK3DYpwXwVGC1hEiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:bb:10:53:9b:4a:b6:65:ee:f0:59:82:79:10:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Validity
Not Before: Aug 23 04:00:27 2025 GMT
Not After : Aug 24 04:00:27 2025 GMT
Subject: CN=fb19b972538eb4f64b11b6b3104180954b7afe26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2c:52:56:6e:66:7b:29:6b:df:d3:3e:39:04:
41:72:71:91:43:19:23:9f:a1:65:fa:bb:91:b5:dd:
e3:f1:f8:ac:cf:21:4a:7f:7a:f9:71:bb:94:74:fe:
26:fe:19:81:0b:57:35:7e:c2:ea:1c:bf:f6:55:24:
c4:22:e6:aa:26:d2:94:ac:65:18:1a:47:04:8b:d3:
a9:be:40:93:f2:76:5f:17:9a:20:c6:21:f5:a4:df:
9a:d3:63:01:dd:b4:10:9d:19:2e:5f:68:0f:f7:7d:
b3:e4:4e:0f:e3:77:13:f4:5b:f2:15:71:b2:47:96:
6a:59:76:19:e8:2c:e8:4f:f2:a1:0b:f7:b2:6f:12:
44:bd:ae:44:7c:7c:39:b8:32:6c:a3:8b:31:ef:95:
ea:b3:ce:30:e2:23:08:04:e9:9f:72:e0:aa:05:5d:
db:9b:b0:b6:52:90:7c:9b:8b:31:f7:cd:c6:81:f2:
63:23:b0:cd:f6:8a:d3:ec:a4:15:81:2e:cd:4c:86:
72:a1:99:96:1c:ea:f2:bd:f4:1c:17:78:cb:a9:42:
88:5d:30:ca:44:f4:e7:68:97:23:f4:dc:9a:73:ef:
53:2f:37:2d:d8:f4:36:86:5c:95:4e:0c:3a:34:df:
96:06:02:02:70:47:b1:d2:90:1c:3b:20:59:31:05:
1a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:19:B9:72:53:8E:B4:F6:4B:11:B6:B3:10:41:80:95:4B:7A:FE:26
X509v3 Authority Key Identifier:
keyid:A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:95:b5:1c:cb:5c:c1:35:80:60:8e:3b:5a:51:bd:95:6e:f1:
74:f1:30:5b:59:e0:9c:70:31:9e:49:57:31:21:83:93:a6:f6:
d6:74:2c:45:b2:a8:68:82:99:04:0f:10:0e:e7:e9:1a:b5:45:
92:c1:c5:96:54:bf:39:fd:fa:57:c1:27:4f:ec:c8:ba:5f:e8:
b2:1a:de:b8:27:7d:10:08:2a:43:97:82:af:45:5c:b6:37:ed:
18:66:a7:27:a1:b7:0d:81:06:ca:3b:8a:b0:48:de:4c:77:13:
6e:e1:86:6c:a5:f1:d7:27:bf:3e:53:18:ef:ed:cd:68:0c:a7:
0b:53:26:14:91:0f:79:47:ad:4a:07:5a:19:8b:33:47:0d:d7:
17:e8:47:e9:e8:bd:45:a4:f2:39:8e:d8:e6:54:14:1f:55:f8:
29:e4:f0:43:95:45:88:9d:5e:a8:8f:5a:1a:2e:73:40:f1:47:
27:11:c3:18:ba:06:e8:22:f9:bf:4a:85:8b:10:71:76:dc:8d:
38:d7:94:4b:19:42:92:0a:ac:71:73:af:b4:fd:d4:80:bd:f1:
b4:28:b1:f3:29:a6:ba:fe:d8:25:13:c6:aa:94:82:34:81:53:
15:33:8f:7c:5e:f8:33:22:91:cf:1b:24:26:f9:ee:85:5a:5d:
26:1d:cf:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:22 2025 by rpki-client