Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
File: oLalsaFMhtTPtGxOhuzUBmgEzJA.mft (raw, json)
Hash identifier: reATxjw1lMLXZ99x5mQJ2cIMlsp7NjqZZx2Y+7V6+Gc=
Subject key identifier: 90:F7:B2:54:10:01:37:5F:49:0C:95:C8:82:63:03:D1:B1:BD:71:C5
Authority key identifier: A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
Certificate issuer: /CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Certificate serial: 0197B745AA92D30558A23F0B77CB19E0DD78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
Manifest number: 05D1
Signing time: Sat 28 Jun 2025 16:01:25 +0000
Manifest this update: Sat 28 Jun 2025 16:01:25 +0000
Manifest next update: Sun 29 Jun 2025 16:01:25 +0000
Files and hashes: 1: MCk_wjcNWplBl8XuQ-Q-tXaOPdg.roa (hash: FrFfJHN2MqG7rUNbBMB2RUeLHgQ0eftZ7IS2VaSzx58=)
2: oLalsaFMhtTPtGxOhuzUBmgEzJA.crl (hash: 1UCDbE0httFfwsOBws10pGBmQeYB5AHua80eULKZ2S0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:aa:92:d3:05:58:a2:3f:0b:77:cb:19:e0:dd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0b6a5b1a14c86d4cfb46c4e86ecd4066804cc90
Validity
Not Before: Jun 28 16:01:25 2025 GMT
Not After : Jun 29 16:01:25 2025 GMT
Subject: CN=90f7b2541001375f490c95c8826303d1b1bd71c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c8:64:70:26:27:91:3d:df:d1:4b:43:5f:b3:
03:b5:06:d4:06:59:c4:e2:94:cc:e8:b3:17:56:75:
db:3d:d9:c0:d2:a6:3e:ee:15:de:9c:29:63:df:80:
8d:c7:a5:46:4e:41:bc:7c:e8:44:c8:0c:16:e7:ff:
58:d3:45:18:39:a9:b8:c0:2e:94:b1:f1:3f:86:fd:
0c:01:da:7a:d8:78:19:a4:de:c4:66:9d:ca:7f:e6:
91:46:c9:0f:60:7b:ab:60:60:c0:1c:ab:ae:9b:e8:
53:8c:b2:5e:68:d3:ba:8a:2e:e4:e1:7d:bf:ab:28:
99:69:7f:1c:27:26:d0:33:16:bd:30:af:f0:0c:90:
aa:87:3a:7a:90:dc:49:6d:fd:99:d0:97:eb:b0:dd:
df:dc:b9:cd:9c:09:d0:d9:d7:48:32:c1:9f:08:07:
c9:98:c0:cd:55:f8:65:e2:5e:ec:22:e3:41:dc:7f:
e3:86:cf:00:ac:14:ca:a9:ce:f6:d1:ed:04:69:8c:
f2:90:67:e6:90:92:4f:5f:af:80:1c:c4:1a:5d:b3:
38:8f:cc:65:10:5c:98:92:22:09:f8:10:92:f6:9d:
61:3b:c5:65:f7:c1:e3:f7:f3:74:2d:97:02:40:f8:
4d:28:19:b1:bd:52:f3:0d:d2:39:81:19:87:88:fb:
d4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F7:B2:54:10:01:37:5F:49:0C:95:C8:82:63:03:D1:B1:BD:71:C5
X509v3 Authority Key Identifier:
keyid:A0:B6:A5:B1:A1:4C:86:D4:CF:B4:6C:4E:86:EC:D4:06:68:04:CC:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLalsaFMhtTPtGxOhuzUBmgEzJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/e1fb52-979d-4436-be51-8584bef0b7d5/1/oLalsaFMhtTPtGxOhuzUBmgEzJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:24:03:fd:e7:4c:98:32:f4:bc:15:f4:e8:e2:40:25:4b:1d:
0b:fc:48:6f:73:68:eb:40:7c:22:3b:cf:09:f0:c3:ef:75:07:
00:a6:0e:b5:a1:30:c9:1c:94:75:96:f8:c7:34:ff:dd:8d:8b:
79:e0:cb:f0:b9:ad:57:e9:e3:2f:4a:53:95:65:43:95:78:41:
f6:18:ec:d1:51:2b:1c:b6:a6:80:96:1a:08:a4:13:3b:23:c8:
09:57:4c:be:12:20:85:67:6a:af:a5:54:5d:fc:48:5c:63:fb:
7c:ff:8d:86:8d:5e:a7:73:a4:23:04:8d:a7:57:19:8b:3d:bc:
9a:48:51:6e:9d:0c:47:c9:da:b6:ba:78:5e:06:0b:1c:fe:3c:
6c:fb:28:db:d8:a4:dc:8e:5d:df:22:53:34:04:12:22:47:0d:
ad:dd:e7:f4:8f:02:f5:82:10:7d:8b:17:04:01:33:df:58:eb:
b9:5c:ed:16:43:35:0c:b1:d3:5e:94:f2:58:0d:37:2e:72:9a:
84:4b:0b:66:37:e5:5e:62:15:8d:7b:69:1e:98:e9:ca:69:71:
94:61:c9:93:4f:d8:6f:30:3b:6e:1e:a7:ba:f7:dc:1c:20:c5:
44:13:a0:99:4a:3e:d3:7a:7c:c5:8a:2e:36:1d:4d:66:ad:04:
b0:8f:60:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:03:49 2025 by rpki-client