Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
File: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft (raw, json)
Hash identifier: DEtOoNDGleDIBq9JiKxvFoB7su1r7FHYNbT2zFsnyW0=
Subject key identifier: E6:D4:A8:CA:4D:9F:A6:19:9E:6C:93:C7:AD:00:FA:39:50:83:D0:F2
Authority key identifier: 3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82
Certificate issuer: /CN=3a6b084426d9de0b10e0141d1de43c7629c19682
Certificate serial: 0197B77C9C6A4604D7DF24E886C8E087E7A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
Manifest number: 0C69
Signing time: Sat 28 Jun 2025 17:01:26 +0000
Manifest this update: Sat 28 Jun 2025 17:01:26 +0000
Manifest next update: Sun 29 Jun 2025 17:01:26 +0000
Files and hashes: 1: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl (hash: EBr9sUfKi9FNesE90I9O5demEKXTNre4lUGuKS4HdgE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:9c:6a:46:04:d7:df:24:e8:86:c8:e0:87:e7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a6b084426d9de0b10e0141d1de43c7629c19682
Validity
Not Before: Jun 28 17:01:26 2025 GMT
Not After : Jun 29 17:01:26 2025 GMT
Subject: CN=e6d4a8ca4d9fa6199e6c93c7ad00fa395083d0f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b8:42:54:25:14:49:1d:d8:10:df:da:b1:c4:
ef:c5:fc:a2:37:ee:d3:c9:0b:23:22:14:65:01:27:
52:51:1d:ef:a6:68:0b:89:da:89:a0:8b:70:ef:6a:
ee:e0:de:22:6c:9b:ef:b1:ec:2a:46:84:01:fa:6d:
0a:92:8c:9b:67:3e:4c:de:c6:66:26:0e:49:9b:17:
06:75:ac:19:8f:61:4f:af:51:28:d8:da:03:ea:0d:
ea:38:56:dc:f4:5a:f1:42:a1:d6:a7:d0:c3:61:44:
7e:98:a4:17:fa:0a:b9:13:50:99:0a:6f:7f:da:af:
e8:e4:f6:0b:05:cf:2a:85:01:a0:38:17:e1:d9:73:
30:1c:c7:60:a0:a7:27:3a:a6:43:00:c8:04:9a:5a:
ff:9e:b3:f9:af:39:46:a7:0f:79:75:8c:99:73:f8:
cf:a2:60:ec:7b:b7:ed:26:52:29:b2:e9:a8:be:2c:
74:34:b8:b3:5b:e7:17:3c:37:a0:57:37:83:61:a1:
98:d6:cc:fa:57:7e:dd:ad:d1:ad:58:bc:b3:60:b1:
ad:6f:6f:97:2a:41:5e:c8:25:b3:ef:ae:b5:b6:e4:
95:c1:3f:d0:65:25:12:6b:ff:63:2b:ac:be:76:aa:
58:06:b5:b0:2a:8b:19:02:5a:67:e5:9b:2d:74:1f:
db:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D4:A8:CA:4D:9F:A6:19:9E:6C:93:C7:AD:00:FA:39:50:83:D0:F2
X509v3 Authority Key Identifier:
keyid:3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d3:e7:49:36:7a:41:f1:f1:5e:b1:b7:1d:e6:4a:13:63:53:
8c:d1:ce:f0:f3:81:fe:ee:79:ff:c7:25:9f:f3:8a:d9:88:4c:
59:0e:73:1b:ac:50:18:25:4a:15:4e:a1:c4:cc:51:51:bb:a6:
63:d7:fa:84:7b:1c:17:e9:db:ef:ab:8a:7c:89:d7:dd:c6:63:
11:72:4e:ae:4a:5b:35:62:b0:33:6e:f9:9b:a3:5b:a9:cf:cd:
c8:7c:79:c5:26:35:cf:e3:4e:ea:f4:8f:a1:5e:4f:cd:e5:c2:
a4:ed:c1:e9:7f:c6:a1:6f:f8:84:87:13:9d:8c:6b:dc:32:1e:
8d:91:58:b7:46:45:10:8b:8a:b3:f9:29:7b:a1:af:b6:53:f7:
eb:e6:5b:4b:69:63:51:c3:db:4c:e8:9c:58:ca:50:57:a5:53:
f1:3d:e0:4e:12:54:6e:b4:bb:c4:0d:15:dd:39:a0:94:fc:96:
f2:10:f6:a1:08:49:d4:c1:a8:6c:aa:c7:a2:72:a5:4c:00:fa:
35:ea:d0:82:4d:92:2c:ad:ac:e2:6e:0d:04:33:8b:ed:3e:0d:
89:9e:4e:51:7b:62:50:f5:0b:43:47:bb:a5:b9:a2:91:ac:37:
fa:35:7f:d8:6f:f9:b2:fb:48:4b:a6:d9:e1:4e:38:34:f4:24:
6a:d9:7a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:30:25 2025 by rpki-client