Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json)
Hash identifier: zIYLmC7kM/omgezKh+BeWd386pcUt8/fQ4F96i8Nr4w=
Subject key identifier: 33:F7:4F:71:B7:2F:D9:BE:58:00:09:91:5E:C9:FD:2F:82:84:56:12
Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Certificate serial: 01969F75B84A3096BDEEE3F3469466B9AEE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
Manifest number: 110A
Signing time: Mon 05 May 2025 08:00:14 +0000
Manifest this update: Mon 05 May 2025 08:00:14 +0000
Manifest next update: Tue 06 May 2025 08:00:14 +0000
Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=)
2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: l7gieM2bQDLH/MWiA/lsDdQxnamt+FgTSoYVnYz58IE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 08:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:75:b8:4a:30:96:bd:ee:e3:f3:46:94:66:b9:ae:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Validity
Not Before: May 5 08:00:14 2025 GMT
Not After : May 6 08:00:14 2025 GMT
Subject: CN=33f74f71b72fd9be580009915ec9fd2f82845612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b9:c0:9d:2a:3d:2c:76:a0:d8:0f:fd:12:0a:
c6:22:ac:48:2d:12:a7:5a:6a:48:24:e2:de:a4:07:
93:9c:a9:dc:9a:b0:52:b2:7e:30:9b:72:a8:cf:76:
69:25:92:39:db:13:35:04:4c:f0:50:e7:e2:af:87:
fd:75:5c:60:9c:b5:ef:7f:77:12:71:32:61:65:e8:
0d:40:49:4c:24:3a:2e:f9:5b:b5:53:a6:1c:72:2a:
40:b1:a6:99:6e:fb:c2:0f:0b:cf:29:23:7d:86:a4:
cd:81:65:64:30:e2:ea:98:5b:b8:ab:05:d6:4b:4e:
ff:8d:0d:34:46:27:42:f3:98:df:06:63:82:84:03:
e5:31:22:75:06:33:aa:32:1a:37:11:ad:a7:c2:a5:
bb:83:12:5c:52:5e:4f:c2:69:2d:48:ca:e3:11:f8:
61:66:e6:a7:79:e4:56:a6:d6:64:64:06:7e:15:af:
e7:6e:be:4a:89:48:45:e7:8d:f3:46:f0:39:d8:8b:
71:fc:9f:4e:6e:b8:28:2d:b6:8e:fc:9e:8c:f8:88:
09:ff:26:71:ad:ee:92:ac:9d:31:76:74:76:de:08:
a3:53:e0:e2:3f:60:9d:78:a7:a4:89:76:4d:96:46:
b3:fe:57:cc:28:26:7a:de:5c:13:14:8c:36:ed:24:
11:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F7:4F:71:B7:2F:D9:BE:58:00:09:91:5E:C9:FD:2F:82:84:56:12
X509v3 Authority Key Identifier:
keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:b7:08:a2:19:b8:a4:d6:d3:7a:69:8a:7d:45:cc:d0:02:09:
48:3b:08:98:df:49:b7:cb:de:0b:dd:82:b8:5a:89:ec:e9:31:
aa:ce:a6:13:7d:99:7d:81:2f:3b:46:dd:a5:07:cf:ef:fe:14:
e2:89:79:c3:ef:f9:1b:ac:f1:43:ac:c1:e2:c9:81:0e:2a:0e:
54:84:13:94:0c:45:74:d1:de:09:65:4c:55:bd:c1:d4:e8:c5:
9b:f4:d4:eb:19:80:d8:ef:9a:e2:63:e5:41:1d:56:66:0f:8f:
0e:34:25:8e:3a:94:21:ee:74:da:8d:e9:e5:fd:d6:5f:93:f9:
ed:9a:a0:0e:a4:09:2e:fb:9d:b6:ff:46:54:c2:46:2a:2d:d1:
52:bc:40:20:2f:ae:62:1b:16:7e:7b:5f:54:4b:b0:8f:09:89:
1e:f2:97:6e:fd:3e:e4:11:ca:78:8e:e1:71:22:5b:12:83:a6:
f2:6f:14:8c:43:e1:b7:f0:9b:fc:f7:f4:c9:a4:06:09:c3:b4:
f3:e6:0f:1f:a8:8e:a9:de:d9:ef:38:d8:71:90:3d:c0:3a:f0:
85:64:b0:09:66:c3:cb:ab:d8:1c:7e:20:78:06:e4:89:87:f1:
ef:d9:80:7d:e6:65:8b:41:71:a9:bc:9b:59:56:8c:22:b6:ed:
4c:8b:be:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 11:56:36 2025 by rpki-client