Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json)
Hash identifier: S2s59eVIMvsAQDA4MsuDznE3QYLb8bPWPjlI3WHoDOc=
Subject key identifier: 95:62:F1:EA:A8:07:E1:BB:88:CF:E9:64:38:9E:77:75:6C:B9:95:FF
Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Certificate serial: 0198D73B71DCF70C630BAE00A62017793797
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
Manifest number: 1230
Signing time: Sat 23 Aug 2025 14:00:53 +0000
Manifest this update: Sat 23 Aug 2025 14:00:53 +0000
Manifest next update: Sun 24 Aug 2025 14:00:53 +0000
Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=)
2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: 8VxAXwJ5OAUedUwgwSGkHGKXLE8Mn++KE9dxARXMEDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:71:dc:f7:0c:63:0b:ae:00:a6:20:17:79:37:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Validity
Not Before: Aug 23 14:00:53 2025 GMT
Not After : Aug 24 14:00:53 2025 GMT
Subject: CN=9562f1eaa807e1bb88cfe964389e77756cb995ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ee:82:98:e3:e3:36:02:28:c6:a5:28:ef:5e:
bb:9a:18:57:4b:3c:6d:9f:2d:2c:9b:34:3f:71:b6:
75:d5:1c:69:1d:f3:71:9f:cf:fa:8a:c5:69:67:73:
85:4c:78:02:36:99:33:2f:b9:df:a1:a9:0e:d7:74:
54:80:71:15:aa:d6:27:e3:c3:c6:b8:83:60:86:5d:
a7:80:40:b0:64:e9:a4:5f:1d:5a:f5:1b:5d:63:d7:
44:2d:06:cd:88:17:ee:08:3c:42:e8:83:f6:e7:7e:
07:e3:df:41:02:ff:31:06:ff:47:0a:1c:de:cf:55:
99:89:09:71:f8:2d:e3:b7:3d:85:48:40:09:86:2e:
45:5c:69:62:32:3c:79:be:36:2a:3e:cd:08:05:70:
c7:54:c7:5d:61:29:73:8f:1f:8e:1f:6c:5b:43:18:
c8:c5:27:b3:2c:11:47:1a:bd:f5:d5:3b:7e:1b:3a:
e6:0b:3d:bc:53:7d:0d:77:e5:cb:22:08:44:06:4d:
10:bd:e2:65:60:cf:55:9f:bf:3f:3f:f9:cd:a7:37:
fe:71:54:1a:32:86:be:07:84:7e:d7:6d:a4:3b:33:
fb:10:23:a5:0d:00:62:ff:ba:51:03:c9:0f:97:a6:
d1:ee:1f:ed:80:25:c8:93:38:8c:6f:d6:10:d4:f7:
30:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:62:F1:EA:A8:07:E1:BB:88:CF:E9:64:38:9E:77:75:6C:B9:95:FF
X509v3 Authority Key Identifier:
keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:04:54:04:da:eb:d2:44:1f:b4:0b:76:9d:d0:dd:02:73:3c:
db:45:fe:af:b2:68:62:86:c1:33:5a:f2:bd:da:e4:71:18:b1:
38:4a:d0:08:d5:f6:b3:23:84:6d:9e:45:68:a7:8f:a1:33:21:
e9:0b:50:11:b4:19:5a:95:3f:27:57:5c:4f:b1:4e:e7:4b:14:
47:5d:f5:93:77:e0:37:33:4f:09:24:b1:34:e6:b0:ef:9b:57:
5a:9f:1c:58:4b:74:52:8c:74:42:cd:b6:b0:e8:f4:20:c3:36:
b0:65:3b:13:a1:5b:4d:f1:9c:17:76:ca:a3:4d:ea:58:b2:73:
d8:bc:a8:9b:5d:1d:c6:a2:66:0d:db:83:65:64:c6:cf:a7:f6:
ac:f6:0b:90:9c:ea:e3:7b:31:eb:e8:36:a7:40:39:ff:73:fa:
1b:e4:f0:12:a5:c9:d5:7d:04:d3:e9:42:e7:5b:d0:66:8e:0c:
f9:81:2f:97:08:3a:eb:c1:da:c8:81:1a:82:e0:be:52:6b:2a:
dc:9d:5c:77:3b:7a:44:62:ef:9e:a6:b5:f5:b6:5a:8c:fd:6a:
9b:b0:2c:c5:8d:77:e3:f7:0f:c4:91:1b:70:61:8d:b7:21:e6:
45:1d:1b:ee:c0:b3:85:36:7c:be:09:0d:ad:54:ce:70:84:8a:
3d:0d:3b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:48:26 2025 by rpki-client