Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json)
Hash identifier: 31+1eFm6OnCY4c9d8dsrsb9nJPZK2vqWueQILrnw5rM=
Subject key identifier: 76:F6:9D:43:17:A9:88:F0:73:B2:0B:DD:35:F8:D6:5C:4B:C7:95:84
Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Certificate serial: 0197B77BF79203DA8AE6FD325C3B8C0864D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
Manifest number: 119B
Signing time: Sat 28 Jun 2025 17:00:44 +0000
Manifest this update: Sat 28 Jun 2025 17:00:44 +0000
Manifest next update: Sun 29 Jun 2025 17:00:44 +0000
Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=)
2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: KC8LiQSf6/P0MWsbnrcTwMKvMF7Aa7X6HQ4f8zMxJpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7b:f7:92:03:da:8a:e6:fd:32:5c:3b:8c:08:64:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Validity
Not Before: Jun 28 17:00:44 2025 GMT
Not After : Jun 29 17:00:44 2025 GMT
Subject: CN=76f69d4317a988f073b20bdd35f8d65c4bc79584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:93:57:ec:aa:01:e1:86:8c:50:fc:7b:ca:11:
c0:e3:8d:ff:5e:3b:38:2e:f3:35:cc:74:d4:bf:9e:
af:6f:72:4d:30:18:b7:a2:51:64:53:1a:af:54:ac:
17:a7:f4:dc:1b:99:b4:b0:1b:ee:51:61:dd:03:02:
8e:fb:e5:34:d8:91:10:96:2c:e2:ac:09:16:c2:35:
f1:0a:36:36:5d:05:77:8d:53:26:5c:e3:49:cc:2b:
12:fb:da:0b:76:02:2f:e9:cf:84:e9:af:e2:20:53:
ea:68:6a:ce:e0:86:97:9d:7a:4a:46:f1:88:c6:92:
36:18:bc:f1:d8:9c:48:8b:45:ff:be:54:b3:b3:dc:
34:5e:7a:94:62:af:a0:b4:72:8e:db:0a:d9:f7:ed:
3c:e2:a2:32:03:39:f8:5a:4f:d9:e1:fb:13:e1:9c:
54:0d:33:39:f4:13:e6:70:34:66:1d:51:38:17:ed:
34:28:8e:86:9d:91:a6:aa:a7:fd:74:e2:ea:86:85:
22:61:8d:ab:9d:25:98:6c:4b:df:2a:45:fe:9c:a5:
94:f0:76:22:db:5f:f2:19:4f:d4:51:39:19:80:4d:
b5:4d:11:e0:aa:81:7b:a4:71:65:0b:57:84:1e:58:
a1:20:bc:ff:ea:d3:84:3f:a7:40:c5:54:c1:da:a0:
f4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F6:9D:43:17:A9:88:F0:73:B2:0B:DD:35:F8:D6:5C:4B:C7:95:84
X509v3 Authority Key Identifier:
keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:f3:a6:85:b7:7b:8b:4b:57:04:56:fb:55:ba:21:46:66:cf:
9e:40:c5:63:14:a7:80:44:60:de:0a:0a:30:20:4f:1c:45:57:
88:eb:86:25:89:75:c2:96:c9:0b:71:4a:b0:2c:1d:aa:53:eb:
c5:a5:4d:e4:03:73:63:0e:cb:4a:26:d0:f6:e5:a5:fc:10:b9:
13:e4:ce:ab:69:e2:4e:30:6b:9c:b4:c4:c9:b9:1d:10:59:92:
e2:d0:aa:99:9f:c6:39:37:7b:33:17:24:5c:65:cd:04:d4:92:
1a:b3:6e:cd:75:fe:b7:c6:2c:80:bd:26:ca:9a:4d:af:cf:f9:
ab:e1:8b:14:be:6f:68:fe:09:25:69:d5:b8:a5:a3:4a:e3:80:
c0:c6:58:b7:33:71:b0:87:2c:e9:1a:44:48:37:c4:94:47:c0:
15:ab:7e:86:fa:ff:c9:fb:94:cc:1a:e8:6c:a9:be:fe:69:2a:
6b:01:79:07:cb:90:45:ac:7a:95:14:9e:2b:0b:50:7e:ce:16:
92:ee:9e:6d:8a:97:1f:47:8d:30:e3:7c:b3:c7:c7:2e:6b:d7:
23:f6:1c:a4:0f:91:f8:6f:36:e5:c0:f6:9e:0e:73:f7:2a:2b:
8b:fe:19:cb:f6:0f:ae:0a:82:5a:f6:42:c6:bb:28:2b:02:1d:
5e:72:0e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:50:42 2025 by rpki-client