Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json)
Hash identifier: zwOiVNmb5E9M1Dkay68gwd+XCzGTIujMtjd4xcAI+VA=
Subject key identifier: 37:02:32:78:1C:E7:D6:11:24:46:30:C2:DC:6B:3D:64:87:50:BF:07
Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Certificate serial: 0199FEB5179A02232F2F68773A97A334E18F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
Manifest number: 12C9
Signing time: Sun 19 Oct 2025 23:01:44 +0000
Manifest this update: Sun 19 Oct 2025 23:01:44 +0000
Manifest next update: Mon 20 Oct 2025 23:01:44 +0000
Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=)
2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: 5cIRbR5jw4IR0EHvGHvRJL+uCKR+Ea2YVIO8Y+MZs+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b5:17:9a:02:23:2f:2f:68:77:3a:97:a3:34:e1:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Validity
Not Before: Oct 19 23:01:44 2025 GMT
Not After : Oct 20 23:01:44 2025 GMT
Subject: CN=370232781ce7d611244630c2dc6b3d648750bf07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e9:e9:c5:65:b5:a1:b0:60:c3:10:72:b0:d1:
d4:7d:6d:33:d6:29:bd:eb:4b:a3:6b:4f:ff:26:01:
ff:26:83:01:3c:87:39:39:e9:23:01:09:ca:a9:ba:
d0:cc:e9:af:3b:e0:01:fb:82:a3:5e:5c:15:b8:b4:
e9:e6:22:37:df:28:4a:5b:96:1e:ce:5e:98:86:53:
4f:9a:15:90:40:41:66:f4:d7:1d:22:99:3f:ef:88:
04:17:c1:96:5e:d5:7a:09:97:6f:e1:e5:31:f2:10:
d7:08:a4:bb:41:06:a6:68:b0:a0:60:9f:5d:cd:b3:
f9:1d:2f:6b:e6:4b:0d:dd:13:1d:44:49:2a:f0:b4:
83:c7:66:4a:2c:b2:2e:a5:55:5a:2d:ce:51:bd:1e:
b3:5e:e3:7b:f0:0d:c5:d9:74:35:27:f5:a8:09:06:
e9:9a:60:ac:8a:61:19:76:f1:b9:38:f3:f9:82:97:
5c:9f:ac:28:5a:2e:1e:d2:bb:66:61:b8:33:30:57:
fa:c9:6d:12:36:85:9e:c7:21:47:8d:fe:28:2b:c9:
52:7d:f2:e3:a6:69:9c:a6:5b:07:b1:84:ba:a7:46:
17:33:05:ae:29:68:12:e3:6a:49:61:30:f2:01:ff:
6d:fc:00:4a:cf:f0:5f:c8:a6:1f:48:1c:c9:71:68:
07:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:02:32:78:1C:E7:D6:11:24:46:30:C2:DC:6B:3D:64:87:50:BF:07
X509v3 Authority Key Identifier:
keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:0d:12:d4:e3:b6:c1:e0:28:bc:7a:98:71:9e:7e:7b:a5:29:
2d:81:a6:eb:e4:e9:09:4a:d0:71:d2:f8:55:2a:15:97:6e:8a:
da:2d:4a:4c:ed:a4:f0:5e:aa:2e:a5:fc:4b:7c:d5:60:fa:b2:
2a:27:e7:7c:d4:76:8a:4f:97:3d:4a:13:5b:dd:4a:de:12:ed:
e8:59:5c:c2:25:dd:16:76:c2:5b:66:eb:8f:de:77:0c:e7:e9:
dc:64:5d:bb:a8:41:74:02:27:43:50:3f:aa:41:64:13:3e:7e:
e3:ac:b6:73:09:7a:5e:eb:b8:9b:2b:1d:72:2f:b0:fe:64:ea:
88:75:7a:ae:71:fc:22:c8:c0:ef:82:17:71:9b:83:0e:50:93:
41:16:3e:cc:cb:58:c6:ac:d6:d5:2e:66:0c:1c:19:d7:ad:09:
97:55:80:9e:0f:75:cd:53:75:bc:2e:d3:46:72:9e:76:cf:53:
1e:c2:e6:12:5d:29:85:ef:5e:2a:52:87:94:a4:6a:ed:6d:12:
7f:c1:94:e7:32:11:19:47:c3:31:db:8c:37:9e:05:6e:49:00:
bd:4d:25:db:83:0f:1c:ff:ec:45:ea:e4:89:22:81:09:ac:c9:
8c:4e:71:51:9e:29:7c:25:39:62:92:b0:7a:03:8d:b9:59:a9:
45:fe:8f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:48:04 2025 by rpki-client