Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
File: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft (raw, json)
Hash identifier: SMaFsSFFrbSDfIysALht4XlC2CMFGMiCOAudwfpAIj4=
Subject key identifier: DA:EA:BB:6E:52:C7:2F:53:B3:4C:FA:7D:4A:79:27:16:A7:85:97:6E
Authority key identifier: 3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82
Certificate issuer: /CN=3a6b084426d9de0b10e0141d1de43c7629c19682
Certificate serial: 01988054C312B0163FDF8C8DB08C14DB4760
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
Manifest number: 0CD1
Signing time: Wed 06 Aug 2025 17:01:35 +0000
Manifest this update: Wed 06 Aug 2025 17:01:35 +0000
Manifest next update: Thu 07 Aug 2025 17:01:35 +0000
Files and hashes: 1: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl (hash: CyI4bHiuRIwM423BEZOin8njGwrhq2Y/Ui8XSmJVt50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 17:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:54:c3:12:b0:16:3f:df:8c:8d:b0:8c:14:db:47:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a6b084426d9de0b10e0141d1de43c7629c19682
Validity
Not Before: Aug 6 17:01:35 2025 GMT
Not After : Aug 7 17:01:35 2025 GMT
Subject: CN=daeabb6e52c72f53b34cfa7d4a792716a785976e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:46:f2:39:58:cc:20:74:29:18:64:e9:43:a2:
11:50:96:0b:b4:ac:cc:da:79:c8:2e:d5:78:42:c2:
fc:2b:9c:40:4b:79:5e:ca:c1:0b:38:73:0a:48:68:
36:1c:7f:45:8f:ee:18:2a:1c:35:78:47:c7:16:77:
69:ea:22:21:51:2b:41:6a:b6:2a:89:a8:dd:7c:d7:
2b:7f:e1:51:00:52:62:98:b3:b2:75:13:fb:21:9a:
50:59:79:17:f9:42:18:6d:a0:a0:5c:d6:cc:46:26:
7a:49:7b:b5:7c:0a:49:b4:2d:67:7f:f9:a9:72:46:
11:a6:59:f7:cd:a1:ca:be:20:6f:7b:f1:2e:21:90:
4d:0a:32:86:ca:da:35:ca:8f:21:9d:d9:f9:b6:79:
18:5d:61:06:7f:17:49:ab:09:76:c4:22:d8:3a:3c:
c3:a5:dd:f3:29:e3:40:e3:02:aa:81:b3:9e:de:1e:
cb:e1:d2:5a:f5:29:59:e1:cc:b5:67:7b:a3:41:1b:
1f:c7:2c:0e:38:bc:2b:99:7b:b7:c7:f9:62:f5:59:
19:e2:5f:0c:4c:f2:31:0e:6b:a1:3a:88:50:b0:82:
16:f8:b8:05:f2:82:e6:ec:b0:cb:92:d0:60:61:ff:
51:7b:11:fa:58:1f:a4:e8:ee:f6:f5:6d:bf:66:77:
4c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EA:BB:6E:52:C7:2F:53:B3:4C:FA:7D:4A:79:27:16:A7:85:97:6E
X509v3 Authority Key Identifier:
keyid:3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:63:0d:f2:b2:91:0e:74:a8:42:cf:29:16:aa:da:2f:c7:3e:
81:ef:68:76:d1:0f:ee:d4:d5:d5:94:3e:da:7e:f7:ae:5d:48:
a9:ad:1c:27:b7:ab:86:36:59:eb:7e:60:8e:a7:15:31:90:60:
0f:a0:ec:e4:05:ec:9d:cd:62:e8:3b:60:de:9a:de:03:68:1f:
d8:7d:91:ad:d3:35:95:e7:60:e6:cf:89:1a:e4:9c:60:85:b8:
45:b9:d9:53:ac:2b:92:c4:76:17:a2:d3:ea:b9:35:05:cb:88:
e7:1b:d3:71:67:ad:2d:5f:15:35:e4:4a:0f:9d:b3:28:a4:a3:
27:e8:73:a7:eb:de:2b:4b:3e:8b:74:47:01:35:a6:a1:e5:83:
71:b2:a2:98:01:c4:2b:8c:22:a1:fc:78:ca:28:a8:1a:84:0c:
ea:09:44:7a:0e:fd:81:b7:0d:1a:f1:ad:4b:01:5f:ec:aa:32:
af:aa:60:ca:4f:79:b7:0f:60:ca:40:a0:53:4e:67:ed:9e:c7:
92:a3:12:47:03:38:05:31:79:76:ad:2b:6f:94:9d:03:27:67:
41:0c:af:9b:b2:21:4c:f7:76:a9:e9:98:8c:7d:c8:b9:a7:62:
c5:41:3b:32:9a:a2:b3:05:a4:85:78:8d:f2:ab:7a:0d:ce:36:
fe:fb:62:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:40:56 2025 by rpki-client