Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json)
Hash identifier: lmH6R/+JJFRJbaYLrHHYok+88vVFmrdVKc6Ta107bkk=
Subject key identifier: CC:B8:72:FB:3E:7B:5A:1C:F1:4E:59:9B:8D:6A:F8:87:F3:D2:29:C4
Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Certificate serial: 0197700823DECE36F2251DBF91D4D6475A49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
Manifest number: 1176
Signing time: Sat 14 Jun 2025 20:01:11 +0000
Manifest this update: Sat 14 Jun 2025 20:01:11 +0000
Manifest next update: Sun 15 Jun 2025 20:01:11 +0000
Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=)
2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: pz0nbSVUqyPoZARX1ihzRc/+CJHp/WOFNbxZ0sP+sTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:08:23:de:ce:36:f2:25:1d:bf:91:d4:d6:47:5a:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Validity
Not Before: Jun 14 20:01:11 2025 GMT
Not After : Jun 15 20:01:11 2025 GMT
Subject: CN=ccb872fb3e7b5a1cf14e599b8d6af887f3d229c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ea:95:22:1d:70:f4:76:c4:ac:c1:7e:ac:a0:
87:8a:ca:79:d5:e5:c5:4a:f1:3a:a4:ba:90:a3:63:
95:1e:7f:81:52:88:fe:d9:d6:fa:9f:ec:75:28:cd:
80:9c:ad:72:9f:57:3e:c3:19:fe:3f:ae:6e:3d:7c:
07:30:75:24:be:6a:b7:1f:30:04:20:06:e2:d5:65:
47:4a:09:f0:b1:ae:fc:2b:cc:3b:36:d9:03:db:cf:
76:a9:6e:a4:e0:e3:5b:1a:67:bb:2d:36:04:b6:3f:
84:be:72:6a:50:17:87:8e:e6:d4:dd:08:7a:70:d4:
4d:42:d3:4d:11:d5:e9:d1:90:18:d6:7c:95:a2:87:
10:e3:f4:c3:8d:a1:09:ec:24:f0:a7:98:2a:00:b5:
c8:2f:38:ba:26:c2:f0:22:85:98:7e:a5:62:c4:0e:
f6:cf:96:2a:85:42:be:41:8e:47:44:00:13:91:52:
2d:44:48:94:66:9e:1d:c7:ed:ee:ed:c0:37:7b:e4:
42:a0:73:4d:98:11:0c:25:11:f0:41:f1:b4:05:c3:
44:bc:05:2b:10:94:6c:1d:3d:aa:3e:22:09:4f:d6:
04:84:1a:c5:34:5b:db:4c:13:14:7d:d5:6e:9a:92:
a3:fb:b4:32:8b:db:68:ac:d5:da:3e:9c:6c:8f:80:
e5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B8:72:FB:3E:7B:5A:1C:F1:4E:59:9B:8D:6A:F8:87:F3:D2:29:C4
X509v3 Authority Key Identifier:
keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:cc:6a:93:34:e4:04:1b:c9:32:c1:aa:12:15:c3:c0:85:20:
98:b6:6e:a6:d9:17:e4:e9:e1:7a:15:bf:20:63:40:09:69:f6:
22:21:c9:cf:00:86:e4:6c:40:bb:1c:26:e6:1e:35:ad:a6:18:
5e:53:8a:c0:87:55:69:0a:86:49:30:52:64:c1:ce:c3:b2:94:
91:de:d1:72:8b:18:b7:18:f1:90:24:d8:50:31:0b:73:e9:41:
22:64:1e:84:61:d3:b2:41:5d:c4:76:1d:f0:60:45:69:54:80:
81:e6:56:7e:fa:3e:d6:4b:fa:a2:ea:e0:66:2a:a3:1c:16:62:
a6:96:de:25:61:34:3b:b6:f6:02:8b:ed:17:3b:73:d0:76:e0:
76:1b:29:f7:42:26:d9:ea:a6:5a:99:26:d5:dd:64:58:bf:5f:
9f:36:25:0c:5f:fb:99:28:a5:76:d3:6d:50:04:42:ba:33:20:
7b:1d:97:10:74:7b:33:ee:f3:79:69:9d:10:e9:bd:30:f2:be:
d2:24:36:d8:5d:b1:3e:5b:33:30:e4:fe:48:b4:59:b2:57:39:
14:63:29:eb:2f:43:ea:16:f2:ee:67:49:73:f5:2b:78:b9:f9:
4b:3f:57:6f:e5:95:f2:25:99:1e:85:05:e8:ea:5c:6f:bc:b3:
5b:59:58:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:19:28 2025 by rpki-client