Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json)
Hash identifier: 1427/IdHm2pSmka6EfDsjN9GAbsxag433xVQ+6bVrns=
Subject key identifier: 34:2C:B8:67:0C:BD:22:D6:4F:B2:05:CA:C7:28:11:8C:B4:18:EB:77
Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Certificate serial: 019874BDDF1D9416D1EDCF72BF3B45C6C538
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
Manifest number: 11FD
Signing time: Mon 04 Aug 2025 11:00:56 +0000
Manifest this update: Mon 04 Aug 2025 11:00:56 +0000
Manifest next update: Tue 05 Aug 2025 11:00:56 +0000
Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=)
2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: GGjXR5PnHXVYwygtwSd8TvoJOQ8qPj7EkhBDiyaAx0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:bd:df:1d:94:16:d1:ed:cf:72:bf:3b:45:c6:c5:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Validity
Not Before: Aug 4 11:00:56 2025 GMT
Not After : Aug 5 11:00:56 2025 GMT
Subject: CN=342cb8670cbd22d64fb205cac728118cb418eb77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e3:12:b8:10:4a:9b:7f:b6:dd:19:45:ec:ea:
94:e2:cf:6a:d5:06:6e:7c:6a:71:f3:2d:f8:98:03:
e7:56:41:ea:25:92:39:73:4e:3a:55:a3:f7:f6:17:
40:a7:b0:86:67:d1:2b:6e:e6:0f:bb:f1:ad:4f:7f:
79:a5:71:6e:f8:22:c5:b3:89:a5:e7:8e:cd:18:00:
eb:22:a1:8b:19:7f:1a:e5:f6:db:33:67:78:fc:98:
46:11:20:f8:3b:2a:b3:17:2c:9c:f8:3c:02:bb:bc:
74:f2:c0:c6:59:09:ce:d0:c7:7e:7b:7f:8c:ed:38:
9c:c0:7f:cd:57:35:c4:61:2c:6a:19:d5:c9:d7:b5:
7a:ca:dd:29:08:15:c3:69:fc:52:63:63:08:42:a3:
31:4c:0d:bd:61:86:61:1f:42:5f:90:5c:f7:2b:bf:
2e:13:f9:57:83:f8:88:8b:94:9b:f0:b3:a1:91:32:
66:28:da:21:dd:56:85:82:26:41:9b:39:c5:d4:d3:
d7:22:82:fc:35:8e:2b:af:45:fc:99:b2:18:5c:a8:
8d:cf:d1:68:8c:e0:7b:a7:01:fa:99:8f:f4:26:41:
2b:6e:43:e0:eb:b4:63:09:c5:af:97:ce:d7:56:ba:
00:dc:cd:24:46:84:25:ef:73:1d:a2:f7:be:b9:cc:
f5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:2C:B8:67:0C:BD:22:D6:4F:B2:05:CA:C7:28:11:8C:B4:18:EB:77
X509v3 Authority Key Identifier:
keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:72:bc:80:bc:32:c5:82:d8:48:7b:79:bf:ad:55:a9:5b:c8:
b9:62:8a:33:d6:6f:89:6c:34:7c:01:f9:80:6c:6b:f7:93:1e:
10:41:22:41:5c:6a:00:85:72:67:55:94:d3:d0:38:ce:47:24:
46:59:98:75:9a:e7:bf:53:0f:63:ad:86:aa:d7:16:2b:2b:e2:
a8:91:2a:eb:4c:b8:fc:6b:e0:b0:f9:c9:93:9b:76:18:64:e9:
58:fa:b5:8a:1b:17:93:cf:11:9c:5d:79:b2:f9:15:76:8b:98:
5e:ff:96:6c:90:5d:53:25:2f:e7:f5:e5:55:4e:3d:b7:c2:9c:
14:42:c5:e9:39:de:b1:94:ed:2c:b3:18:8e:89:37:e8:c3:12:
d3:d8:38:c2:f9:93:d4:4d:0a:e0:ae:b3:88:a2:06:8c:92:ef:
9d:7b:c4:ab:4b:b3:9d:54:85:f8:b1:72:e6:32:e6:0c:66:a7:
70:66:ec:79:93:c2:04:9c:56:46:ea:ae:01:f5:3c:36:42:af:
9b:62:cb:29:a6:c5:bd:1b:f1:77:e1:72:49:30:b2:a2:34:d8:
51:8b:aa:31:2d:57:0f:af:96:b4:64:3b:d9:17:4a:0c:6f:00:
3b:27:9f:cd:6a:76:08:50:85:36:10:14:e4:26:84:bf:fd:b4:
3b:13:a2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:00:59 2025 by rpki-client