Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
File: OmaGndGplxZLpPoj4P1B-zrLEL4.mft (raw, json)
Hash identifier: ULgfjUyGfuuCc+9ljJjcfco+MweRh4IZuMj0bMw6wVM=
Subject key identifier: 17:2B:11:24:24:D3:D5:2F:58:D3:E5:58:87:09:C3:36:7E:08:3F:9E
Authority key identifier: 3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
Certificate issuer: /CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Certificate serial: 0194BABB2B84CA81FDD7B37A2E325D675A5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
Manifest number: 100F
Signing time: Fri 31 Jan 2025 05:00:15 +0000
Manifest this update: Fri 31 Jan 2025 05:00:15 +0000
Manifest next update: Sat 01 Feb 2025 05:00:15 +0000
Files and hashes: 1: FFjeL0IuCbzbDGWfr7U5gi5W5Os.roa (hash: 3sG/fd8pRrUXnkWnOf6agMt6Javmg7cQv1NVJ7eO+0w=)
2: OmaGndGplxZLpPoj4P1B-zrLEL4.crl (hash: jold7z6wzNN409ZTGdrXwGOXcU3m3UopjSiYWpJZKQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:bb:2b:84:ca:81:fd:d7:b3:7a:2e:32:5d:67:5a:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a66869dd1a997164ba4fa23e0fd41fb3acb10be
Validity
Not Before: Jan 31 05:00:15 2025 GMT
Not After : Feb 1 05:00:15 2025 GMT
Subject: CN=172b112424d3d52f58d3e5588709c3367e083f9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:76:47:78:88:e6:37:89:9a:57:76:3f:1a:ca:
35:39:ca:8a:bf:11:f6:fb:09:50:17:70:94:43:2b:
ed:16:c2:82:50:1d:a1:c7:47:3e:5d:29:95:a7:69:
47:2d:76:b7:7e:e6:1d:04:fb:1f:b7:30:3a:1c:de:
36:0e:7e:2b:21:62:5c:5b:78:b9:8d:13:6e:a0:af:
3c:d8:09:f4:88:60:86:09:02:c9:59:b8:66:2f:93:
6b:90:31:31:4b:fb:20:38:f9:81:91:4d:39:38:3d:
8c:47:11:7a:05:76:f6:8f:96:76:30:0b:a6:73:7e:
2d:40:59:2d:8f:1d:f2:ac:1d:fa:c7:95:b9:5f:88:
7b:0a:3a:ad:72:86:39:32:ef:2e:ce:67:0a:aa:58:
ef:b9:2c:19:4d:af:00:5d:a5:18:ba:ae:e7:7c:0d:
8f:34:5a:e4:dc:bd:c1:3d:ad:cd:85:4d:bd:ab:3b:
4b:d2:0e:09:79:07:73:ca:fb:bb:fe:ea:c6:2a:4d:
31:18:01:a0:2b:ce:c8:f2:e5:f7:f8:de:38:29:8d:
64:bd:7c:26:04:53:08:50:0b:af:ff:fd:ae:69:86:
04:66:56:80:97:5c:fd:99:22:96:c1:8d:fe:04:dc:
a2:df:db:48:e3:0e:e2:59:68:fb:43:55:8a:d8:97:
7b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2B:11:24:24:D3:D5:2F:58:D3:E5:58:87:09:C3:36:7E:08:3F:9E
X509v3 Authority Key Identifier:
keyid:3A:66:86:9D:D1:A9:97:16:4B:A4:FA:23:E0:FD:41:FB:3A:CB:10:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmaGndGplxZLpPoj4P1B-zrLEL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9118e3-13da-4d48-9c38-711fc1a2d0a0/1/OmaGndGplxZLpPoj4P1B-zrLEL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:e3:64:c8:ed:2f:f3:1d:95:30:36:1b:63:22:55:48:86:27:
6b:9f:6f:a3:0b:17:e0:f2:24:f2:94:c5:68:5a:eb:50:be:e6:
61:0b:ad:c5:03:6e:a9:3f:0a:21:a1:b4:f4:5a:ae:73:06:ee:
a5:cf:88:5b:e9:c5:09:c3:36:fb:9e:1d:6a:b8:e5:25:c5:7c:
44:3f:e2:4d:f2:11:4c:66:a3:ee:89:40:dc:c0:9b:6e:8b:80:
5e:ea:8e:2c:08:08:4a:64:82:1c:93:bd:72:93:cd:ff:8a:b6:
fb:01:e7:ac:51:27:1b:ec:79:08:d2:b1:1c:b0:9e:1d:2a:9d:
ba:cf:53:da:a7:6d:53:02:d1:6a:5c:b7:6e:93:b9:9f:7e:5b:
af:80:5a:ef:b7:01:c2:9d:14:7f:c4:3e:34:0e:32:3a:68:62:
f5:7c:31:a1:ae:ac:59:ed:52:ea:ff:1f:fb:a0:b2:39:86:00:
1e:8a:d9:73:3f:68:f8:26:c2:33:b4:c4:e1:28:06:09:37:75:
d1:1e:39:10:4b:f6:ad:d2:5d:8d:96:47:6e:18:8a:42:a7:fa:
0a:66:1d:c7:97:f1:26:bf:6c:10:5a:61:7d:ec:df:8d:32:b8:
00:35:88:7c:f8:26:53:77:c8:94:f0:58:54:2d:d7:b3:6b:5c:
9a:02:8e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:29 2025 by rpki-client on console-fra.rpki-client.org