Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
File: om-n7jCto1qx_ATzQP7fZHqfgWI.mft (raw, json)
Hash identifier: pDi41zZqngCSAf2naF3QHoJgVjbYdhTFiPYdz6ntPu0=
Subject key identifier: 33:BD:8B:DF:FC:93:1C:7B:D8:7A:01:BD:8D:AB:EC:FF:8D:4B:CD:72
Authority key identifier: A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62
Certificate issuer: /CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
Certificate serial: 01984A0A5B3EC4CBF7B9DEB506C20B396E41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
Manifest number: 1594
Signing time: Sun 27 Jul 2025 04:00:49 +0000
Manifest this update: Sun 27 Jul 2025 04:00:49 +0000
Manifest next update: Mon 28 Jul 2025 04:00:49 +0000
Files and hashes: 1: GTYzwhiUq_J5h32d88k5dHS-pBI.roa (hash: DRh7rLYfY68cEV1ylr9M82OojbgdOB+T4zEG9BafNT4=)
2: om-n7jCto1qx_ATzQP7fZHqfgWI.crl (hash: IYRmMZeHXrTeFWB++dBv6SC7slxgtMezZ8Ju/db3sws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:0a:5b:3e:c4:cb:f7:b9:de:b5:06:c2:0b:39:6e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
Validity
Not Before: Jul 27 04:00:49 2025 GMT
Not After : Jul 28 04:00:49 2025 GMT
Subject: CN=33bd8bdffc931c7bd87a01bd8dabecff8d4bcd72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a8:9f:06:84:4d:9d:e9:67:1c:e4:de:ab:f1:
89:bc:a4:c5:7c:4f:96:49:00:71:28:11:fd:ba:74:
9b:8d:0b:47:94:9f:4a:48:a8:89:23:8b:31:2f:c7:
bf:53:7d:54:14:fa:e7:bd:fa:0e:f8:36:fc:eb:4d:
af:18:7e:a7:96:b9:ab:20:49:ce:dd:f5:ef:d4:48:
55:25:d4:a0:36:8e:e9:ce:df:bd:94:34:29:47:2c:
0c:46:2f:b3:93:33:0a:f4:12:10:77:1f:c3:97:11:
72:5c:09:fc:ec:ca:4f:dd:5c:fa:9f:17:38:d6:1f:
29:05:29:3b:93:88:54:f4:36:40:c1:ba:d7:25:8b:
2c:a7:af:b9:f9:17:e0:73:4f:55:0c:19:ab:8a:64:
05:cc:f9:fe:d7:a1:00:9e:d4:da:bc:9d:15:45:23:
f3:95:f3:9f:9f:be:f9:87:fe:94:3e:39:3f:c7:91:
1a:9e:83:fb:e4:07:a2:b9:06:67:64:5e:72:3b:da:
71:89:c7:0d:7e:06:a6:b8:04:0c:84:57:bd:a8:79:
24:7b:07:8a:72:2f:ce:70:cf:cd:46:c0:5d:cf:2b:
fe:c6:9f:ac:34:81:fa:40:bf:fa:4c:f4:5e:ac:9d:
75:ae:cd:47:16:e6:7b:d8:2c:ad:5f:af:9f:97:f7:
d5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BD:8B:DF:FC:93:1C:7B:D8:7A:01:BD:8D:AB:EC:FF:8D:4B:CD:72
X509v3 Authority Key Identifier:
keyid:A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d5:9a:68:99:86:00:28:9f:fd:58:cf:43:d8:e3:31:7f:40:
6b:01:06:df:51:f3:f2:b8:4f:f7:76:10:e9:e6:f9:2c:d6:a4:
ec:71:38:eb:25:f4:be:29:aa:f2:aa:d2:8e:a9:26:50:07:40:
a0:45:f5:9c:81:df:00:d1:7b:ee:8e:b1:07:36:e0:04:4b:0c:
71:ee:0e:3f:f5:46:d9:83:61:0a:15:b1:73:cd:8b:91:1b:99:
ac:91:d2:d6:80:4f:1d:0b:b6:0d:ac:0f:76:b6:6a:e5:1d:27:
da:04:ef:76:62:41:1a:45:c3:a4:48:3f:2d:ff:da:b3:b3:9a:
2a:01:94:b1:fd:3c:33:ea:6d:a9:93:5a:86:2b:89:bf:d3:c0:
28:0c:a7:cd:7b:89:99:4f:ca:e9:5e:07:b8:8b:19:e3:52:ee:
e6:65:f8:4d:7c:76:4c:dc:2c:21:4f:6e:33:b1:10:06:54:51:
01:30:7f:23:d7:a3:59:24:9b:48:6e:96:4f:c7:91:34:37:9e:
e4:3e:c1:77:3f:bb:13:80:55:90:a5:41:be:9e:8a:ec:10:21:
f6:7e:fa:57:6e:eb:79:c1:06:0d:5e:87:71:a1:23:2e:46:fb:
5d:40:50:9d:69:0c:56:4e:62:e7:59:87:91:2f:36:34:61:5b:
82:c4:ab:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKCls+xMv3ud61BsILOW5BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNmZhN2VlMzBhZGEzNWFiMWZjMDRmMzQwZmVkZjY0N2E5
ZjgxNjIwHhcNMjUwNzI3MDQwMDQ5WhcNMjUwNzI4MDQwMDQ5WjAzMTEwLwYDVQQD
EygzM2JkOGJkZmZjOTMxYzdiZDg3YTAxYmQ4ZGFiZWNmZjhkNGJjZDcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6ifBoRNnelnHOTeq/GJvKTFfE+W
SQBxKBH9unSbjQtHlJ9KSKiJI4sxL8e/U31UFPrnvfoO+Db8602vGH6nlrmrIEnO
3fXv1EhVJdSgNo7pzt+9lDQpRywMRi+zkzMK9BIQdx/DlxFyXAn87MpP3Vz6nxc4
1h8pBSk7k4hU9DZAwbrXJYssp6+5+Rfgc09VDBmrimQFzPn+16EAntTavJ0VRSPz
lfOfn775h/6UPjk/x5EanoP75AeiuQZnZF5yO9pxiccNfgamuAQMhFe9qHkkeweK
ci/OcM/NRsBdzyv+xp+sNIH6QL/6TPRerJ11rs1HFuZ72CytX6+fl/fVWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDO9i9/8kxx72HoBvY2r7P+NS81yMB8GA1UdIwQY
MBaAFKJvp+4wraNasfwE80D+32R6n4FiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb20tbjdqQ3RvMXF4X0FUelFQN2ZaSHFmZ1dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9iODdhMGQtY2M0Yy00ODI1LWE3ZTQt
ZTkyNGNlNWE3NWIzLzEvb20tbjdqQ3RvMXF4X0FUelFQN2ZaSHFmZ1dJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9iODdhMGQtY2M0Yy00ODI1LWE3ZTQtZTkyNGNlNWE3NWIz
LzEvb20tbjdqQ3RvMXF4X0FUelFQN2ZaSHFmZ1dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC9WaaJmG
ACif/VjPQ9jjMX9AawEG31Hz8rhP93YQ6eb5LNak7HE46yX0vimq8qrSjqkmUAdA
oEX1nIHfANF77o6xBzbgBEsMce4OP/VG2YNhChWxc82LkRuZrJHS1oBPHQu2DawP
drZq5R0n2gTvdmJBGkXDpEg/Lf/as7OaKgGUsf08M+ptqZNahiuJv9PAKAynzXuJ
mU/K6V4HuIsZ41Lu5mX4TXx2TNwsIU9uM7EQBlRRATB/I9ejWSSbSG6WT8eRNDee
5D7Bdz+7E4BVkKVBvp6K7BAh9n76V27recEGDV6HcaEjLkb7XUBQnWkMVk5i51mH
kS82NGFbgsSr5Q==
-----END CERTIFICATE-----
Generated at Sun Jul 27 11:54:24 2025 by rpki-client