Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
File: OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json)
Hash identifier: MNtpsNMBUrmDvpTv31/QyBzf7fFyOSrptxwH8r+J1j4=
Subject key identifier: 86:D9:65:8D:FE:E3:37:47:50:BD:3F:F9:A7:A0:06:3B:DE:AF:A6:E9
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 019D389C580598AF27653DF8B1C4E4674D69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
Manifest number: 18A6
Signing time: Sun 29 Mar 2026 08:01:03 +0000
Manifest this update: Sun 29 Mar 2026 08:01:03 +0000
Manifest next update: Mon 30 Mar 2026 08:01:03 +0000
Files and hashes: 1: JgeqMp-5oO_S80v0VekWcg72-Eg.roa (hash: tVMPOaelruFEfeEIzj1RQOAzlajxyQUW4rwlWncH9tQ=)
2: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: GOYbwMZwcVqg1rLeRmpEoBc0ncGbNZZTBtxtqDH48Gw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:58:05:98:af:27:65:3d:f8:b1:c4:e4:67:4d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Mar 29 08:01:03 2026 GMT
Not After : Mar 30 08:01:03 2026 GMT
Subject: CN=86d9658dfee3374750bd3ff9a7a0063bdeafa6e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:07:e4:7f:69:f7:9e:6c:db:af:ce:d6:69:90:
bf:34:58:e1:39:1e:6a:e0:ba:0d:bb:c8:78:9c:cb:
53:40:56:33:72:4e:39:86:6c:77:c8:b5:64:a4:e2:
df:7a:25:22:41:eb:21:5e:e4:3e:f1:31:f2:7d:fb:
6c:2d:0f:40:37:9a:68:33:4d:bd:e6:8b:77:a4:f0:
0d:86:b7:e6:e1:b9:8b:31:3c:09:42:4a:a7:ca:b3:
32:ff:8a:ba:fa:c3:68:52:d5:59:a7:42:21:55:b0:
4e:52:3b:d1:20:d9:31:02:34:3c:74:fd:12:cb:f7:
a4:2b:c7:37:b9:79:a9:fc:b5:72:c4:4c:05:df:0e:
0d:2b:20:67:22:bb:2a:97:2a:d5:04:2c:48:b3:6a:
95:17:cb:43:ae:e4:46:c8:36:80:1f:aa:4f:21:f4:
f3:1d:21:1f:ef:dd:2f:66:39:25:51:0f:be:38:22:
90:16:09:fc:52:54:d5:93:b4:89:39:27:53:a3:62:
c2:30:e8:09:a4:af:70:16:f8:81:a1:71:e8:32:3d:
a5:67:b7:b8:bf:3e:fc:3a:0b:e5:f7:6b:94:fb:bc:
15:2a:93:9b:05:d1:de:3b:ed:43:86:1f:b4:72:40:
c1:13:59:23:8b:ca:92:eb:a3:e6:6a:90:71:7f:1a:
76:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D9:65:8D:FE:E3:37:47:50:BD:3F:F9:A7:A0:06:3B:DE:AF:A6:E9
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:ea:81:6c:25:61:8f:6b:56:0e:45:3a:9a:21:9d:93:f9:84:
a1:22:e0:a9:77:68:cc:74:3d:82:df:98:c4:50:9d:d1:ea:34:
88:7d:d9:6a:d4:6b:87:5f:97:3e:9b:b5:79:a5:5b:24:63:e0:
84:74:48:b2:ef:05:bf:9b:0b:75:c4:7a:a3:fe:ee:c5:a0:b3:
77:52:d2:0b:e4:00:5d:e7:03:c3:87:72:ba:25:f5:ed:38:67:
05:d9:f6:e5:49:64:69:46:d7:21:37:b8:c4:54:b3:69:63:bd:
50:03:b7:76:e8:b3:b4:90:84:a7:71:c1:b5:a4:53:53:06:05:
59:8d:db:7f:12:c9:4f:d8:b7:e9:20:53:fe:60:db:4d:85:3b:
66:0e:55:f6:18:cb:56:cf:14:2e:20:47:67:a7:3f:17:2a:5c:
a3:49:ba:3a:00:ab:c4:9e:cd:c0:b9:5f:b2:7b:b5:85:50:e4:
1a:65:b1:69:26:36:b8:a2:2a:5a:56:f6:51:28:f5:ba:7e:3f:
ed:39:91:1c:59:a4:41:c9:b5:44:0f:96:98:f3:28:67:21:fd:
02:cf:0e:6d:2f:dd:a5:ab:03:d4:f3:6c:83:9e:89:ea:70:3b:
d1:4b:64:17:d3:80:21:cc:1d:73:e0:e9:86:bc:d6:65:32:6e:
7a:51:38:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:19 2026 by rpki-client