Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
File: OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json)
Hash identifier: Y41eJxbpoeW2vXag/dWSjDTz0Xpzyg1s5nrKK9xLbUY=
Subject key identifier: 00:BE:CC:C4:C4:2A:CD:27:DA:1F:54:C5:4F:4B:67:29:F1:59:C2:62
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 019A725C4EE9A24C4D2FA95308E158392582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
Manifest number: 1736
Signing time: Tue 11 Nov 2025 10:00:43 +0000
Manifest this update: Tue 11 Nov 2025 10:00:43 +0000
Manifest next update: Wed 12 Nov 2025 10:00:43 +0000
Files and hashes: 1: FL-63HYyWSOHaS0zatb3tBhA794.roa (hash: mLXwUnn3m8eIlstUhvReKOdJ0V5ZYWYpyzYXC0ze4xI=)
2: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: Ra3Ybwq7wrf6Lzk3u2q4Xs72dhLFXcg/XgdUSaJRiXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:4e:e9:a2:4c:4d:2f:a9:53:08:e1:58:39:25:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Nov 11 10:00:43 2025 GMT
Not After : Nov 12 10:00:43 2025 GMT
Subject: CN=00beccc4c42acd27da1f54c54f4b6729f159c262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:49:20:d2:38:77:c4:0b:48:1c:15:a3:e1:3f:
75:84:1c:7c:27:0f:23:98:25:02:01:5a:d1:e0:54:
1d:2d:7b:80:16:21:1a:6b:9f:96:15:0f:ed:3d:b5:
3d:4a:2d:df:ab:24:44:f6:9e:d6:f2:64:e3:e0:9a:
d9:98:7a:c9:5a:b8:75:04:64:58:0a:49:c9:99:34:
35:88:56:65:6f:32:04:4f:d1:77:ac:30:d3:e5:16:
e3:74:4b:81:d4:db:89:61:dd:a0:1c:88:ae:bc:b5:
00:17:c1:2c:c7:ab:ad:f3:19:9d:13:1f:fc:18:27:
0a:00:fd:33:78:18:39:04:5f:ce:9c:22:2b:ad:08:
0c:39:94:1a:b0:c0:6e:db:be:34:a7:28:b8:43:ba:
4b:bf:b5:0a:b1:f1:b7:62:12:3a:44:0d:13:0f:78:
fa:62:ef:e1:ee:ef:da:4f:5d:35:6d:be:c9:69:3a:
91:28:46:26:f5:da:dc:4b:23:dd:a5:4c:99:c6:01:
a0:79:8c:e1:d9:a2:e0:e8:15:d5:6b:13:3c:8f:94:
b1:02:cb:6a:d4:cf:b9:ad:02:6a:45:bc:a0:50:63:
75:05:04:b2:14:f5:61:e6:1e:35:1f:b9:09:4d:8f:
17:39:5c:9a:6a:ad:1c:82:08:ad:0b:c0:89:08:7e:
d8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BE:CC:C4:C4:2A:CD:27:DA:1F:54:C5:4F:4B:67:29:F1:59:C2:62
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:91:76:b5:1b:47:7c:3c:76:72:36:fe:4a:2f:85:1a:52:bd:
85:62:66:70:20:b5:90:6e:2c:fa:ad:22:33:aa:35:ac:58:70:
c2:43:cf:13:8f:53:e1:33:9b:33:6d:bb:93:fc:4e:5d:02:fd:
d3:bd:e4:c6:1e:c2:a3:2e:8c:3a:ff:6a:2a:08:d5:37:29:47:
7d:0f:cf:5a:7d:71:a6:2a:53:f6:1b:85:8b:5b:91:de:36:2b:
63:5a:70:c6:78:63:2c:5d:34:15:39:e9:c7:86:06:c7:6d:e5:
94:d4:ba:e3:d5:45:14:38:4c:69:38:9e:89:1c:6a:35:f9:46:
0a:17:55:c7:7d:c2:e5:ad:a9:46:78:28:81:ed:b9:1f:f5:1c:
10:ae:4b:cd:bf:77:a7:ae:48:aa:5d:ac:f8:06:e2:a2:44:9c:
23:d0:53:89:d7:24:f5:c6:a6:93:d4:81:50:81:1d:da:bd:a4:
dc:50:5a:e1:41:dc:44:79:53:54:7b:f9:1c:df:27:c5:09:8c:
c0:eb:a1:34:67:7f:22:04:a3:9a:67:45:79:b2:2a:06:64:48:
ff:e8:75:df:d9:84:ab:9a:3a:93:7c:db:e4:35:ff:84:97:ba:
c9:ae:f4:80:b0:90:f3:2f:e0:01:56:53:a2:33:5e:c0:dd:04:
d2:8e:00:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:45 2025 by rpki-client