Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
File: OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json)
Hash identifier: IqUjLXdjMTcSAok3YbYcX+rGyae7Mr4W6FHbqK+OFuk=
Subject key identifier: D5:FA:82:A9:63:A4:39:8B:51:44:71:81:9B:AB:62:29:72:DD:24:4F
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 019D9B196DAFDED182CFA8E6ACFBC4EFA322
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
Manifest number: 18D9
Signing time: Fri 17 Apr 2026 11:00:28 +0000
Manifest this update: Fri 17 Apr 2026 11:00:28 +0000
Manifest next update: Sat 18 Apr 2026 11:00:28 +0000
Files and hashes: 1: JgeqMp-5oO_S80v0VekWcg72-Eg.roa (hash: tVMPOaelruFEfeEIzj1RQOAzlajxyQUW4rwlWncH9tQ=)
2: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: 9QPCwX2AMjnI3BB5+r6eIrhwWp14TWZmiKFM9+ovQuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 11:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:6d:af:de:d1:82:cf:a8:e6:ac:fb:c4:ef:a3:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Apr 17 11:00:28 2026 GMT
Not After : Apr 18 11:00:28 2026 GMT
Subject: CN=d5fa82a963a4398b514471819bab622972dd244f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b5:49:81:73:07:38:19:cb:45:3f:af:bb:6f:
a2:f4:25:4f:b1:f2:fc:78:43:e6:d3:40:c8:f6:b7:
76:53:68:b4:38:c7:e6:65:f8:6f:47:dc:59:68:ed:
87:2d:e8:8e:85:5e:b7:b7:41:f7:7c:0b:7b:50:f3:
98:d5:92:6d:18:f4:94:05:42:1f:af:57:ea:1e:5e:
e1:e7:1b:80:f9:c3:fa:8e:5c:fe:f0:98:80:ca:53:
28:93:ab:49:e3:e9:75:cb:4d:d5:26:15:fb:34:d7:
c4:02:2c:47:ec:cd:58:20:41:dd:94:79:19:c5:a8:
19:7d:73:15:05:97:8c:1d:53:a7:e6:f2:c1:93:0f:
c5:f8:55:0d:2a:fb:6d:48:35:98:41:7d:26:89:fc:
9c:e2:6f:53:98:77:0c:e0:b9:c7:52:6f:11:e6:9f:
e3:9b:60:a8:d1:a1:4c:9f:a8:13:63:57:6f:34:e4:
32:09:b1:74:d2:13:1a:bb:b9:a6:1e:f8:6e:6e:2d:
c7:67:ac:e1:a9:f7:fb:c2:94:35:13:ad:c0:0d:50:
cb:13:19:65:d2:71:b0:24:99:a2:b0:b4:70:93:27:
b2:e0:7d:1b:f3:3b:e1:60:da:94:94:ca:a8:a3:54:
e5:e2:58:49:7f:89:ee:74:15:3f:c7:36:89:f7:c3:
39:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FA:82:A9:63:A4:39:8B:51:44:71:81:9B:AB:62:29:72:DD:24:4F
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:b9:5f:9b:ac:e2:04:72:79:85:7e:61:ee:95:5e:53:f6:7a:
e4:fd:15:0f:a3:bb:ed:92:6c:92:5c:90:a7:cf:9d:ed:3f:25:
07:7c:ed:e3:17:95:9d:11:6d:25:74:98:18:d1:40:f8:ec:5e:
7d:bf:9a:ef:e2:07:84:5b:84:84:58:b1:f9:c9:87:17:e0:31:
e9:db:51:88:7f:10:ea:f4:18:24:d9:75:8d:90:54:87:d7:c0:
48:af:26:ce:60:47:6f:33:f0:53:11:15:5a:a6:a2:a1:0e:0d:
01:8d:d3:4d:32:ba:35:48:42:ac:b3:0d:60:82:59:e3:37:7e:
22:1b:7f:03:45:35:9f:d4:e6:0d:46:19:82:b2:5e:b4:bf:f9:
fc:0f:3c:ac:2e:dc:52:7e:2b:40:16:66:4b:62:9a:5f:92:f9:
d1:79:70:d7:90:0b:d9:29:b8:fb:47:72:6b:01:e9:47:cd:f3:
37:04:0a:35:e3:c4:96:fa:6c:72:89:46:f3:c8:ef:e7:01:cf:
d3:31:e0:2c:3a:17:6a:2c:f2:67:a5:f4:20:f9:bd:c4:d1:1f:
d9:ff:08:6a:d6:1c:f2:b8:83:1b:6b:8a:02:b8:a8:e8:89:f3:
98:aa:38:b6:b5:d0:14:e2:89:a5:38:29:6e:f1:e6:0a:19:87:
2e:8c:41:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:15:52 2026 by rpki-client