Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
File: OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json)
Hash identifier: znYJVRzFmf3f5T9hl86tRlZeUCAQZuR8jqkQcYqCZ3k=
Subject key identifier: 01:A1:45:0E:3C:19:E4:84:08:C2:A9:13:A6:4C:FE:5F:86:E0:30:8D
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 019A4F98D9AA71CD44B6FAFB01EA198666C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
Manifest number: 1724
Signing time: Tue 04 Nov 2025 16:00:08 +0000
Manifest this update: Tue 04 Nov 2025 16:00:08 +0000
Manifest next update: Wed 05 Nov 2025 16:00:08 +0000
Files and hashes: 1: FL-63HYyWSOHaS0zatb3tBhA794.roa (hash: mLXwUnn3m8eIlstUhvReKOdJ0V5ZYWYpyzYXC0ze4xI=)
2: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: hcBiUmsHX+P9KCw8T5+ZYhwlyDWdMpe5e9Ni0m4FDYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:98:d9:aa:71:cd:44:b6:fa:fb:01:ea:19:86:66:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Nov 4 16:00:08 2025 GMT
Not After : Nov 5 16:00:08 2025 GMT
Subject: CN=01a1450e3c19e48408c2a913a64cfe5f86e0308d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:32:86:3f:78:8d:8f:f9:9b:77:ed:38:8e:ad:
51:d9:cc:a4:95:f1:4b:5a:d1:ed:1c:ae:3a:9f:8b:
ad:a3:1c:dc:9f:5d:59:dd:3f:13:e0:7d:87:b8:a1:
45:f4:49:2b:5f:c5:d9:48:a9:b0:4e:71:ee:72:2a:
84:86:1b:de:00:20:57:44:4e:55:01:f5:55:a3:63:
38:62:71:39:94:5b:a2:13:97:dc:2e:c9:3c:4f:3f:
9c:c5:b1:89:cc:f0:68:0f:05:69:86:3a:e4:96:54:
c9:f2:5e:1c:d4:2a:59:fc:4a:a6:71:67:b3:82:96:
bc:8b:63:49:55:ad:1b:3f:c8:e0:4a:d6:51:8e:8e:
b0:d9:be:bf:51:af:ee:6d:54:e5:63:36:05:a8:83:
d4:54:12:f1:93:ce:9e:d1:f8:fa:ce:60:7e:83:af:
a9:53:9f:68:90:df:5f:e2:14:52:1f:7d:24:59:c3:
d8:1d:dc:9d:cf:48:a3:fd:75:95:d5:fd:07:30:fa:
f3:1b:df:ab:98:4e:44:bd:91:00:45:28:78:69:36:
24:f6:5b:dc:b2:96:7d:0c:ef:8e:07:ad:a4:24:f8:
d2:c8:d0:b5:e6:8a:2c:b2:fa:4c:e5:f1:04:c9:fd:
bc:4d:8d:79:6f:76:08:57:1e:65:9d:1c:6f:92:58:
e3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A1:45:0E:3C:19:E4:84:08:C2:A9:13:A6:4C:FE:5F:86:E0:30:8D
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:4b:c5:e9:df:69:bf:33:c7:4d:ed:39:77:22:89:75:5e:37:
82:8e:ae:2b:99:b7:e2:11:91:b9:2d:3e:a1:60:21:be:e8:17:
bd:b7:a0:55:0f:5e:34:22:e2:61:3e:58:9e:40:23:47:12:a0:
ea:d0:48:96:61:5d:fc:e4:bb:3e:bc:7f:66:57:b8:25:0a:56:
93:81:0b:f9:a1:d6:4f:a8:64:4a:fd:64:ec:7e:76:4d:b3:bd:
11:f0:bd:0e:8e:96:73:20:33:49:4e:4d:97:75:e1:21:26:e8:
45:93:de:62:59:cd:47:09:04:75:b7:c7:37:86:c0:39:85:f3:
74:bf:cb:7c:40:ec:07:ce:77:da:25:19:46:1b:e9:3d:2c:eb:
c9:18:b4:81:ff:b1:fd:43:7b:20:28:55:3d:b7:fc:43:54:8e:
0a:c0:3f:0f:5b:c9:ed:a3:b7:7d:99:f4:db:5a:a8:a3:c8:82:
40:f4:41:fa:0e:df:bc:ab:0e:4b:e6:3a:ea:a5:c3:ac:01:a6:
7e:d5:7d:4d:f2:85:a8:a7:d0:23:56:96:bf:e9:b0:82:15:97:
89:04:0c:61:92:99:df:20:52:71:58:2a:5d:8c:99:0b:ed:35:
8b:49:50:94:aa:fd:5e:72:7a:31:6e:b6:db:30:5f:74:6d:6e:
95:5d:06:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:26:38 2025 by rpki-client