Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
File: OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft (raw, json)
Hash identifier: BuejxitoHF9zF2wkAZDgOjyvpWtlTc6GPkfiqwWY9zI=
Subject key identifier: 75:0E:04:1C:C4:D1:33:26:7B:76:78:5F:D2:2E:0E:FA:B9:35:5D:D8
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 019CAD904C994DFBB6336683EC849C9EE8AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
Manifest number: 185E
Signing time: Mon 02 Mar 2026 08:00:40 +0000
Manifest this update: Mon 02 Mar 2026 08:00:40 +0000
Manifest next update: Tue 03 Mar 2026 08:00:40 +0000
Files and hashes: 1: JgeqMp-5oO_S80v0VekWcg72-Eg.roa (hash: tVMPOaelruFEfeEIzj1RQOAzlajxyQUW4rwlWncH9tQ=)
2: OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl (hash: 3wL71a36jJgEugX/cke/LDb5WW1KopuS2SyGEYFluIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:4c:99:4d:fb:b6:33:66:83:ec:84:9c:9e:e8:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Mar 2 08:00:40 2026 GMT
Not After : Mar 3 08:00:40 2026 GMT
Subject: CN=750e041cc4d133267b76785fd22e0efab9355dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1a:db:c8:b5:e4:4f:4d:88:87:b2:ad:a1:f1:
36:04:32:6b:99:97:27:6f:b8:a1:de:3f:14:f5:13:
f9:5f:d1:e2:61:a0:b8:b5:39:3f:76:6b:ce:5a:07:
c0:3a:9a:bd:93:2e:f5:f6:cb:6c:f4:71:67:03:ac:
2f:7d:8e:7f:45:7f:ca:01:f9:0e:27:62:ee:5f:4e:
a8:35:93:68:7c:63:6e:c1:23:56:be:74:79:b0:18:
25:9b:d8:c1:54:41:fe:18:4c:9b:4c:52:e5:c5:93:
7d:ef:ca:17:14:2c:bb:eb:8d:47:ae:b4:63:35:f7:
bb:77:d5:f2:30:2d:36:1b:25:9d:c3:41:d8:ba:e4:
ea:43:14:71:7f:0f:1c:6e:1b:fa:97:cc:75:1a:90:
e2:62:80:11:d8:c2:94:0f:e3:f1:a0:5d:80:40:e0:
b6:8e:08:fe:1e:be:dd:5b:ad:d3:a5:54:af:a7:3c:
6d:22:a7:cc:cd:fd:a2:11:f6:21:1f:c2:4c:ba:47:
c1:22:a1:18:a8:b5:a7:10:8b:bf:b2:1c:ff:10:6a:
a8:c2:c2:21:5b:41:9a:28:53:7f:3a:ef:c9:82:f5:
4d:3a:51:25:68:d4:7f:a6:49:33:3c:a5:e3:27:7d:
02:4c:91:a4:20:48:4e:38:1d:4f:6a:d6:f5:1d:b4:
8c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0E:04:1C:C4:D1:33:26:7B:76:78:5F:D2:2E:0E:FA:B9:35:5D:D8
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:75:34:ed:87:e1:15:1b:09:26:e3:f6:29:d7:a2:3b:88:f2:
d9:7b:e5:43:34:e1:9e:3f:78:af:91:11:0c:5d:55:36:61:93:
1e:7b:3b:c4:96:b9:51:5b:3e:54:93:8d:d0:86:83:82:4c:c9:
6e:0e:7e:86:0c:95:d1:99:d5:21:02:0a:4b:21:76:72:77:1e:
c1:cc:42:c4:14:b5:59:3f:79:8e:93:26:8c:27:87:65:c3:59:
74:94:81:73:ac:5e:c7:b2:50:30:54:8c:b5:7e:45:77:df:78:
5f:65:50:9f:2c:2a:7a:6c:fa:a4:1e:0c:c7:fa:26:2f:f6:11:
04:2e:d9:21:31:b5:26:34:98:8b:21:d8:92:0d:f4:d8:11:ce:
30:04:4f:e3:53:32:49:90:5a:66:13:b0:c4:60:db:cd:9d:d1:
93:64:0e:6c:c5:bd:df:39:3b:1b:ae:a1:4a:5c:d6:ee:55:8e:
6f:09:9f:98:b9:de:5b:9e:63:12:2f:6e:6a:57:3a:8c:66:df:
03:6a:40:12:33:80:22:f8:b5:74:43:33:05:2b:4f:9e:09:fa:
1e:1e:65:4f:16:5c:c2:bc:22:39:a0:e3:fe:08:7c:0f:99:55:
7b:b1:23:86:cb:13:d4:67:be:51:cf:56:ba:dc:fe:ff:8c:49:
06:4f:04:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytkEyZTfu2M2aD7IScnuirMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4Y2EzZjM4ZDhlNWEzMDFlYWY2OTI0YjkyNGZlOGY1N2Fh
YzY5MGQwHhcNMjYwMzAyMDgwMDQwWhcNMjYwMzAzMDgwMDQwWjAzMTEwLwYDVQQD
Eyg3NTBlMDQxY2M0ZDEzMzI2N2I3Njc4NWZkMjJlMGVmYWI5MzU1ZGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBrbyLXkT02Ih7KtofE2BDJrmZcn
b7ih3j8U9RP5X9HiYaC4tTk/dmvOWgfAOpq9ky719sts9HFnA6wvfY5/RX/KAfkO
J2LuX06oNZNofGNuwSNWvnR5sBglm9jBVEH+GEybTFLlxZN978oXFCy7641HrrRj
Nfe7d9XyMC02GyWdw0HYuuTqQxRxfw8cbhv6l8x1GpDiYoAR2MKUD+PxoF2AQOC2
jgj+Hr7dW63TpVSvpzxtIqfMzf2iEfYhH8JMukfBIqEYqLWnEIu/shz/EGqowsIh
W0GaKFN/Ou/JgvVNOlElaNR/pkkzPKXjJ30CTJGkIEhOOB1Patb1HbSMDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHUOBBzE0TMme3Z4X9IuDvq5NV3YMB8GA1UdIwQY
MBaAFDjKPzjY5aMB6vaSS5JP6PV6rGkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODIt
NzEyZmE2NWEyNWJhLzEvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODItNzEyZmE2NWEyNWJh
LzEvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAHU07Yfh
FRsJJuP2KdeiO4jy2XvlQzThnj94r5ERDF1VNmGTHns7xJa5UVs+VJON0IaDgkzJ
bg5+hgyV0ZnVIQIKSyF2cncewcxCxBS1WT95jpMmjCeHZcNZdJSBc6xex7JQMFSM
tX5Fd994X2VQnywqemz6pB4Mx/omL/YRBC7ZITG1JjSYiyHYkg302BHOMARP41My
SZBaZhOwxGDbzZ3Rk2QObMW93zk7G66hSlzW7lWObwmfmLneW55jEi9ualc6jGbf
A2pAEjOAIvi1dEMzBStPngn6Hh5lTxZcwrwiOaDj/gh8D5lVe7EjhssT1Ge+Uc9W
utz+/4xJBk8EaQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:54:47 2026 by rpki-client