Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: /DFHlMkb6uRSJzVRihKgm+77Lxdf5Drm3swYVNBg+LI=
Subject key identifier: 43:4F:9F:99:D3:F0:AD:E2:0F:B9:A4:8E:AC:02:C9:74:34:A9:C3:97
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 019D2816744A4347C13BBAA32951F5C041A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0F6D
Signing time: Thu 26 Mar 2026 03:00:53 +0000
Manifest this update: Thu 26 Mar 2026 03:00:53 +0000
Manifest next update: Fri 27 Mar 2026 03:00:53 +0000
Files and hashes: 1: J7pOiHdYKd2j4ChTilTVhn454DE.roa (hash: hcNJP1cRdMhyS1Muhx9YTYmFbSp39gRRkj1KauS78s0=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: 2JGsxthNhgFdMzZqbh5ZSmFoZFi24xX4mFxQjXyGfy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:74:4a:43:47:c1:3b:ba:a3:29:51:f5:c0:41:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Mar 26 03:00:53 2026 GMT
Not After : Mar 27 03:00:53 2026 GMT
Subject: CN=434f9f99d3f0ade20fb9a48eac02c97434a9c397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:43:31:bc:d0:cb:84:bc:70:68:ee:8e:41:80:
24:f4:da:6c:39:74:7f:ea:d1:81:2a:c4:20:e3:ad:
5f:ec:89:1c:b0:ec:14:21:07:97:e7:67:01:23:be:
d0:ed:91:5e:d5:5b:7d:dc:6c:e6:8b:f8:32:f3:8f:
23:b1:e1:96:b6:b1:5d:0d:52:06:7f:1a:fc:fa:3b:
c9:50:01:d1:e3:48:58:3b:c7:68:b3:31:69:fa:4d:
d9:ac:cb:94:70:af:42:2c:79:1f:da:ea:bc:70:1f:
1a:d4:16:67:f1:5e:f7:81:01:d1:93:d5:bd:cb:92:
74:a2:05:0c:9c:b2:27:38:0d:59:23:c1:75:ed:7d:
7f:18:ba:87:53:e7:4e:ce:52:64:37:fa:fc:7d:8b:
94:2d:4a:65:1c:2b:4e:0c:5e:b2:59:bf:72:ff:6c:
2e:9a:26:d4:aa:45:3f:8e:ab:ff:a6:2b:d8:6d:44:
5a:bb:16:c0:30:3d:0e:1f:da:07:1d:0a:db:70:02:
6d:90:3a:9c:9c:8f:ff:72:75:8d:69:f5:b8:d0:01:
ac:f5:c8:6f:86:fb:da:c4:0b:da:ce:2c:bb:89:32:
72:ca:51:f8:f2:b2:99:a7:3b:91:4b:e2:40:91:f9:
b5:e1:18:1a:62:fc:25:6d:96:f6:09:e9:dd:a9:4b:
b9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4F:9F:99:D3:F0:AD:E2:0F:B9:A4:8E:AC:02:C9:74:34:A9:C3:97
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:bb:84:55:2c:64:30:bc:d7:8b:56:ca:c4:6f:50:5a:42:ae:
db:e1:de:e8:96:4e:73:d6:a0:80:6b:9b:05:f0:5a:9d:08:2a:
a0:c9:08:9f:87:1c:5f:d9:aa:72:91:91:7d:25:79:b8:6b:0c:
3e:f5:9a:41:64:f7:fb:90:df:82:b7:7b:0a:59:4f:f3:55:db:
3f:b8:1c:56:64:23:41:26:ef:89:73:4c:d6:2c:c8:cc:ea:43:
57:af:76:a5:5a:1c:e0:a1:b1:77:d1:de:37:e0:b4:4f:99:35:
89:fb:51:b8:a7:4f:66:7b:78:0f:3f:45:52:25:71:46:7d:5b:
9c:bd:07:d3:4f:3f:29:fc:2d:0c:ef:a3:d2:2e:8b:c9:8a:0b:
8c:76:34:a2:9b:4d:0e:29:0c:6b:e2:72:59:8a:dc:d0:de:ef:
08:ec:3d:42:e5:00:e5:de:9b:2c:4d:65:4e:51:ba:79:ce:01:
9b:5b:7c:dc:d7:0c:85:ca:04:78:36:80:1b:b1:64:f9:84:1a:
02:99:de:d9:80:ee:2a:94:84:f0:14:b8:92:d3:d7:f4:89:af:
ab:15:d4:f4:35:ed:36:d0:f8:6f:39:65:7c:25:37:24:35:a1:
51:3e:21:09:06:93:22:04:a8:ae:fc:14:f8:73:9d:a3:57:d6:
d8:48:a2:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFnRKQ0fBO7qjKVH1wEGmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDBmZjE1NGM0NTM5NDNhMGIwMmFhNjUwMjFjOWMyNjQ5
NDdjMmIwHhcNMjYwMzI2MDMwMDUzWhcNMjYwMzI3MDMwMDUzWjAzMTEwLwYDVQQD
Eyg0MzRmOWY5OWQzZjBhZGUyMGZiOWE0OGVhYzAyYzk3NDM0YTljMzk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkMxvNDLhLxwaO6OQYAk9NpsOXR/
6tGBKsQg461f7IkcsOwUIQeX52cBI77Q7ZFe1Vt93Gzmi/gy848jseGWtrFdDVIG
fxr8+jvJUAHR40hYO8doszFp+k3ZrMuUcK9CLHkf2uq8cB8a1BZn8V73gQHRk9W9
y5J0ogUMnLInOA1ZI8F17X1/GLqHU+dOzlJkN/r8fYuULUplHCtODF6yWb9y/2wu
mibUqkU/jqv/pivYbURauxbAMD0OH9oHHQrbcAJtkDqcnI//cnWNafW40AGs9chv
hvvaxAvaziy7iTJyylH48rKZpzuRS+JAkfm14RgaYvwlbZb2CendqUu5FQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENPn5nT8K3iD7mkjqwCyXQ0qcOXMB8GA1UdIwQY
MBaAFDpA/xVMRTlDoLAqplAhycJklHwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQt
ODJiYjBiYjExZTNlLzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQtODJiYjBiYjExZTNl
LzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd7uEVSxk
MLzXi1bKxG9QWkKu2+He6JZOc9aggGubBfBanQgqoMkIn4ccX9mqcpGRfSV5uGsM
PvWaQWT3+5Dfgrd7CllP81XbP7gcVmQjQSbviXNM1izIzOpDV692pVoc4KGxd9He
N+C0T5k1iftRuKdPZnt4Dz9FUiVxRn1bnL0H008/KfwtDO+j0i6LyYoLjHY0optN
DikMa+JyWYrc0N7vCOw9QuUA5d6bLE1lTlG6ec4Bm1t83NcMhcoEeDaAG7Fk+YQa
Apne2YDuKpSE8BS4ktPX9ImvqxXU9DXtNtD4bzllfCU3JDWhUT4hCQaTIgSorvwU
+HOdo1fW2EiiKg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:58:16 2026 by rpki-client