Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: H1uDPX0dDRyoah85XotdeRcQcFNnBzxLVrjQEjccFe4=
Subject key identifier: 1E:D2:6A:EC:4B:51:6B:81:17:CB:B7:4A:AD:25:DE:20:9D:07:A4:62
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 019E1F482F6515E438C70A46E90CE388A179
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0FED
Signing time: Wed 13 May 2026 03:01:24 +0000
Manifest this update: Wed 13 May 2026 03:01:24 +0000
Manifest next update: Thu 14 May 2026 03:01:24 +0000
Files and hashes: 1: J7pOiHdYKd2j4ChTilTVhn454DE.roa (hash: hcNJP1cRdMhyS1Muhx9YTYmFbSp39gRRkj1KauS78s0=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: cwdZ/Cb3mW/Kxg0iPCgt1SYjIFa1l03gPxO7s2Q0fjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:48:2f:65:15:e4:38:c7:0a:46:e9:0c:e3:88:a1:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: May 13 03:01:24 2026 GMT
Not After : May 14 03:01:24 2026 GMT
Subject: CN=1ed26aec4b516b8117cbb74aad25de209d07a462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2e:e9:73:c2:67:0b:b2:1b:99:f4:ad:4a:0c:
cb:ce:43:aa:a2:25:c6:bf:6c:39:9b:16:1f:63:f8:
0c:2c:2d:ce:11:c3:cb:61:15:47:66:70:47:42:e5:
ae:c4:59:8c:1b:00:db:b8:36:f8:1a:f6:13:ab:20:
df:5a:d4:08:1a:a3:aa:8e:35:70:d4:99:2b:ea:8e:
d6:0c:9b:4d:16:c4:d3:0c:3c:f9:88:de:7b:19:61:
5e:ce:a0:86:15:9e:04:04:7c:5d:a7:1e:ed:f2:08:
79:1c:32:47:65:85:3c:56:f7:11:e8:3c:be:4a:f6:
21:fd:5a:3a:a1:42:3c:1c:39:9d:b0:37:f5:f3:7a:
ce:79:d4:10:ca:72:ea:4c:64:96:bd:b0:0d:ab:2b:
85:98:19:b3:86:14:60:ea:44:67:b6:d7:06:8f:3f:
eb:a2:5a:77:22:09:b2:be:29:b3:a4:00:02:12:51:
02:67:a8:93:df:cb:14:74:27:81:79:b2:bd:d2:4e:
d5:28:69:61:eb:00:f0:bf:38:bb:b6:c0:ee:c9:2a:
40:1a:7d:cf:e6:d5:1c:00:4b:6f:3e:79:4b:37:2e:
21:30:f5:95:58:82:03:51:65:f9:16:05:7d:d4:35:
39:83:1a:9e:2b:08:9d:c4:e3:13:2e:24:a4:b2:4f:
67:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D2:6A:EC:4B:51:6B:81:17:CB:B7:4A:AD:25:DE:20:9D:07:A4:62
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d0:5b:4b:0b:c4:65:63:d4:ce:2a:66:99:0d:6b:10:ea:ea:
6b:44:e9:35:24:f5:cf:24:8c:71:0c:22:0e:12:9d:9c:0b:77:
1d:c1:64:75:53:49:35:08:1e:ba:7f:d7:6b:2e:98:fe:e5:7f:
85:0e:02:dc:b2:14:2c:3f:09:7a:38:ed:0d:dd:a7:4b:ad:c1:
00:45:1d:88:73:91:02:8d:58:90:3e:b4:f9:32:fa:5c:18:50:
7e:60:12:59:54:94:8b:89:b2:c5:d4:a3:6f:70:36:6f:ae:72:
44:be:2f:3f:14:d9:e9:73:8d:37:09:27:5a:d2:c0:31:ec:e0:
3b:f9:88:b9:3c:ab:a4:05:d9:0b:c9:23:98:2a:f9:b5:8e:08:
b8:76:d3:93:5e:54:01:b7:2f:8b:93:a7:c5:7e:dd:b4:9a:2b:
9e:e8:32:64:d5:ed:33:73:7c:2c:80:3c:11:8a:73:9d:38:0d:
d2:19:76:e2:60:22:45:e9:a0:33:03:82:85:16:73:1f:43:2d:
12:5f:a0:5b:b9:0d:63:0e:47:83:26:ef:41:f1:aa:8d:73:f8:
cb:18:48:be:43:21:72:47:81:e0:e6:b1:04:b0:4e:ce:23:0e:
2f:48:56:95:9a:f5:80:8e:63:9a:13:dd:72:7b:66:ca:93:23:
8f:be:c7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:31:40 2026 by rpki-client