Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: ZhdVIh92j7Kp2p3VakKl0qWQeciSsYhLOaI3HWn2JJs=
Subject key identifier: 9C:FF:11:7A:E2:CF:4A:5D:64:FE:53:82:C3:6D:C0:59:3C:BE:81:52
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 019D27DFC5BF306A9D9D91A22A0D7EFD9F22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 02:01:09 +0000
Manifest this update: Thu 26 Mar 2026 02:01:09 +0000
Manifest next update: Fri 27 Mar 2026 02:01:09 +0000
Files and hashes: 1: GS12T19X33XYAhf098NVhyXx3j4.roa (hash: 2sPtA3M8U954wEjtNrs6ONRJ78QRH5zWAILMakv6ILg=)
2: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: QQ+lKG0RZyU3edV6lOwjSvTjTHi7dzPlzgGhgvSqjKg=)
3: Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa (hash: 9OEorLPT8PEnhbBuzCTUI3Vb5lQD/nIA0b2dhSxkYk4=)
4: ckGyseiXClHPKvZc0nmqY19ttos.roa (hash: Yi/gbRZzD3hzlnLpg0sfEHwVq1nYLL7ZQtIyu02d0kc=)
5: flQssGcGnPHhqNGkKwTNsJejaeQ.roa (hash: 7MK/e6VIAjwZyf2enbWUdzme5SKLDGdFufR5UtJ+Iyo=)
6: tI1eWKq17tDG9hQWcAP-FozruWU.roa (hash: yszzGKzH2Y3utLHy31Xungt79IkdPWx2rbVckLVltxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:c5:bf:30:6a:9d:9d:91:a2:2a:0d:7e:fd:9f:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Mar 26 02:01:09 2026 GMT
Not After : Mar 27 02:01:09 2026 GMT
Subject: CN=9cff117ae2cf4a5d64fe5382c36dc0593cbe8152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7f:83:19:70:e9:6f:d4:19:00:84:55:d2:91:
14:b2:af:23:9c:84:5f:20:0d:7d:8b:c7:8b:43:22:
82:78:88:ef:f9:47:16:61:0b:a0:db:4e:da:d5:ea:
51:cf:20:ef:fc:7d:48:e4:01:30:02:26:c3:73:24:
c6:63:0c:63:88:33:86:6e:f3:fa:fb:b6:b5:dd:68:
f8:58:71:22:7f:da:1e:ef:ab:79:7d:05:0b:d0:51:
de:65:f3:f9:f1:ee:b2:10:fc:de:57:b9:bc:3a:ee:
67:3d:51:26:ba:5b:8d:2f:08:b5:7d:07:51:2e:43:
c0:b2:21:a5:95:9f:f9:db:7e:91:69:79:a4:05:ab:
79:6f:c7:a6:bc:f4:11:1b:1d:26:d8:26:19:75:64:
71:2f:84:42:db:49:df:79:89:cb:8f:d7:a4:fa:3d:
60:79:da:c3:26:20:23:f3:1a:64:61:23:04:24:76:
8b:d8:96:e5:41:ae:07:2b:ac:cf:12:43:10:00:9d:
96:80:bb:3b:8a:b5:bf:73:43:ab:73:1b:dd:ae:e5:
ae:46:54:f8:3b:d7:12:6b:d4:a9:d2:68:b1:16:9e:
f0:94:92:8d:90:18:d6:3d:74:cc:50:6c:5a:19:e9:
8f:7e:d8:6c:5c:09:93:f4:dc:e9:0d:9e:00:a6:77:
48:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FF:11:7A:E2:CF:4A:5D:64:FE:53:82:C3:6D:C0:59:3C:BE:81:52
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f0:84:08:38:b4:a7:e8:e2:cd:46:26:d0:f4:93:e6:cc:4b:
ca:80:15:42:4e:79:64:4b:75:0f:2d:89:dd:b5:60:9a:a8:e4:
f3:01:33:77:f7:26:3d:ed:59:de:8e:a8:13:06:b8:45:ec:f8:
d7:99:c4:2b:8e:9d:bf:0b:50:02:c4:78:f8:4a:17:02:01:32:
c1:bb:97:0f:bf:a9:5a:07:60:e0:de:10:d3:86:97:89:03:3e:
00:f7:33:df:af:12:10:c1:e8:d5:0f:2f:1c:7a:b1:4c:9f:b4:
d1:90:50:c1:a4:87:f3:11:57:29:ae:4a:20:ce:ec:ff:23:67:
a4:91:cf:18:2b:ac:36:3b:6d:ca:20:a7:14:17:81:59:08:4a:
45:ed:bd:14:4c:93:1d:47:42:da:63:0c:86:46:1b:dd:a7:df:
6c:e7:8b:77:17:0d:2b:45:83:68:da:0d:0f:e0:a7:51:59:88:
be:98:24:de:ca:4b:86:f8:96:3f:92:d5:b3:f6:05:2f:62:8d:
7a:ea:21:e4:97:e7:bd:1b:1a:f4:a8:a8:1c:63:d6:50:89:67:
7e:48:aa:24:54:35:7d:c6:3c:52:24:91:ac:a7:4c:e1:17:5f:
9d:4f:1f:04:18:61:6c:21:28:81:87:40:fd:d5:6d:e2:1b:b7:
81:6e:95:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:16:53 2026 by rpki-client