Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: 1XrFhWOPsWN3g7D0QmLwGqou4/hIoNqjhRLom68CYZI=
Subject key identifier: B1:8B:EE:3B:91:41:4E:08:65:31:F8:A2:20:CE:D1:0B:98:2F:77:52
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 019F1867AB7EFC2F2A99B751D4C47E792EA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 106E
Signing time: Tue 30 Jun 2026 12:01:15 +0000
Manifest this update: Tue 30 Jun 2026 12:01:15 +0000
Manifest next update: Wed 01 Jul 2026 12:01:15 +0000
Files and hashes: 1: J7pOiHdYKd2j4ChTilTVhn454DE.roa (hash: hcNJP1cRdMhyS1Muhx9YTYmFbSp39gRRkj1KauS78s0=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: biaUKCnwhUaea2qKiDm5hLDQhGaoVXp0fYGd8xiKbgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:ab:7e:fc:2f:2a:99:b7:51:d4:c4:7e:79:2e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Jun 30 12:01:15 2026 GMT
Not After : Jul 1 12:01:15 2026 GMT
Subject: CN=b18bee3b91414e086531f8a220ced10b982f7752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:29:fe:f3:7a:6e:83:b0:03:4b:09:14:47:76:
eb:2b:09:c6:6f:b4:a4:c5:5c:cc:55:73:36:4a:3f:
87:bd:d0:3a:34:a9:bf:b5:4f:85:25:76:35:82:a6:
0e:95:6a:08:55:bc:e2:c9:7e:72:d2:60:d5:ed:ea:
65:17:75:e1:f5:7f:3e:63:3a:42:59:96:46:d1:0b:
95:bc:27:5d:e2:4e:8e:52:73:60:84:38:ad:d2:b8:
08:d2:a6:a3:11:1e:39:cb:2f:3c:1f:f3:e3:1a:9f:
fd:52:5a:60:58:ba:5f:b2:5a:33:fa:9f:48:fd:1b:
86:b2:15:18:74:f4:37:47:e2:9a:f2:a5:a2:46:40:
93:47:2e:df:1a:29:1b:b6:72:b4:d0:1d:6d:6e:6b:
32:85:0f:5c:56:7c:04:10:5d:63:47:d3:e8:47:fe:
a1:bb:1c:f4:0f:44:dd:87:0e:ae:3c:5f:86:41:39:
ab:8b:6b:58:06:89:b5:f1:b4:aa:8b:5a:7e:4d:54:
0a:a4:75:d9:ea:d2:87:11:b6:12:10:81:6c:bd:06:
84:d4:a8:19:12:c3:62:3b:69:16:b4:d3:a9:7a:a0:
95:37:b3:34:b9:f6:58:97:62:46:8c:67:28:f3:f5:
7e:8c:ac:2f:50:2d:d1:27:45:50:df:44:f9:cb:f8:
86:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8B:EE:3B:91:41:4E:08:65:31:F8:A2:20:CE:D1:0B:98:2F:77:52
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:99:da:4e:cb:6e:31:d8:7d:13:be:cc:29:a0:fe:97:db:ca:
74:ce:28:d8:95:50:47:8e:e9:cf:10:a6:a2:ac:55:4c:47:64:
c6:ff:6d:48:4d:9c:23:45:a2:24:52:8d:f8:a9:3d:26:e0:8c:
e8:9e:4b:44:74:fe:d4:1d:dd:65:ac:d6:77:87:e0:44:06:ea:
9b:4d:48:81:35:05:6c:dc:02:01:74:82:1b:aa:7b:e5:48:e6:
4c:f6:7c:f1:86:c9:92:4c:53:5c:3c:db:8f:19:68:0f:27:7c:
d6:26:d0:08:51:67:33:42:e9:9d:60:84:35:ca:cf:ad:38:43:
3e:89:98:95:c7:6a:44:14:1e:a5:ed:01:01:61:1a:95:15:21:
84:7f:41:a1:13:dc:c0:2d:c7:49:7d:db:fd:f6:5f:a3:89:27:
59:aa:5a:c8:b9:59:c6:e0:ca:43:e4:6f:99:96:c5:8d:45:48:
28:25:2d:92:d1:83:b3:4a:de:ca:15:40:6b:d9:ce:9d:47:3e:
ae:73:33:f1:35:6f:f9:a4:b9:e9:ab:1a:ae:a3:81:94:42:9c:
78:aa:93:f2:4a:0a:4b:1f:0e:95:c3:b0:6f:8f:65:8d:f1:a6:
8c:a9:1e:79:e4:58:3a:e8:bb:c5:48:c0:e8:c6:27:ea:45:8a:
09:3f:28:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:17:55 2026 by rpki-client