Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
File: OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft (raw, json)
Hash identifier: nlkT54LiQ5Jlch8imaiCtUUbWrTEiFV0Yh0zsnXEjl0=
Subject key identifier: 1B:08:D5:15:EF:65:C4:9D:5D:FF:A9:A2:14:0E:21:47:D2:84:AC:AA
Authority key identifier: 38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
Certificate issuer: /CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Certificate serial: 019D3940E642DBF26794361E6A98D9EAC69F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
Manifest number: 1894
Signing time: Sun 29 Mar 2026 11:00:47 +0000
Manifest this update: Sun 29 Mar 2026 11:00:47 +0000
Manifest next update: Mon 30 Mar 2026 11:00:47 +0000
Files and hashes: 1: GS12T19X33XYAhf098NVhyXx3j4.roa (hash: 2sPtA3M8U954wEjtNrs6ONRJ78QRH5zWAILMakv6ILg=)
2: OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl (hash: aMntTvENONU5PTO0DW/+UzDcBu6oqkCyxKSlQ9k3of0=)
3: Ys4PogIAyq6Z-1e6V87HwtKW-Jw.roa (hash: 9OEorLPT8PEnhbBuzCTUI3Vb5lQD/nIA0b2dhSxkYk4=)
4: ckGyseiXClHPKvZc0nmqY19ttos.roa (hash: Yi/gbRZzD3hzlnLpg0sfEHwVq1nYLL7ZQtIyu02d0kc=)
5: flQssGcGnPHhqNGkKwTNsJejaeQ.roa (hash: 7MK/e6VIAjwZyf2enbWUdzme5SKLDGdFufR5UtJ+Iyo=)
6: tI1eWKq17tDG9hQWcAP-FozruWU.roa (hash: yszzGKzH2Y3utLHy31Xungt79IkdPWx2rbVckLVltxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:e6:42:db:f2:67:94:36:1e:6a:98:d9:ea:c6:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a8550659bb68e770d8b0126b7261fb87d8240b
Validity
Not Before: Mar 29 11:00:47 2026 GMT
Not After : Mar 30 11:00:47 2026 GMT
Subject: CN=1b08d515ef65c49d5dffa9a2140e2147d284acaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c9:43:0e:bf:42:37:95:7b:c1:5e:bf:3f:d5:
cc:61:6e:3c:e3:2d:09:a6:57:96:ce:76:c6:80:92:
87:77:1f:69:e8:54:76:79:0e:6c:92:30:26:77:fd:
80:2d:93:d9:2b:13:de:27:f5:a3:5f:01:6d:24:ca:
7d:fb:55:f0:19:6b:95:95:3f:69:01:9f:32:1b:d5:
d9:f6:4d:c0:b9:eb:ef:c7:a5:41:b3:5e:01:29:9c:
11:ac:6c:75:41:a5:95:4c:22:71:3f:00:e6:d8:3a:
12:57:93:65:da:72:1a:88:38:e1:f7:93:b3:e0:ad:
da:06:3e:bb:59:18:ff:da:28:d2:d0:b2:5f:b8:5d:
cc:b1:0e:a8:7a:da:d3:78:3f:49:59:32:2c:fd:ce:
49:33:96:76:80:ae:53:40:42:5f:74:28:01:8e:10:
19:a9:80:a7:b8:86:2f:a1:b9:b6:bf:d0:31:25:65:
65:5e:7d:0d:95:d0:66:7f:7f:9c:0c:f2:d2:70:a1:
c4:b8:04:6f:a4:7a:67:aa:4d:d4:17:d0:f3:12:df:
ef:55:b3:be:1b:6b:52:d0:d6:0a:26:15:4a:1c:8e:
b3:94:bf:e9:f5:01:0b:50:04:e7:3d:d4:e7:c3:ed:
18:6c:97:ea:02:a6:38:7f:df:fe:1b:06:d5:e6:37:
11:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:08:D5:15:EF:65:C4:9D:5D:FF:A9:A2:14:0E:21:47:D2:84:AC:AA
X509v3 Authority Key Identifier:
keyid:38:A8:55:06:59:BB:68:E7:70:D8:B0:12:6B:72:61:FB:87:D8:24:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKhVBlm7aOdw2LASa3Jh-4fYJAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/7dce73-c4df-4333-8e81-1d703b496634/1/OKhVBlm7aOdw2LASa3Jh-4fYJAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:66:f4:57:7a:c2:fb:f1:0c:84:66:bb:90:fd:da:96:34:1f:
75:f3:3a:f5:19:93:00:1f:ed:bf:d2:d7:f0:b5:fd:44:18:ef:
29:28:6f:68:05:7a:fb:00:e1:fb:be:99:f9:39:2f:0d:b0:da:
ed:82:f4:d2:1a:f7:6f:68:f1:4f:f8:69:34:4c:7f:c0:75:f8:
91:15:b3:08:94:bc:fa:4a:ce:15:16:78:1a:b6:b6:09:8d:1b:
9f:ff:bb:b2:0f:fd:a1:12:9c:9b:99:87:4e:86:14:37:82:d8:
92:f0:09:0f:ce:fc:73:b0:f4:e8:53:52:99:37:de:7b:a3:51:
c2:38:0f:11:1c:a4:6e:56:4a:3a:04:00:af:1e:62:bf:d5:9e:
01:6a:61:d5:4a:4e:73:60:3b:d4:5d:b1:a9:68:14:1a:6c:b6:
c6:b6:cd:79:d7:70:91:0d:7e:43:dc:82:b4:01:76:49:ac:cd:
b2:3d:55:24:7c:69:cf:1e:8a:b1:5e:f5:92:13:a0:94:b3:79:
77:40:d2:af:f7:e7:7d:c5:31:1a:df:8c:92:2b:3c:ee:6f:62:
3c:40:1c:b0:f7:00:96:8e:90:b6:da:3a:1d:c6:fd:14:be:33:
54:34:e0:11:05:06:55:1a:bb:50:06:64:f3:bf:45:ed:47:bc:
97:09:88:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:53:47 2026 by rpki-client