Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: mVRHKVSgjIYs/4vswlU8WMT3qaurGv0mb3tomsA2jv4=
Subject key identifier: 95:3B:DD:D7:98:5D:79:CD:A9:55:A1:F7:E1:AE:15:E1:59:50:CB:C8
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 019D37C0035DA4F3455B7EF1D9CDBC144D14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 183B
Signing time: Sun 29 Mar 2026 04:00:23 +0000
Manifest this update: Sun 29 Mar 2026 04:00:23 +0000
Manifest next update: Mon 30 Mar 2026 04:00:23 +0000
Files and hashes: 1: GRmYf5fBtQllaFBPiERX0WNTqyw.roa (hash: OUUewVjWM6OodlJe2MBm0csiVAeXeLMBert10ePJJOg=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: aSn4bpFIaHd/R+vCHx7CeOLuKBSwRx4eBr5LX7o1aFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:03:5d:a4:f3:45:5b:7e:f1:d9:cd:bc:14:4d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Mar 29 04:00:23 2026 GMT
Not After : Mar 30 04:00:23 2026 GMT
Subject: CN=953bddd7985d79cda955a1f7e1ae15e15950cbc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6d:f1:b0:37:48:f6:23:90:9b:05:54:13:55:
a7:89:00:eb:03:2a:7c:37:37:eb:b2:68:4b:86:48:
9e:c6:24:d4:35:db:dd:fb:7e:86:e1:ab:cd:09:d4:
77:11:23:d9:6d:f1:a2:8c:da:67:86:d5:9f:c5:4a:
95:68:3d:78:fc:65:e6:71:e3:cf:7b:16:2a:9b:fb:
5d:2c:17:65:af:f4:cd:a7:cd:b4:e9:e2:49:b6:81:
e7:11:9e:b4:93:29:07:a7:99:a1:c5:22:bd:74:c4:
b9:bb:22:00:68:9c:bb:6f:63:d1:0f:c3:e7:56:30:
06:a7:bd:f1:c4:31:a3:05:d0:5c:4e:f4:c3:59:cb:
de:8c:76:77:0c:f1:89:80:15:e1:46:01:1b:fe:d6:
60:3e:2b:78:2e:59:d9:37:e9:fe:d6:2e:71:10:1d:
52:ab:11:e3:64:a2:30:56:65:89:43:2a:86:32:c0:
6f:03:a3:f7:24:46:70:57:41:30:47:92:52:b0:fe:
af:fc:26:87:e7:a4:a6:88:2a:70:0f:11:b9:ce:75:
d4:7a:83:a8:ce:82:d8:17:04:73:0d:24:0a:ed:04:
3e:95:b5:1b:4a:6d:62:34:32:b4:01:44:a6:d2:3b:
37:b4:48:81:4f:32:20:10:c0:7d:46:60:a7:6c:6c:
fe:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3B:DD:D7:98:5D:79:CD:A9:55:A1:F7:E1:AE:15:E1:59:50:CB:C8
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:c4:23:72:66:1d:6e:d0:c1:5b:88:b4:45:68:48:d1:a1:01:
46:65:bd:7b:65:08:6a:49:60:68:98:d8:7c:65:45:2f:46:4a:
cb:a3:26:55:85:93:3a:e4:00:05:03:98:cc:3b:25:b0:bd:23:
54:3c:5e:b8:cd:c0:ac:63:2b:66:28:d3:bf:f0:31:15:46:86:
bd:7a:df:c7:31:34:a3:88:bb:3b:bb:25:56:2c:2b:b6:4d:53:
8a:92:f8:9c:96:83:4b:ce:61:94:48:4c:fe:8f:1c:bd:6b:8e:
90:6f:42:30:69:36:83:3a:b3:91:48:1b:f5:b5:0b:8b:5b:41:
67:10:58:63:48:be:6e:93:52:52:cd:fc:ec:8e:73:44:93:23:
01:9a:58:1d:df:47:39:32:e3:91:0a:2b:3e:97:44:57:96:30:
fc:5a:b0:6b:6d:5a:d7:7d:9d:9c:47:88:9c:fa:3d:ac:ba:e4:
01:30:30:fa:c7:cc:ec:2e:a9:95:65:41:3a:81:f1:d0:fd:b8:
e2:b8:6d:c7:f2:34:bf:47:38:66:95:4a:15:64:0e:59:f7:2f:
bc:f2:88:5c:ce:12:c1:0b:b0:d4:77:c9:b1:60:bc:9d:f8:23:
46:cd:96:08:e7:a7:0c:80:fe:18:10:96:e3:60:a5:5f:58:b3:
d2:f6:52:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:00 2026 by rpki-client