Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: jWThIxG4E77i5I3BRZGkF7oWwpl3xdc+ujSnsEBOWuI=
Subject key identifier: DE:3C:F9:D2:10:CF:C1:C9:C4:24:02:27:69:04:AB:34:71:79:24:9C
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 019ED4CFFA965D1D59296FAE432167718ADC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 104B
Signing time: Wed 17 Jun 2026 09:01:00 +0000
Manifest this update: Wed 17 Jun 2026 09:01:00 +0000
Manifest next update: Thu 18 Jun 2026 09:01:00 +0000
Files and hashes: 1: J7pOiHdYKd2j4ChTilTVhn454DE.roa (hash: hcNJP1cRdMhyS1Muhx9YTYmFbSp39gRRkj1KauS78s0=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: 9fqx+hYpPYQGnhTWn63S0oIMZYLXX+hQIK07sfumkNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:cf:fa:96:5d:1d:59:29:6f:ae:43:21:67:71:8a:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Jun 17 09:01:00 2026 GMT
Not After : Jun 18 09:01:00 2026 GMT
Subject: CN=de3cf9d210cfc1c9c42402276904ab347179249c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8e:3c:75:93:a2:fe:5f:1a:f4:d5:fb:ed:dd:
19:f4:ab:91:72:66:fa:33:66:45:93:8c:63:6d:73:
0b:3e:62:e7:43:02:47:9f:13:b5:67:7f:c5:7f:78:
72:6b:5c:bf:39:9c:21:d6:01:97:f3:76:9e:ef:ec:
df:77:6c:58:df:bd:32:f2:77:67:bc:69:ef:70:ad:
3b:0e:a4:f3:50:77:32:9d:da:6c:92:f5:c9:e2:03:
f8:5b:74:1a:a3:16:45:2a:fd:b1:48:17:82:78:62:
0c:0e:36:41:07:f3:3d:f3:0f:06:70:3d:e9:9c:ad:
de:1d:f7:cc:cd:c6:e7:50:ca:a2:c0:96:76:00:0d:
46:13:d2:01:72:b8:f2:2e:fc:94:64:22:72:32:87:
bc:bc:39:64:b5:2c:14:21:0c:b8:16:b3:96:23:fc:
3a:96:19:b3:7c:e9:2a:94:dc:b3:f4:e8:3b:29:ba:
8a:43:ce:97:9f:66:68:60:5a:e7:5f:87:4d:59:b8:
95:ca:39:0c:51:ed:7c:a1:b7:8e:bb:55:be:56:81:
be:98:c5:d4:51:7f:a0:6a:1b:9b:20:92:9c:50:85:
15:5d:d5:df:be:45:61:37:be:2c:07:d8:2a:0d:09:
0b:6d:29:13:c5:0c:e6:d9:74:bc:34:f9:57:59:74:
b5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:3C:F9:D2:10:CF:C1:C9:C4:24:02:27:69:04:AB:34:71:79:24:9C
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:d7:b9:80:dc:07:a7:6d:3f:43:e7:a6:88:2f:cb:1d:9f:f1:
7a:39:07:37:f3:33:aa:1c:81:ec:bb:ed:c4:43:49:7e:98:11:
b7:4f:10:96:39:20:15:82:8c:0d:4d:f9:33:c4:ec:0a:87:41:
57:95:61:d5:35:92:31:43:9e:d8:44:05:a7:70:dc:23:d5:e3:
78:50:51:f0:1f:ee:2b:a8:43:56:40:b4:c6:da:c6:2a:b1:d7:
00:a7:2a:43:cf:f3:3c:db:51:dd:9b:52:5e:0b:87:3f:10:f3:
2c:d6:96:78:85:1a:52:35:44:b5:18:04:a0:f5:f6:e4:87:43:
9a:9a:e5:c2:f6:90:f5:40:32:a5:f6:24:74:f8:ff:8b:d3:f6:
55:39:e4:b2:8c:97:00:bc:c7:5f:3e:c3:99:82:e1:cb:b0:f4:
98:e0:3c:d7:54:12:8b:61:db:5d:30:20:84:b3:1b:4b:6c:29:
38:3d:a5:d7:c4:7f:7f:e5:7c:ee:8c:e2:30:6e:db:26:6a:f1:
ec:d3:fe:75:9e:98:29:ba:26:2d:96:6d:f1:5a:ae:ed:4f:26:
35:73:2c:3f:93:7e:32:44:47:6b:7c:f0:5d:49:40:0f:2e:09:
0b:93:f2:9c:1c:e3:c2:e6:a5:3e:ae:0e:47:39:2d:4e:31:7e:
6f:00:67:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Uz/qWXR1ZKW+uQyFncYrcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDBmZjE1NGM0NTM5NDNhMGIwMmFhNjUwMjFjOWMyNjQ5
NDdjMmIwHhcNMjYwNjE3MDkwMTAwWhcNMjYwNjE4MDkwMTAwWjAzMTEwLwYDVQQD
EyhkZTNjZjlkMjEwY2ZjMWM5YzQyNDAyMjc2OTA0YWIzNDcxNzkyNDljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtY48dZOi/l8a9NX77d0Z9KuRcmb6
M2ZFk4xjbXMLPmLnQwJHnxO1Z3/Ff3hya1y/OZwh1gGX83ae7+zfd2xY370y8ndn
vGnvcK07DqTzUHcyndpskvXJ4gP4W3QaoxZFKv2xSBeCeGIMDjZBB/M98w8GcD3p
nK3eHffMzcbnUMqiwJZ2AA1GE9IBcrjyLvyUZCJyMoe8vDlktSwUIQy4FrOWI/w6
lhmzfOkqlNyz9Og7KbqKQ86Xn2ZoYFrnX4dNWbiVyjkMUe18obeOu1W+VoG+mMXU
UX+gahubIJKcUIUVXdXfvkVhN74sB9gqDQkLbSkTxQzm2XS8NPlXWXS1GQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN48+dIQz8HJxCQCJ2kEqzRxeSScMB8GA1UdIwQY
MBaAFDpA/xVMRTlDoLAqplAhycJklHwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQt
ODJiYjBiYjExZTNlLzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQtODJiYjBiYjExZTNl
LzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUde5gNwH
p20/Q+emiC/LHZ/xejkHN/MzqhyB7LvtxENJfpgRt08QljkgFYKMDU35M8TsCodB
V5Vh1TWSMUOe2EQFp3DcI9XjeFBR8B/uK6hDVkC0xtrGKrHXAKcqQ8/zPNtR3ZtS
XguHPxDzLNaWeIUaUjVEtRgEoPX25IdDmprlwvaQ9UAypfYkdPj/i9P2VTnksoyX
ALzHXz7DmYLhy7D0mOA811QSi2HbXTAghLMbS2wpOD2l18R/f+V87oziMG7bJmrx
7NP+dZ6YKbomLZZt8Vqu7U8mNXMsP5N+MkRHa3zwXUlADy4JC5PynBzjwualPq4O
RzktTjF+bwBn7Q==
-----END CERTIFICATE-----
Generated at Wed Jun 17 13:00:37 2026 by rpki-client