Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
File: OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft (raw, json)
Hash identifier: u97HkoYMEt1d+b4n+Fb8vA9kA8G3t7Yafzw8laG6qv0=
Subject key identifier: 5C:F7:FE:81:C4:D3:38:1E:72:2A:82:85:5F:5E:88:C7:B8:20:F3:A5
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 019CAC7DBBE8BA2BE4E08DAC087EFD891D5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
Manifest number: 0F2D
Signing time: Mon 02 Mar 2026 03:00:47 +0000
Manifest this update: Mon 02 Mar 2026 03:00:47 +0000
Manifest next update: Tue 03 Mar 2026 03:00:47 +0000
Files and hashes: 1: J7pOiHdYKd2j4ChTilTVhn454DE.roa (hash: hcNJP1cRdMhyS1Muhx9YTYmFbSp39gRRkj1KauS78s0=)
2: OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl (hash: Z2VVPrH9suz4olPB/MPz1x1Bgr4I20GFxaDeuuNwHfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:bb:e8:ba:2b:e4:e0:8d:ac:08:7e:fd:89:1d:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Mar 2 03:00:47 2026 GMT
Not After : Mar 3 03:00:47 2026 GMT
Subject: CN=5cf7fe81c4d3381e722a82855f5e88c7b820f3a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:49:ec:39:47:67:97:bf:a0:b7:f0:94:86:04:
2d:2c:ad:e5:8a:cd:20:9f:b2:56:66:45:e6:3e:fb:
f5:eb:ea:c8:e9:56:2d:89:51:44:46:2c:1d:70:b2:
37:f7:a6:ae:46:83:7a:32:00:18:d0:38:a4:b8:75:
96:2a:82:13:d0:c1:24:14:57:89:31:2a:18:0b:bd:
d6:c5:f6:f5:4a:96:c7:17:5a:80:14:8c:04:91:57:
51:0e:75:16:b3:b8:03:1c:53:3b:c5:9b:a9:98:a8:
f6:51:e6:ca:a6:23:ad:56:ba:b8:61:da:13:d4:60:
80:30:93:a1:f5:9b:dc:94:21:de:4c:ba:40:da:13:
ca:d0:6a:bd:9b:db:6e:01:3e:04:b4:8f:e9:87:31:
82:d1:f3:e9:5b:b6:20:bf:2d:cb:e0:d2:86:90:62:
fa:75:40:9b:40:9d:83:ac:e8:21:53:30:11:89:a9:
d8:29:f9:3b:cf:37:b3:4d:b5:a5:6c:68:12:54:12:
69:a3:8f:be:fc:e9:85:d4:42:b1:ae:89:d1:be:14:
40:7b:af:88:5e:d1:b3:66:aa:5f:7a:91:36:89:bd:
f5:e8:da:c9:32:28:f2:39:e2:cf:29:da:5d:93:c5:
f1:42:52:c2:2a:9f:8a:a8:58:bb:4d:57:6c:8c:75:
d7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F7:FE:81:C4:D3:38:1E:72:2A:82:85:5F:5E:88:C7:B8:20:F3:A5
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:a2:69:ba:3b:55:7c:4c:9e:b9:48:d4:c9:c0:e4:f8:48:eb:
5a:bb:82:40:8d:2c:94:2e:26:e4:05:31:70:00:ea:85:ec:1d:
37:8f:8b:7e:2c:92:b8:45:ba:c0:0b:d0:ea:53:53:ac:43:43:
23:54:c6:15:91:54:e0:0b:31:c0:87:24:b2:f6:09:25:7c:40:
45:3d:6b:d9:f2:d9:f2:f6:8c:c6:54:72:44:b8:d6:de:78:e2:
96:56:ef:dc:78:f6:4c:78:dc:b7:de:fd:f2:5d:b7:2a:46:c1:
04:a0:a5:88:70:3c:70:ce:71:94:9c:ef:b3:3d:94:71:cb:e6:
5f:19:99:2b:8f:17:33:c8:94:fc:b9:62:f1:35:0c:f1:31:f7:
8c:d6:94:3f:25:01:ff:53:7d:be:30:cf:92:89:1d:14:25:7d:
59:a1:31:8c:0f:89:e4:0f:52:58:02:1a:be:af:f8:64:ea:a5:
c4:c1:77:d8:cb:da:4f:09:47:da:13:50:fe:f0:16:5d:f1:40:
0d:bf:06:63:28:98:54:99:23:8c:0f:76:98:db:c5:9c:28:54:
10:74:c7:5e:6c:e7:e7:bc:4d:0e:06:58:d3:7e:a0:0b:d3:57:
c5:80:9f:1e:56:32:16:90:68:85:14:89:ff:b8:01:88:42:dd:
f2:31:51:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysfbvouivk4I2sCH79iR1bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDBmZjE1NGM0NTM5NDNhMGIwMmFhNjUwMjFjOWMyNjQ5
NDdjMmIwHhcNMjYwMzAyMDMwMDQ3WhcNMjYwMzAzMDMwMDQ3WjAzMTEwLwYDVQQD
Eyg1Y2Y3ZmU4MWM0ZDMzODFlNzIyYTgyODU1ZjVlODhjN2I4MjBmM2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEnsOUdnl7+gt/CUhgQtLK3lis0g
n7JWZkXmPvv16+rI6VYtiVFERiwdcLI396auRoN6MgAY0DikuHWWKoIT0MEkFFeJ
MSoYC73Wxfb1SpbHF1qAFIwEkVdRDnUWs7gDHFM7xZupmKj2UebKpiOtVrq4YdoT
1GCAMJOh9ZvclCHeTLpA2hPK0Gq9m9tuAT4EtI/phzGC0fPpW7Ygvy3L4NKGkGL6
dUCbQJ2DrOghUzARianYKfk7zzezTbWlbGgSVBJpo4++/OmF1EKxronRvhRAe6+I
XtGzZqpfepE2ib316NrJMijyOeLPKdpdk8XxQlLCKp+KqFi7TVdsjHXX3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFz3/oHE0zgeciqChV9eiMe4IPOlMB8GA1UdIwQY
MBaAFDpA/xVMRTlDoLAqplAhycJklHwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQt
ODJiYjBiYjExZTNlLzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi80ZWZjYWUtYWZjOS00MjJiLWFhZGQtODJiYjBiYjExZTNl
LzEvT2tEX0ZVeEZPVU9nc0NxbVVDSEp3bVNVZkNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiqJpujtV
fEyeuUjUycDk+EjrWruCQI0slC4m5AUxcADqhewdN4+LfiySuEW6wAvQ6lNTrEND
I1TGFZFU4AsxwIcksvYJJXxART1r2fLZ8vaMxlRyRLjW3njillbv3Hj2THjct979
8l23KkbBBKCliHA8cM5xlJzvsz2UccvmXxmZK48XM8iU/Lli8TUM8TH3jNaUPyUB
/1N9vjDPkokdFCV9WaExjA+J5A9SWAIavq/4ZOqlxMF32MvaTwlH2hNQ/vAWXfFA
Db8GYyiYVJkjjA92mNvFnChUEHTHXmzn57xNDgZY036gC9NXxYCfHlYyFpBohRSJ
/7gBiELd8jFRHQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:07:17 2026 by rpki-client