Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
File: OKN8JN3KNH1xPteU0zzUqBqLSYo.mft (raw, json)
Hash identifier: lOh3JdNiDdrJGIfhW39V/Tks4i5zwbLkyMqB/VUO0LI=
Subject key identifier: 89:9B:F0:81:59:B3:FB:D8:76:21:6A:D9:7F:FF:C9:E0:C8:18:C7:1E
Authority key identifier: 38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
Certificate issuer: /CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Certificate serial: 019D98502D44C43EC2432EB279B4B7B1A07D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
Manifest number: 186D
Signing time: Thu 16 Apr 2026 22:01:24 +0000
Manifest this update: Thu 16 Apr 2026 22:01:24 +0000
Manifest next update: Fri 17 Apr 2026 22:01:24 +0000
Files and hashes: 1: GRmYf5fBtQllaFBPiERX0WNTqyw.roa (hash: OUUewVjWM6OodlJe2MBm0csiVAeXeLMBert10ePJJOg=)
2: OKN8JN3KNH1xPteU0zzUqBqLSYo.crl (hash: lkrZShxg9YQFLCVvMekLiCBWnyJIRPVdjShFBUe5nJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:2d:44:c4:3e:c2:43:2e:b2:79:b4:b7:b1:a0:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a37c24ddca347d713ed794d33cd4a81a8b498a
Validity
Not Before: Apr 16 22:01:24 2026 GMT
Not After : Apr 17 22:01:24 2026 GMT
Subject: CN=899bf08159b3fbd876216ad97fffc9e0c818c71e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5a:ca:9c:90:fa:0e:2f:aa:02:ef:96:0c:c0:
61:7c:a6:06:12:0b:bc:d7:32:71:86:3f:9b:8f:a3:
21:46:cf:7e:d1:90:13:11:ca:c0:6f:9b:12:4a:06:
61:45:6c:ed:21:13:d1:5a:56:a8:96:33:11:af:4e:
73:75:eb:2b:42:64:8b:e8:92:5c:37:58:ed:f4:55:
a1:6e:56:82:7e:a3:4d:d5:36:8e:96:e9:5e:80:04:
a1:43:f0:b1:13:31:f8:fb:4a:09:3f:33:15:67:0d:
67:29:d5:fe:76:98:06:9c:78:62:1a:5b:6c:bd:c2:
d3:e0:46:4c:3b:56:58:4f:3d:01:5c:66:cd:94:fd:
c5:fa:57:f8:56:4f:3a:26:d1:ce:d1:2b:fa:02:f7:
d3:bc:fc:e3:5c:60:aa:0a:01:f2:b2:8e:9c:45:cd:
55:27:9f:37:17:dc:b7:ec:8b:47:79:d3:4f:9b:1d:
26:84:6d:14:21:fa:c5:6e:b8:62:3e:00:b3:40:05:
ae:48:71:40:8d:50:cd:64:68:3a:9a:b1:7c:db:42:
cb:74:93:40:0e:ec:72:0f:48:17:90:80:b2:c8:21:
93:af:16:af:b6:73:bb:07:e4:a2:0a:5d:b7:86:df:
c8:d3:4a:95:7f:31:1e:ba:9f:72:20:32:1b:59:0b:
52:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9B:F0:81:59:B3:FB:D8:76:21:6A:D9:7F:FF:C9:E0:C8:18:C7:1E
X509v3 Authority Key Identifier:
keyid:38:A3:7C:24:DD:CA:34:7D:71:3E:D7:94:D3:3C:D4:A8:1A:8B:49:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKN8JN3KNH1xPteU0zzUqBqLSYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1e33c3-d197-45f2-828e-44a49d263700/1/OKN8JN3KNH1xPteU0zzUqBqLSYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:09:95:59:ac:b6:be:21:67:61:f7:4e:bd:5f:57:3a:9b:6b:
e0:44:39:a6:6b:0d:fa:34:bb:2c:81:dd:99:f0:9e:6f:91:c5:
2d:94:18:5e:16:5e:c1:a1:83:b7:af:35:cf:c8:64:a2:7c:c0:
27:08:2d:2d:62:46:cb:97:56:53:88:09:6e:c8:2b:e8:54:7c:
f7:eb:db:ba:dc:38:94:d2:3c:79:18:21:ef:89:e1:86:94:92:
b6:b7:15:12:4c:bf:92:c8:b3:f7:15:97:3f:2f:fe:13:87:f8:
d5:7b:06:32:e3:dc:4e:6d:82:2a:f9:bc:81:57:59:e9:4a:86:
c2:cf:4a:84:f4:37:73:c1:be:fe:f4:29:66:98:e2:6f:9e:c6:
93:fc:c4:a6:ea:28:d8:39:fd:6b:9f:64:07:0f:0d:80:7f:a3:
87:b6:b5:39:70:37:6e:42:a6:92:73:ad:9b:13:df:f2:31:e1:
93:4f:48:7c:f9:c1:96:ee:f1:a2:e2:cc:6a:55:64:42:dd:d8:
10:a1:07:ef:76:17:9d:2c:e3:61:79:94:0e:bc:6f:71:05:53:
3e:f9:fa:30:7c:1c:e8:ed:f9:aa:66:a2:f3:c8:9c:5d:86:3e:
de:7a:1f:4b:06:58:35:d8:34:d6:50:42:fe:c0:80:4f:1f:c6:
57:a3:65:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:55:49 2026 by rpki-client