Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
File: 0ccPHzPFgdt4oUm8htc5zcfOJqc.mft (raw, json)
Hash identifier: JzQ/nen8BrF4B5H45sQJgvjn6ZMkGa670SL0DcI6xy8=
Subject key identifier: AF:4D:06:BE:93:90:C5:81:A4:65:CE:EF:C0:D6:EE:88:9D:4A:94:12
Authority key identifier: D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
Certificate issuer: /CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Certificate serial: 019D38D35E7B1337CE7E74BFF4851B34C757
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
Manifest number: 0726
Signing time: Sun 29 Mar 2026 09:01:09 +0000
Manifest this update: Sun 29 Mar 2026 09:01:09 +0000
Manifest next update: Mon 30 Mar 2026 09:01:09 +0000
Files and hashes: 1: 0ccPHzPFgdt4oUm8htc5zcfOJqc.crl (hash: giyffcRoeUCki75o3tWG+ah5rUuzioNTfNlVXGYI9+Y=)
2: 6-x6MjhIWmKkKN8PSvag3_NMayM.roa (hash: DJxqLKJWXBtl7f6AjOofGTskuyYrFGFq1UI9pHAp0p0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:5e:7b:13:37:ce:7e:74:bf:f4:85:1b:34:c7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Validity
Not Before: Mar 29 09:01:09 2026 GMT
Not After : Mar 30 09:01:09 2026 GMT
Subject: CN=af4d06be9390c581a465ceefc0d6ee889d4a9412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c0:42:6e:b9:18:e3:b0:b8:84:0c:e3:5a:4c:
1b:2a:e6:56:5a:a0:35:a3:72:0c:5d:1f:90:49:0e:
45:ee:85:6f:2b:cf:76:e3:a3:ad:4a:4c:95:a5:bc:
85:89:dc:f3:54:5f:4a:b0:dd:62:88:6c:a8:66:f9:
af:f9:08:d3:81:b9:5c:92:66:7f:f8:c5:4f:34:b0:
1c:56:dd:5f:2f:4f:74:e3:64:89:c1:fa:d0:ab:2b:
a6:7e:8c:35:49:5c:88:83:7d:98:b1:f6:32:bb:db:
4c:0a:53:6b:eb:ec:ff:4d:fa:da:a7:76:34:1b:65:
cc:b2:a3:d3:bf:92:d9:f2:c9:12:29:5f:d2:33:07:
0e:14:03:d8:10:76:66:30:c1:25:33:f8:2f:68:97:
3f:85:d4:fc:c9:1b:db:83:2b:26:9d:cb:14:65:44:
36:fc:c6:5b:80:ed:a9:d4:6d:6d:cb:56:a6:d9:5d:
8e:08:02:a5:01:99:24:3f:a8:1a:cb:2d:a9:2c:c8:
d4:8d:96:0d:04:81:f8:30:51:33:7a:ac:86:e2:92:
c2:18:4a:93:7a:47:9a:ea:71:d1:b8:c7:07:39:47:
a8:e4:a7:a2:83:d4:ec:de:f3:81:12:4a:fb:ff:d2:
ea:6a:93:2d:63:37:61:d7:fe:fd:00:3b:3d:6c:50:
f6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4D:06:BE:93:90:C5:81:A4:65:CE:EF:C0:D6:EE:88:9D:4A:94:12
X509v3 Authority Key Identifier:
keyid:D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:e7:c6:5d:a2:23:03:43:8c:e7:ab:34:91:ca:ea:5e:57:6d:
6f:53:c0:9e:b4:60:86:64:02:32:d8:b2:9d:e2:12:6c:45:d2:
de:38:6b:44:ff:cf:b8:b8:62:f2:86:b6:1d:5a:f6:1a:2a:90:
de:06:f0:0e:3f:b9:ae:00:f6:2a:04:a6:28:87:67:c2:6d:80:
1d:f2:75:46:d0:12:c6:89:4b:95:41:d6:ff:86:89:03:81:ff:
07:54:6f:ff:e3:04:17:83:39:b1:e8:59:f1:fe:27:4b:24:1c:
f2:b3:43:ea:c4:3a:d3:7a:da:e8:bc:48:cd:ef:4c:fb:0a:c2:
ae:9d:85:6f:17:4f:7c:e5:68:d8:c5:7e:82:7e:05:c6:47:60:
05:a8:f4:9e:ea:ca:34:82:ba:74:76:4e:0c:d7:5d:dc:43:cc:
00:1c:b2:bb:8f:b7:83:4b:4f:78:34:9d:c7:29:7e:03:4f:52:
12:fb:98:4e:2b:f2:5a:d1:a1:be:b5:c9:a9:aa:f9:c7:b4:74:
d4:19:d7:a2:cc:23:79:c1:dd:ff:6a:2c:e4:bd:2a:bd:f4:84:
82:1d:01:6a:e1:9c:64:01:f1:ef:49:c7:f5:96:44:d9:81:29:
e2:1f:64:a3:97:b5:8a:fe:91:f4:d8:c4:25:4d:50:3a:4b:12:
d2:b1:c9:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040157EzfOfnS/9IUbNMdXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxYzcwZjFmMzNjNTgxZGI3OGExNDliYzg2ZDczOWNkYzdj
ZTI2YTcwHhcNMjYwMzI5MDkwMTA5WhcNMjYwMzMwMDkwMTA5WjAzMTEwLwYDVQQD
EyhhZjRkMDZiZTkzOTBjNTgxYTQ2NWNlZWZjMGQ2ZWU4ODlkNGE5NDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusBCbrkY47C4hAzjWkwbKuZWWqA1
o3IMXR+QSQ5F7oVvK89246OtSkyVpbyFidzzVF9KsN1iiGyoZvmv+QjTgblckmZ/
+MVPNLAcVt1fL09042SJwfrQqyumfow1SVyIg32YsfYyu9tMClNr6+z/Tfrap3Y0
G2XMsqPTv5LZ8skSKV/SMwcOFAPYEHZmMMElM/gvaJc/hdT8yRvbgysmncsUZUQ2
/MZbgO2p1G1ty1am2V2OCAKlAZkkP6gayy2pLMjUjZYNBIH4MFEzeqyG4pLCGEqT
ekea6nHRuMcHOUeo5Keig9Ts3vOBEkr7/9LqapMtYzdh1/79ADs9bFD2BQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK9NBr6TkMWBpGXO78DW7oidSpQSMB8GA1UdIwQY
MBaAFNHHDx8zxYHbeKFJvIbXOc3HzianMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9kM2QyNTctNmU0Yy00ZDYwLTljOTMt
ZGZjYWUzNmEzZWY4LzEvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9kM2QyNTctNmU0Yy00ZDYwLTljOTMtZGZjYWUzNmEzZWY4
LzEvMGNjUEh6UEZnZHQ0b1VtOGh0YzV6Y2ZPSnFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZufGXaIj
A0OM56s0kcrqXldtb1PAnrRghmQCMtiyneISbEXS3jhrRP/PuLhi8oa2HVr2GiqQ
3gbwDj+5rgD2KgSmKIdnwm2AHfJ1RtASxolLlUHW/4aJA4H/B1Rv/+MEF4M5sehZ
8f4nSyQc8rND6sQ603ra6LxIze9M+wrCrp2FbxdPfOVo2MV+gn4FxkdgBaj0nurK
NIK6dHZODNdd3EPMAByyu4+3g0tPeDSdxyl+A09SEvuYTivyWtGhvrXJqar5x7R0
1BnXoswjecHd/2os5L0qvfSEgh0BauGcZAHx70nH9ZZE2YEp4h9ko5e1iv6R9NjE
JU1QOksS0rHJFg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:51 2026 by rpki-client