
Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
File: 407DAF8DC897D3F1C43D866EA945305303AD73ED.mft (raw, json)
Hash identifier: 2hcgFzmAkw1Spgr9Gq1oe8BVDxve+onydqyRWDk6ru8=
Subject key identifier: 17:E6:3B:5A:7A:B3:65:75:E0:68:FC:2E:07:AB:5D:6D:B4:4F:34:E8
Authority key identifier: 40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED
Certificate issuer: /CN=407daf8dc897d3f1c43d866ea945305303ad73ed
Certificate serial: 01E6FDB7EE4AE914AD040880948A497282966F8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
Manifest number: 013F
Signing time: Fri 10 Jul 2026 10:49:05 +0000
Manifest this update: Fri 10 Jul 2026 10:44:05 +0000
Manifest next update: Sat 11 Jul 2026 11:55:05 +0000
Files and hashes: 1: 323030313a3637383a6531303a3a2f34382d3438203d3e20323038393135.roa (hash: Q+rBjBtdmpkMnJJ1scyQFgFf7p0XTL49lt2rh8zsejE=)
2: 407DAF8DC897D3F1C43D866EA945305303AD73ED.crl (hash: RpPIiQLqMnkiT6Sq/u60uEj9ZOgS80AC8OTfyQCMgV0=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl
rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 11:55:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:e6:fd:b7:ee:4a:e9:14:ad:04:08:80:94:8a:49:72:82:96:6f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407daf8dc897d3f1c43d866ea945305303ad73ed
Validity
Not Before: Jul 10 10:44:05 2026 GMT
Not After : Jul 11 11:55:05 2026 GMT
Subject: CN=17E63B5A7AB36575E068FC2E07AB5D6DB44F34E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:25:42:5f:58:24:59:53:6a:44:54:67:33:60:
a5:8c:7d:4b:7d:b7:1a:2d:73:45:a2:c0:0e:cf:c2:
5f:99:c8:f7:42:1a:b2:f0:ce:48:1c:a6:51:22:b4:
50:54:d7:79:c0:aa:7c:8d:2a:f4:84:e4:3f:9c:8c:
24:4b:dc:cc:9d:f7:47:ea:e6:d1:b3:06:01:dc:66:
a8:35:15:d6:3a:5f:d7:14:f8:b0:90:f0:32:76:ac:
82:93:eb:e1:c2:c5:a3:b8:49:a8:48:c5:62:0d:e5:
bc:96:ed:e4:8a:22:b8:7b:16:13:37:ac:5f:8a:a3:
bb:01:b8:dc:27:ab:f6:f7:05:3e:ca:97:e7:14:94:
57:6f:0f:33:b6:72:48:46:c7:6c:ee:4e:d2:74:a4:
f3:d6:d3:55:16:98:5d:c5:15:be:0b:20:a0:90:ab:
88:be:11:93:4f:48:44:cb:00:4b:1e:5b:a4:41:2b:
a7:0b:bc:af:5b:f2:89:65:e8:ae:f7:db:e6:19:ad:
80:47:ee:22:c6:38:75:35:79:0d:0e:0c:50:70:a7:
3c:13:fe:a6:b9:13:fc:d1:6a:74:0f:dd:44:48:05:
a4:ec:b3:06:75:03:22:21:28:ea:0b:9c:2e:bb:a9:
0e:ec:cc:3d:7b:75:01:9b:ba:8d:54:66:55:2d:36:
35:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E6:3B:5A:7A:B3:65:75:E0:68:FC:2E:07:AB:5D:6D:B4:4F:34:E8
X509v3 Authority Key Identifier:
keyid:40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:76:d1:69:bc:df:5f:14:ff:24:87:c4:96:5b:87:c4:87:19:
8b:31:73:46:5c:a8:bc:74:d4:3a:20:b6:e0:08:96:32:7d:c2:
dc:b4:18:37:ee:76:f7:6d:32:a1:f8:ba:04:13:53:f4:c2:08:
f2:7e:2b:24:f8:7d:be:e0:67:e8:b4:a0:2f:39:4e:34:f6:77:
01:88:92:70:1c:69:4e:49:e3:c4:c1:d5:30:21:df:dd:35:58:
3c:3c:30:fc:23:63:14:8d:74:be:f2:d0:1b:45:83:de:5d:67:
52:7c:55:57:87:60:28:68:1f:cf:ad:4a:ef:6d:dc:f8:8f:6b:
11:ec:18:f4:47:a5:d5:16:54:bb:19:b1:8d:d5:55:c6:27:cb:
f8:de:91:4e:41:45:21:e1:fa:02:96:fa:64:21:39:ee:5b:e0:
2e:74:84:62:3e:74:30:9b:23:86:be:02:bb:37:3d:67:d0:5f:
43:7e:7f:90:71:28:48:c8:28:65:5e:a3:d5:64:7b:62:56:7b:
b3:0f:1d:fc:8c:5f:4e:fd:cb:a4:6f:b2:c6:66:2d:31:2d:17:
61:a7:6b:d7:e7:d6:af:59:29:42:f3:23:45:b0:ba:66:aa:a3:
69:9d:31:0c:05:1f:1b:8b:87:a2:d2:96:41:8d:a8:80:51:03:
0a:f8:bd:63
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUAeb9t+5K6RStBAiAlIpJcoKWb48wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDA3ZGFmOGRjODk3ZDNmMWM0M2Q4NjZlYTk0NTMwNTMw
M2FkNzNlZDAeFw0yNjA3MTAxMDQ0MDVaFw0yNjA3MTExMTU1MDVaMDMxMTAvBgNV
BAMTKDE3RTYzQjVBN0FCMzY1NzVFMDY4RkMyRTA3QUI1RDZEQjQ0RjM0RTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChJUJfWCRZU2pEVGczYKWMfUt9
txotc0WiwA7Pwl+ZyPdCGrLwzkgcplEitFBU13nAqnyNKvSE5D+cjCRL3Myd90fq
5tGzBgHcZqg1FdY6X9cU+LCQ8DJ2rIKT6+HCxaO4SahIxWIN5byW7eSKIrh7FhM3
rF+Ko7sBuNwnq/b3BT7Kl+cUlFdvDzO2ckhGx2zuTtJ0pPPW01UWmF3FFb4LIKCQ
q4i+EZNPSETLAEseW6RBK6cLvK9b8oll6K732+YZrYBH7iLGOHU1eQ0ODFBwpzwT
/qa5E/zRanQP3URIBaTsswZ1AyIhKOoLnC67qQ7szD17dQGbuo1UZlUtNjXhAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUF+Y7WnqzZXXgaPwuB6tdbbRPNOgwHwYDVR0j
BBgwFoAUQH2vjciX0/HEPYZuqUUwUwOtc+0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvOWRjY2I0YjAtZTMwZS00MjZjLTg0ZGMtNDY0ZmQxODk5
MTE2LzAvNDA3REFGOERDODk3RDNGMUM0M0Q4NjZFQTk0NTMwNTMwM0FENzNFRC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FIMnZqY2lYMF9IRVBZWnVxVVV3VXdP
dGMtMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS85ZGNjYjRiMC1l
MzBlLTQyNmMtODRkYy00NjRmZDE4OTkxMTYvMC80MDdEQUY4REM4OTdEM0YxQzQz
RDg2NkVBOTQ1MzA1MzAzQUQ3M0VELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUnbRabzfXxT/JIfElluH
xIcZizFzRlyovHTUOiC24AiWMn3C3LQYN+52920yofi6BBNT9MII8n4rJPh9vuBn
6LSgLzlONPZ3AYiScBxpTknjxMHVMCHf3TVYPDww/CNjFI10vvLQG0WD3l1nUnxV
V4dgKGgfz61K723c+I9rEewY9Eel1RZUuxmxjdVVxifL+N6RTkFFIeH6Apb6ZCE5
7lvgLnSEYj50MJsjhr4Cuzc9Z9BfQ35/kHEoSMgoZV6j1WR7YlZ7sw8d/IxfTv3L
pG+yxmYtMS0XYadr1+fWr1kpQvMjRbC6ZqqjaZ0xDAUfG4uHotKWQY2ogFEDCvi9
Yw==
-----END CERTIFICATE-----
Generated at Fri Jul 10 19:05:33 2026 by rpki-client