Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
File: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft (raw, json)
Hash identifier: mOUM9kRh0UYvIlFCpGB/8TXeX7lQTdgw2t6tO3aYaM8=
Subject key identifier: D5:93:D0:14:C0:EA:20:8D:55:FD:C4:0D:9D:68:D7:62:58:5F:40:3F
Authority key identifier: 0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
Certificate issuer: /CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Certificate serial: 019D2AE12774CBF7D05A0B08F09DBAEB819D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
Manifest number: 07FB
Signing time: Thu 26 Mar 2026 16:01:31 +0000
Manifest this update: Thu 26 Mar 2026 16:01:31 +0000
Manifest next update: Fri 27 Mar 2026 16:01:31 +0000
Files and hashes: 1: 9VeKZDE1iGHZNfZDG7yt114IeSs.roa (hash: osxP6EgjjjBz4lB4YyG0W3qp7xP9edg7UyqKvlF/CrE=)
2: D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl (hash: ONNzomobEqt4OAnKxXYmaZ+BaWPrMZhlzEubDSGI1Uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:27:74:cb:f7:d0:5a:0b:08:f0:9d:ba:eb:81:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fbfe9385e6a759f833e4f09a09f0dcfed53b3e4
Validity
Not Before: Mar 26 16:01:31 2026 GMT
Not After : Mar 27 16:01:31 2026 GMT
Subject: CN=d593d014c0ea208d55fdc40d9d68d762585f403f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5b:80:6e:1f:1f:4a:ea:10:62:2f:9d:29:7b:
54:58:cd:e4:c4:da:f3:e1:d5:5c:1b:bb:1c:56:23:
1c:dc:17:9a:1f:86:1b:90:9e:38:e4:8a:88:66:45:
97:6c:21:8c:99:29:06:8c:ae:de:df:03:70:a8:b9:
ea:d9:6c:96:22:ef:e7:09:c8:15:6b:cb:e7:1f:78:
dc:db:5e:ab:31:3d:f0:14:61:bd:1a:27:2e:17:38:
35:42:a6:83:1b:78:86:45:e3:8f:71:1b:7e:b3:94:
9b:25:c0:5f:d6:95:a2:8d:e9:a3:3a:a1:3a:c4:a1:
f7:91:db:61:09:0c:88:f6:03:3f:98:21:a7:fd:a2:
7d:75:df:64:f4:91:5b:8b:cb:da:78:e0:53:ea:05:
11:a0:ef:2d:aa:21:f7:2a:52:4f:1d:57:57:2c:38:
47:33:fd:1e:c4:43:b7:6d:aa:8b:d3:ff:78:49:86:
04:d7:17:4a:9d:a3:72:e4:5a:6d:b1:51:2b:93:09:
e7:dc:18:f7:27:96:90:29:84:67:57:9c:11:bc:52:
ea:03:98:a5:2b:a1:64:8a:cb:89:f6:67:0a:3c:dd:
f3:0f:90:34:e5:26:a6:09:b3:96:fe:37:11:da:f7:
66:45:90:1c:b7:4d:b6:81:bb:e0:49:c2:c6:28:bb:
e2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:93:D0:14:C0:EA:20:8D:55:FD:C4:0D:9D:68:D7:62:58:5F:40:3F
X509v3 Authority Key Identifier:
keyid:0F:BF:E9:38:5E:6A:75:9F:83:3E:4F:09:A0:9F:0D:CF:ED:53:B3:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2bb948-478c-4a02-a18e-d647dc8a56b6/1/D7_pOF5qdZ-DPk8JoJ8Nz-1Ts-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d8:2f:21:4b:ee:e0:2c:01:cb:50:88:42:d1:4b:48:71:76:
49:99:84:b5:90:fe:13:ba:7a:3e:10:10:95:3a:2b:49:f4:a6:
f9:1d:91:67:0d:1f:90:3e:18:77:55:cd:f9:06:a2:1d:d4:15:
54:f3:96:b4:18:0e:fc:a9:54:13:6d:54:5c:65:4f:b9:9c:19:
20:4f:00:9a:4d:e6:2a:dd:cc:c9:b4:62:3f:83:03:d1:b1:fa:
31:a8:1e:b5:d4:81:c7:c8:a3:84:45:39:82:b7:7b:57:41:05:
99:5d:18:8a:87:36:d4:f0:c4:99:7a:63:c9:d1:bf:70:e5:64:
37:a2:fb:4e:5e:af:8d:a6:a6:99:3f:7f:fc:82:db:b9:21:02:
86:fc:af:fb:9b:48:60:ff:57:e6:4c:cb:a6:bf:29:78:ae:ba:
48:8e:49:dd:1f:7b:7d:9f:dc:51:c9:3e:6c:86:fa:c7:3a:11:
55:10:38:83:20:8b:ca:48:8c:c7:b8:89:9e:bf:5c:4e:7d:d6:
70:01:98:9e:21:a1:8a:05:8e:48:bf:05:a4:e2:4e:b2:6a:ba:
85:36:36:ce:b1:51:eb:1a:7c:f8:89:62:71:30:0a:ad:5e:2b:
10:2d:7a:e7:d1:86:b7:e5:5f:f3:1a:0a:74:74:47:74:68:0a:
30:c4:19:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0q4Sd0y/fQWgsI8J2664GdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmYmZlOTM4NWU2YTc1OWY4MzNlNGYwOWEwOWYwZGNmZWQ1
M2IzZTQwHhcNMjYwMzI2MTYwMTMxWhcNMjYwMzI3MTYwMTMxWjAzMTEwLwYDVQQD
EyhkNTkzZDAxNGMwZWEyMDhkNTVmZGM0MGQ5ZDY4ZDc2MjU4NWY0MDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVuAbh8fSuoQYi+dKXtUWM3kxNrz
4dVcG7scViMc3BeaH4YbkJ445IqIZkWXbCGMmSkGjK7e3wNwqLnq2WyWIu/nCcgV
a8vnH3jc216rMT3wFGG9GicuFzg1QqaDG3iGReOPcRt+s5SbJcBf1pWijemjOqE6
xKH3kdthCQyI9gM/mCGn/aJ9dd9k9JFbi8vaeOBT6gURoO8tqiH3KlJPHVdXLDhH
M/0exEO3baqL0/94SYYE1xdKnaNy5FptsVErkwnn3Bj3J5aQKYRnV5wRvFLqA5il
K6FkisuJ9mcKPN3zD5A05SamCbOW/jcR2vdmRZAct022gbvgScLGKLviPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNWT0BTA6iCNVf3EDZ1o12JYX0A/MB8GA1UdIwQY
MBaAFA+/6TheanWfgz5PCaCfDc/tU7PkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUt
ZDY0N2RjOGE1NmI2LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8yYmI5NDgtNDc4Yy00YTAyLWExOGUtZDY0N2RjOGE1NmI2
LzEvRDdfcE9GNXFkWi1EUGs4Sm9KOE56LTFUcy1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR9gvIUvu
4CwBy1CIQtFLSHF2SZmEtZD+E7p6PhAQlTorSfSm+R2RZw0fkD4Yd1XN+QaiHdQV
VPOWtBgO/KlUE21UXGVPuZwZIE8Amk3mKt3MybRiP4MD0bH6MagetdSBx8ijhEU5
grd7V0EFmV0Yioc21PDEmXpjydG/cOVkN6L7Tl6vjaammT9//ILbuSEChvyv+5tI
YP9X5kzLpr8peK66SI5J3R97fZ/cUck+bIb6xzoRVRA4gyCLykiMx7iJnr9cTn3W
cAGYniGhigWOSL8FpOJOsmq6hTY2zrFR6xp8+IlicTAKrV4rEC1659GGt+Vf8xoK
dHRHdGgKMMQZ5A==
-----END CERTIFICATE-----
Generated at Fri Mar 27 00:34:20 2026 by rpki-client