Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: YhjNPNbC1WauiQ6ppVM+LZb+TCig6/vfiTe1BpamZ6g=
Subject key identifier: 07:A0:EF:EA:26:76:A5:A3:5F:CA:82:CE:2C:D8:F7:1F:86:84:88:11
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 019CAD59C0950C4530B6EF155A16E40F6EE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 1846
Signing time: Mon 02 Mar 2026 07:01:06 +0000
Manifest this update: Mon 02 Mar 2026 07:01:06 +0000
Manifest next update: Tue 03 Mar 2026 07:01:06 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: HmFsR+fzBqZG6JmI3m+b5MlKfAByfq0TllfHv6l4M1M=)
2: gZRVVjbr0VF9kLZepM4sAakfV64.roa (hash: OS+DVlQyVLtcNxKCYd+cy14Vh3Z+rz6mTy8GBtTKd0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:c0:95:0c:45:30:b6:ef:15:5a:16:e4:0f:6e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Mar 2 07:01:06 2026 GMT
Not After : Mar 3 07:01:06 2026 GMT
Subject: CN=07a0efea2676a5a35fca82ce2cd8f71f86848811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:52:28:64:32:34:51:ca:b8:3d:a4:6d:06:2c:
b8:cf:f6:c1:03:da:d4:d9:d3:a4:6f:80:31:2f:62:
18:e1:ee:71:c1:a0:22:96:9a:07:9c:b1:f3:20:fb:
49:9d:f3:2c:17:cb:b2:6d:4e:fd:b8:03:22:c3:fe:
9d:94:57:fc:67:3b:08:d4:f7:71:b9:9f:d1:55:35:
6d:35:54:07:8a:54:d0:89:cf:a6:81:24:ac:3a:1e:
5b:95:1e:a0:ba:0c:e4:70:1d:b1:2a:a0:9a:00:c5:
f0:42:73:3e:b0:2d:fd:cc:bb:75:fc:d8:1f:74:69:
7b:5f:9c:77:46:ca:1b:03:c0:5c:da:74:a0:2f:0e:
8e:ee:51:b3:da:d6:73:ef:e9:0a:ae:ce:44:0a:d9:
11:9e:c4:13:81:11:5c:6d:90:90:10:f7:15:6a:10:
e4:2a:56:77:e9:33:7e:41:b7:65:da:74:a1:31:82:
17:28:3d:28:11:8b:ca:7d:07:cf:80:e3:05:b2:e4:
58:d7:b1:a1:b0:68:df:2c:74:82:a2:ca:c0:98:d5:
e3:b5:44:e2:cf:40:69:a7:07:b2:75:ce:ea:e0:e2:
26:44:6a:93:a6:d3:26:62:9a:d4:d4:5f:14:f7:d2:
c8:10:43:5e:4c:4a:c5:23:3d:c4:e7:c6:0a:a4:eb:
53:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A0:EF:EA:26:76:A5:A3:5F:CA:82:CE:2C:D8:F7:1F:86:84:88:11
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:e8:85:7d:8b:ea:38:f8:12:19:9b:3a:47:da:c8:9d:55:b5:
e4:d4:0a:ce:16:bb:40:75:88:bd:6e:6d:18:a1:69:45:b5:8a:
05:3e:df:29:e4:bf:ce:6d:23:3d:d3:9e:f0:24:67:67:82:fc:
ac:de:35:4a:25:de:fb:ca:af:2f:aa:42:e7:fe:73:34:e2:84:
94:d3:fc:05:aa:1f:fc:8e:d9:26:b2:b3:0a:b5:d1:4b:5c:74:
14:20:5a:74:6a:15:85:89:01:dd:9c:e0:5d:bc:23:9f:48:fa:
45:5b:11:cd:39:22:fa:f7:66:10:d4:f4:bd:e3:e2:56:73:b3:
7a:1a:88:eb:bd:f7:8b:bd:d1:37:11:4a:3c:d0:e1:07:3e:cf:
51:35:53:a2:89:f1:c1:84:96:19:da:6c:07:2e:4e:21:ac:47:
89:a6:4b:6c:c6:4c:9c:ad:f9:17:f7:f6:e4:d5:ae:37:98:0e:
27:ef:ac:8f:a1:17:8a:b8:22:dc:67:19:db:ff:73:70:fa:3a:
af:1d:b8:a5:5d:b8:8a:26:c4:3c:99:4c:11:91:89:c7:c0:b8:
43:0b:6f:b7:4a:aa:18:a7:e1:d8:01:48:52:52:19:55:24:14:
fa:87:8a:f0:5d:8d:f9:58:2a:0f:2e:2e:82:29:b6:55:2e:56:
97:76:5c:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWcCVDEUwtu8VWhbkD27jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZjdjZDBlYzRjM2JjNTRjNTk0MzEzMDdlZWMzNmVmMDM4
Mjc3MzMwHhcNMjYwMzAyMDcwMTA2WhcNMjYwMzAzMDcwMTA2WjAzMTEwLwYDVQQD
EygwN2EwZWZlYTI2NzZhNWEzNWZjYTgyY2UyY2Q4ZjcxZjg2ODQ4ODExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlIoZDI0Ucq4PaRtBiy4z/bBA9rU
2dOkb4AxL2IY4e5xwaAilpoHnLHzIPtJnfMsF8uybU79uAMiw/6dlFf8ZzsI1Pdx
uZ/RVTVtNVQHilTQic+mgSSsOh5blR6gugzkcB2xKqCaAMXwQnM+sC39zLt1/Ngf
dGl7X5x3RsobA8Bc2nSgLw6O7lGz2tZz7+kKrs5ECtkRnsQTgRFcbZCQEPcVahDk
KlZ36TN+Qbdl2nShMYIXKD0oEYvKfQfPgOMFsuRY17GhsGjfLHSCosrAmNXjtUTi
z0Bppweydc7q4OImRGqTptMmYprU1F8U99LIEENeTErFIz3E58YKpOtTyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAeg7+omdqWjX8qCzizY9x+GhIgRMB8GA1UdIwQY
MBaAFNH3zQ7Ew7xUxZQxMH7sNu8DgnczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wMjRkNDctNDdiMi00MGI1LWEyYjgt
OWNiNWQ4OGZkZDM5LzEvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8wMjRkNDctNDdiMi00MGI1LWEyYjgtOWNiNWQ4OGZkZDM5
LzEvMGZmTkRzVER2RlRGbERFd2Z1dzI3d09DZHpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAluiFfYvq
OPgSGZs6R9rInVW15NQKzha7QHWIvW5tGKFpRbWKBT7fKeS/zm0jPdOe8CRnZ4L8
rN41SiXe+8qvL6pC5/5zNOKElNP8Baof/I7ZJrKzCrXRS1x0FCBadGoVhYkB3Zzg
Xbwjn0j6RVsRzTki+vdmENT0vePiVnOzehqI6733i73RNxFKPNDhBz7PUTVToonx
wYSWGdpsBy5OIaxHiaZLbMZMnK35F/f25NWuN5gOJ++sj6EXirgi3GcZ2/9zcPo6
rx24pV24iibEPJlMEZGJx8C4Qwtvt0qqGKfh2AFIUlIZVSQU+oeK8F2N+VgqDy4u
gim2VS5Wl3ZcgA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:01:20 2026 by rpki-client