Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
File: 407DAF8DC897D3F1C43D866EA945305303AD73ED.mft (raw, json)
Hash identifier: N3crx6g8WeCFKF3kXLOMzuSJgrQRzxfJGRZrlXuSRFI=
Subject key identifier: D9:08:4A:BF:0F:5A:8F:ED:62:6A:FA:91:79:BE:50:69:54:DD:25:2F
Authority key identifier: 40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED
Certificate issuer: /CN=407daf8dc897d3f1c43d866ea945305303ad73ed
Certificate serial: 4E7B3C7AF43F5CE23A463961DAEB2EEA1300C93B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
Manifest number: 011A
Signing time: Fri 12 Jun 2026 22:34:48 +0000
Manifest this update: Fri 12 Jun 2026 22:29:48 +0000
Manifest next update: Sun 14 Jun 2026 01:41:48 +0000
Files and hashes: 1: 323030313a3637383a6531303a3a2f34382d3438203d3e20323038393135.roa (hash: Q+rBjBtdmpkMnJJ1scyQFgFf7p0XTL49lt2rh8zsejE=)
2: 407DAF8DC897D3F1C43D866EA945305303AD73ED.crl (hash: 6dMEgWrEnTqZ9/kRClpCUIB/VR9rBp3EgV8PWYExs5M=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl
rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:7b:3c:7a:f4:3f:5c:e2:3a:46:39:61:da:eb:2e:ea:13:00:c9:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407daf8dc897d3f1c43d866ea945305303ad73ed
Validity
Not Before: Jun 12 22:29:48 2026 GMT
Not After : Jun 14 01:41:48 2026 GMT
Subject: CN=D9084ABF0F5A8FED626AFA9179BE506954DD252F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2b:df:66:e0:44:2b:05:31:55:38:fb:69:81:
1e:19:04:c1:9a:6b:11:fa:a6:49:ce:38:25:6c:a3:
63:c7:5c:fb:82:fc:ae:f2:4c:90:62:d1:2f:f0:f7:
5f:0a:74:65:61:7a:6f:88:fe:60:0d:01:6b:f8:64:
71:74:1f:d1:d5:db:e4:11:86:39:d0:2a:8b:53:ba:
45:3e:27:ce:a4:02:de:2c:35:b6:bc:62:26:ea:fc:
28:5a:3a:90:5b:74:55:98:7a:1f:a5:33:01:60:fc:
69:8d:08:00:d6:87:e9:9a:c9:ea:50:c4:db:8d:6e:
3f:92:0d:73:5a:37:fc:d6:17:d8:35:c2:c3:bb:d7:
7b:e2:eb:b7:f7:56:fc:40:dc:51:3f:48:1f:cd:8d:
93:5d:b0:47:e5:d4:f1:26:89:a7:1b:2b:13:a1:e6:
32:9b:11:15:f0:30:14:03:c5:71:c6:d5:49:cd:de:
4f:76:8f:27:40:12:f2:62:ae:46:4a:9b:bc:d2:0e:
71:37:ef:49:d3:e8:10:6b:3d:52:65:bf:b7:df:64:
8b:7e:23:0e:7e:a2:1a:64:c0:e6:c4:06:ba:4a:2d:
96:99:ac:d4:6d:c8:18:09:2c:87:ba:bf:16:1b:38:
9d:22:e7:40:10:e5:ee:f8:e3:4b:be:a8:a7:dd:62:
d2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:08:4A:BF:0F:5A:8F:ED:62:6A:FA:91:79:BE:50:69:54:DD:25:2F
X509v3 Authority Key Identifier:
keyid:40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:23:f0:45:96:4b:41:3e:10:97:f9:87:cc:a3:6c:2a:d5:0b:
79:fe:74:49:d0:dd:4a:96:2d:84:56:b8:8c:2d:9a:7b:6e:74:
52:32:09:b0:53:61:1b:01:41:50:43:35:33:b4:f0:2a:7d:3c:
4e:5c:ed:a9:ef:16:bf:2d:5e:8f:33:53:7c:df:72:ce:4b:e8:
ad:f0:53:2e:88:0a:1f:5b:4e:f8:0d:1b:2f:04:61:c1:58:18:
a4:96:3c:60:4a:cf:73:9a:e6:9c:ce:24:f7:5a:04:2a:0a:d8:
b7:76:cb:f7:44:02:74:44:a1:61:4b:7d:23:50:d1:cb:01:41:
19:18:57:96:93:6a:01:08:fa:65:b6:3a:96:75:af:a6:74:60:
9d:04:3b:18:08:0a:79:41:af:0c:8c:ea:35:e3:38:cc:34:2d:
ab:1d:b2:68:97:2a:2f:41:7f:e0:a3:4b:87:3c:a1:c6:26:65:
bb:c7:c1:9c:e3:7f:9b:5e:44:51:92:9f:c9:f1:53:5b:b9:5a:
ad:c8:6f:cf:df:11:32:7a:0f:f1:ce:9b:9f:e8:c8:e0:95:fa:
dc:a6:e1:c1:0b:85:0e:a8:0b:f2:d3:96:b3:d7:4c:ef:76:32:
15:e9:ad:55:88:0c:45:d1:86:7e:81:ba:a0:a8:1b:7f:c3:35:
06:d6:ec:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:14:03 2026 by rpki-client