Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
File: hbfVzNrwMwl0l0V2QgCnJydkcwo.mft (raw, json)
Hash identifier: y5mrcqMcEVYBCymM0VfygBZ+R1KeCgbE8TA2FQwheAs=
Subject key identifier: FF:3E:7B:5A:F4:C2:D0:FD:09:B9:35:2C:B3:C1:95:DC:27:92:69:F5
Authority key identifier: 85:B7:D5:CC:DA:F0:33:09:74:97:45:76:42:00:A7:27:27:64:73:0A
Certificate issuer: /CN=85b7d5ccdaf03309749745764200a7272764730a
Certificate serial: 019EB76ACD4DF6BDCEB1B1AA16C43E0B119D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
Manifest number: 1957
Signing time: Thu 11 Jun 2026 16:01:30 +0000
Manifest this update: Thu 11 Jun 2026 16:01:30 +0000
Manifest next update: Fri 12 Jun 2026 16:01:30 +0000
Files and hashes: 1: hbfVzNrwMwl0l0V2QgCnJydkcwo.crl (hash: e5i57emMf7wCdQ/8TGqLumRX8rucV/PBULK8VP+3FGQ=)
2: jWbtLmnHDGkouuNXe0nQhKRRoZQ.roa (hash: N3EOZbDfEcrnakBa74+QQELHNWZ9acd9bm7XvC99pnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:6a:cd:4d:f6:bd:ce:b1:b1:aa:16:c4:3e:0b:11:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b7d5ccdaf03309749745764200a7272764730a
Validity
Not Before: Jun 11 16:01:30 2026 GMT
Not After : Jun 12 16:01:30 2026 GMT
Subject: CN=ff3e7b5af4c2d0fd09b9352cb3c195dc279269f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:13:94:3d:97:93:96:0e:77:10:30:ea:fd:3f:
d2:8e:05:32:7e:49:9a:42:9c:27:c0:6a:a5:4c:99:
15:fb:61:61:8d:9b:b0:cb:0b:8c:4d:9c:27:e1:11:
13:ff:d0:d3:1d:6e:74:77:55:71:e7:0d:9d:c4:4c:
a8:09:39:78:26:31:c5:3d:50:a3:f2:41:e4:4d:1d:
c4:6e:7b:c2:09:21:71:61:e8:ab:92:3f:d0:ad:28:
51:2d:8f:9c:6e:c7:31:dc:d4:97:67:9b:ba:55:f0:
c8:3b:ad:7f:97:5e:97:32:7d:9a:99:33:ca:9e:ca:
8b:47:10:c9:1a:a5:f8:62:db:8b:54:cb:bd:58:b0:
d2:36:c7:1d:a3:c0:61:cf:72:43:ee:7f:d6:e3:b8:
c9:84:4b:e7:a4:76:b4:16:a3:6d:64:20:1a:28:69:
88:ce:a4:04:f8:ce:17:98:7d:37:15:4b:db:f4:f1:
94:6d:83:cf:c1:14:85:15:ca:90:b8:62:df:41:99:
f6:b6:bb:41:e3:4b:e4:37:e1:62:f3:d6:fe:21:83:
b2:48:44:ea:99:3f:e2:84:5b:81:ec:12:e9:47:34:
32:29:dd:30:ef:46:6d:d2:10:bc:6b:b0:7a:3e:94:
55:62:ad:37:bb:eb:33:16:ff:e9:38:ac:de:6c:48:
53:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:3E:7B:5A:F4:C2:D0:FD:09:B9:35:2C:B3:C1:95:DC:27:92:69:F5
X509v3 Authority Key Identifier:
keyid:85:B7:D5:CC:DA:F0:33:09:74:97:45:76:42:00:A7:27:27:64:73:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbfVzNrwMwl0l0V2QgCnJydkcwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1137d8-1d36-41bb-b7fa-409493694a52/1/hbfVzNrwMwl0l0V2QgCnJydkcwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:76:c8:11:5a:3b:61:3c:08:d4:2f:a7:d9:aa:39:b2:81:b2:
ad:b0:90:9b:95:79:70:de:53:5a:f3:f4:f5:3c:df:4c:45:20:
6e:b2:55:e8:4c:74:76:2d:55:28:4a:34:a1:bf:b3:cd:4d:cf:
08:25:19:ff:fe:c7:d1:3f:42:25:49:1a:a1:1d:f9:77:00:08:
25:7c:b0:fe:0d:17:20:85:44:1c:da:37:83:66:eb:4c:1e:5c:
80:a5:00:ff:c0:37:9a:ec:e3:b8:29:13:6d:cf:b9:94:20:c6:
03:8b:15:db:94:1a:23:a3:eb:29:b5:39:8f:97:fd:e2:cd:a7:
4f:09:80:13:b0:c2:d3:0a:d0:2c:63:af:9a:ef:23:b9:cc:be:
ad:bd:25:bc:a5:1e:87:a0:c4:65:b6:8b:82:06:08:54:cb:3f:
40:e4:07:ee:d4:3f:2a:db:0e:27:92:8a:50:3f:69:2b:c1:eb:
f4:40:e1:9b:00:53:a6:87:bd:cf:70:35:ce:9f:df:9c:00:80:
b8:75:6e:98:66:7a:ca:a9:6c:47:67:c0:f9:ad:a4:1f:6a:73:
5d:87:59:b7:51:48:b5:9d:ea:bb:9a:7a:1d:85:c8:4c:af:e4:
a2:09:72:ee:57:5d:ca:48:6d:13:a2:30:81:8d:52:be:34:7d:
7f:96:d3:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 20:33:36 2026 by rpki-client