Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: PBIb/S70AYShdy+QQgTnv/U7V55IChWSvlbBTv/uxuc=
Subject key identifier: CB:35:D4:D9:88:17:A6:11:43:7C:81:1C:3B:3A:E0:C4:67:07:0A:B3
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 019EB733D16B00797CEA14BD3F1E08C33E82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 145F
Signing time: Thu 11 Jun 2026 15:01:26 +0000
Manifest this update: Thu 11 Jun 2026 15:01:26 +0000
Manifest next update: Fri 12 Jun 2026 15:01:26 +0000
Files and hashes: 1: UVK-TwFECyBo493Ak51MrNfcaQE.roa (hash: /fbHkbD7KPDuOT91DBKV1keIzbve2wMN0Nea8980swA=)
2: cAfMugWdxXFLBCx7sw2-yd61uKY.roa (hash: orwX8b0RS0lYztkvgn66c9x9TZlFdD7WNVOTBejxj/Y=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: IsFCuFB6uoVmcdpC36ios8G+WEupqGGxP5+SbFv2vrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:d1:6b:00:79:7c:ea:14:bd:3f:1e:08:c3:3e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jun 11 15:01:26 2026 GMT
Not After : Jun 12 15:01:26 2026 GMT
Subject: CN=cb35d4d98817a611437c811c3b3ae0c467070ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ff:09:36:78:71:cb:92:bc:4c:34:a9:1e:e8:
49:ed:5c:44:0c:2b:fd:1b:46:0e:4a:e7:a4:a1:f3:
ff:d5:8c:7b:56:71:99:07:34:99:59:ca:49:cc:30:
8e:7a:99:b5:a7:7d:87:8a:c4:63:84:6c:a9:b5:0a:
73:bb:c2:47:85:1b:f3:9f:63:ff:96:38:e5:4f:31:
2b:43:5b:a9:9b:14:26:e9:4b:76:64:2a:46:d4:a0:
88:10:32:a8:90:74:18:89:8e:d3:b0:be:06:ae:70:
a4:98:4b:eb:24:ed:81:dc:61:61:ae:0a:4f:db:a1:
ad:bb:06:26:89:40:0d:e0:d5:63:06:26:36:5c:d6:
16:5f:2d:cb:2f:11:80:c8:d4:c7:ca:72:a6:0e:6c:
ef:d6:d4:65:17:15:82:a8:1e:e7:43:2f:06:92:35:
40:3f:41:6d:bc:41:4e:22:0f:90:39:92:70:cd:3a:
29:ee:98:66:1e:50:d3:ca:45:2b:28:c0:a5:43:14:
ee:2b:75:eb:c6:e8:ff:b7:7b:c7:a3:41:02:aa:ea:
14:46:2d:57:92:ee:af:cf:16:d8:ed:59:cc:94:57:
6e:ed:59:8d:32:58:04:e3:8f:e1:67:a0:6c:b8:60:
e0:76:67:5a:8a:92:b5:30:1e:b3:40:3c:e5:9a:b3:
00:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:35:D4:D9:88:17:A6:11:43:7C:81:1C:3B:3A:E0:C4:67:07:0A:B3
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:18:96:7d:6c:3f:22:ee:9c:4e:6b:cd:d4:1e:3f:89:54:71:
ee:91:dc:7d:fa:7e:09:02:ff:8b:65:4d:0c:ab:02:1d:14:7e:
29:e7:86:43:40:4d:1c:9a:e0:9e:ee:13:73:47:6e:34:f8:35:
6f:b1:e7:26:33:40:07:42:1a:c6:aa:38:2a:60:68:e7:31:2d:
1d:86:d0:4e:19:fc:61:a5:40:82:3a:75:86:cc:e5:48:73:af:
5e:29:73:8a:50:cf:f9:a2:0d:28:fa:7d:be:02:de:39:cc:b7:
f9:ef:6b:15:2e:3d:e2:cd:37:99:7f:71:49:13:1b:43:84:bd:
92:5d:e3:54:6e:87:0b:3e:a5:9f:54:6a:8d:74:55:b3:bf:96:
1a:b5:bb:43:52:7e:a0:ae:d1:9c:d8:cb:2b:96:04:cf:0c:03:
67:2d:6f:d8:2a:77:e7:b5:07:6b:b4:be:6e:df:4d:4a:fd:d1:
fd:17:45:a3:04:4a:34:33:96:68:9e:93:08:2a:a4:30:1f:ce:
82:bf:a3:6e:7c:9c:50:5c:17:e2:92:bb:48:82:c1:54:e6:9b:
5e:75:a4:3e:f4:12:52:01:cc:67:fd:1f:f6:e3:6c:84:d3:c2:
3a:5b:80:e4:73:d2:99:eb:d9:93:f7:ea:cc:7f:8a:a7:86:38:
8b:a6:68:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:25:17 2026 by rpki-client