Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
File: hbT4demdNbFCBGk-7hHKm2qv5K4.mft (raw, json)
Hash identifier: 7iPmMYWzKqm2gsieTFnHBYooo5USJPQXh+41SXbK/pc=
Subject key identifier: 37:FB:02:7C:52:7F:08:86:DB:8D:2D:A7:60:60:E0:D9:5E:36:09:C9
Authority key identifier: 85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
Certificate issuer: /CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Certificate serial: 019E90CA40354D60D48E7300EDB8E1BA5011
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
Manifest number: 013A
Signing time: Thu 04 Jun 2026 04:00:34 +0000
Manifest this update: Thu 04 Jun 2026 04:00:34 +0000
Manifest next update: Fri 05 Jun 2026 04:00:34 +0000
Files and hashes: 1: 42a5BDfavJB8-Fjb88ehzC_G2vI.roa (hash: 2elAAn7GbfRppYPOlapcCAAsvKzqxnlQwzBHL9tcDlY=)
2: CQEv-b3iodOi-uISHBHPc-tgjWM.roa (hash: JlM8b1SZjaRGm+HCIhtTTaWtpKsBolYmdJxakSZag0A=)
3: eXZdHpePUGkYaOH4ztUcIZuKWrs.roa (hash: HQWM35m3AuHcQ7qdoInnAm8EoKtgNopMBbkgqi3yHI4=)
4: hbT4demdNbFCBGk-7hHKm2qv5K4.crl (hash: YPnh21PGAc/FZgbQn+QAFOgEqy0Ex2i2a4aEf6E8tas=)
5: sK5WIVuOnIIbX3JCbO2fOFMpkQ4.roa (hash: EW7D7I1/z0g1aSst1nAVy1Ct07XmtQOb6qb/Gz8MdGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:ca:40:35:4d:60:d4:8e:73:00:ed:b8:e1:ba:50:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Validity
Not Before: Jun 4 04:00:34 2026 GMT
Not After : Jun 5 04:00:34 2026 GMT
Subject: CN=37fb027c527f0886db8d2da76060e0d95e3609c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:74:5d:91:b5:3b:8e:68:c7:68:39:b4:5c:3f:
6c:49:93:f1:1a:89:63:ae:d0:de:1f:10:7f:64:d3:
1c:f5:f8:39:f4:dd:b0:f1:c1:b1:30:1a:83:1c:4e:
68:e0:31:c9:1a:b6:c4:3d:c8:9b:bd:34:e3:f6:65:
f4:cf:da:d1:9a:73:c3:22:4d:cf:88:13:4e:85:df:
a8:c4:93:bd:8f:ab:37:6b:c0:5f:6b:e8:57:d9:e0:
ff:34:d1:b9:c6:db:30:f5:e3:8f:a7:4f:76:6b:26:
f5:cc:8b:4d:20:6b:f3:c0:d1:ae:81:ac:ad:6d:f6:
62:df:41:28:6c:02:c3:05:60:9b:14:e8:b1:9d:67:
f1:db:fc:98:f8:4c:fb:90:7f:8f:2b:a0:e0:05:8b:
97:d6:9e:08:1f:3f:4b:8a:69:68:d3:0e:57:09:b0:
91:05:7a:e2:e4:58:3d:84:f2:f4:3d:ba:24:af:e7:
34:9c:9b:2b:60:28:d9:12:f6:1c:3b:51:cb:fb:86:
64:26:4b:bd:1f:c2:9c:6d:a1:34:9b:87:a7:de:d0:
43:45:6c:7c:fe:e4:03:01:c7:f9:18:ee:44:19:f1:
37:b9:a6:db:a4:65:fd:f4:4a:0b:c1:d8:1a:04:70:
91:c8:62:e6:c7:d2:5b:64:2d:7c:bb:95:42:46:cc:
eb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:FB:02:7C:52:7F:08:86:DB:8D:2D:A7:60:60:E0:D9:5E:36:09:C9
X509v3 Authority Key Identifier:
keyid:85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:26:0f:9e:8b:d1:42:7b:4b:19:5e:5d:49:e4:c6:a6:5e:44:
cb:f7:95:f4:5d:5b:65:05:c6:72:86:5d:a3:76:a1:3b:3d:e9:
f2:59:e1:49:be:59:4f:d9:d5:6f:84:ca:19:0a:ee:2c:71:b1:
83:e6:66:5f:77:d9:75:4d:af:68:4d:2d:c9:e6:5b:ec:17:aa:
65:f1:49:d4:6a:ab:f2:c7:52:7d:e3:be:59:fe:d2:1c:f3:c9:
2b:41:fa:95:a2:3a:dc:aa:1e:87:5b:7a:fd:2c:b6:20:b1:05:
ea:57:e1:5f:84:1a:f4:49:19:ea:5c:91:9c:80:64:6b:91:53:
0e:0f:01:b3:df:15:51:b5:7b:85:e7:c1:a5:30:d1:b0:40:c0:
9f:0d:67:dd:42:c1:47:5b:14:d1:fb:ec:9d:bb:12:2b:91:61:
6d:f5:05:c9:d7:96:2b:30:8e:a5:32:86:15:51:2e:8e:1e:cb:
c9:82:df:0a:d7:cb:35:80:26:d9:92:05:80:7b:d4:46:72:0b:
5b:4a:a2:ea:c1:90:e1:75:ef:9d:b8:e7:c9:b6:20:f5:9d:b0:
9d:14:96:48:7b:2f:9b:51:27:12:b6:16:34:a8:ec:07:69:51:
a3:45:e2:6f:53:c8:12:bd:92:b7:dc:c7:e9:e3:41:a8:57:ff:
c3:f7:56:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6QykA1TWDUjnMA7bjhulARMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1YjRmODc1ZTk5ZDM1YjE0MjA0NjkzZWVlMTFjYTliNmFh
ZmU0YWUwHhcNMjYwNjA0MDQwMDM0WhcNMjYwNjA1MDQwMDM0WjAzMTEwLwYDVQQD
EygzN2ZiMDI3YzUyN2YwODg2ZGI4ZDJkYTc2MDYwZTBkOTVlMzYwOWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43RdkbU7jmjHaDm0XD9sSZPxGolj
rtDeHxB/ZNMc9fg59N2w8cGxMBqDHE5o4DHJGrbEPcibvTTj9mX0z9rRmnPDIk3P
iBNOhd+oxJO9j6s3a8Bfa+hX2eD/NNG5xtsw9eOPp092ayb1zItNIGvzwNGugayt
bfZi30EobALDBWCbFOixnWfx2/yY+Ez7kH+PK6DgBYuX1p4IHz9Limlo0w5XCbCR
BXri5Fg9hPL0Pbokr+c0nJsrYCjZEvYcO1HL+4ZkJku9H8KcbaE0m4en3tBDRWx8
/uQDAcf5GO5EGfE3uabbpGX99EoLwdgaBHCRyGLmx9JbZC18u5VCRszrcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDf7AnxSfwiG240tp2Bg4NleNgnJMB8GA1UdIwQY
MBaAFIW0+HXpnTWxQgRpPu4Ryptqr+SuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGJUNGRlbWROYkZDQkdrLTdoSEttMnF2NUs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9iODIxOWUtMzQ2YS00M2I5LWI4MjMt
OTM4YTczYjZmN2MyLzEvaGJUNGRlbWROYkZDQkdrLTdoSEttMnF2NUs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9iODIxOWUtMzQ2YS00M2I5LWI4MjMtOTM4YTczYjZmN2My
LzEvaGJUNGRlbWROYkZDQkdrLTdoSEttMnF2NUs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAViYPnovR
QntLGV5dSeTGpl5Ey/eV9F1bZQXGcoZdo3ahOz3p8lnhSb5ZT9nVb4TKGQruLHGx
g+ZmX3fZdU2vaE0tyeZb7BeqZfFJ1Gqr8sdSfeO+Wf7SHPPJK0H6laI63Koeh1t6
/Sy2ILEF6lfhX4Qa9EkZ6lyRnIBka5FTDg8Bs98VUbV7hefBpTDRsEDAnw1n3ULB
R1sU0fvsnbsSK5FhbfUFydeWKzCOpTKGFVEujh7LyYLfCtfLNYAm2ZIFgHvURnIL
W0qi6sGQ4XXvnbjnybYg9Z2wnRSWSHsvm1EnErYWNKjsB2lRo0Xib1PIEr2St9zH
6eNBqFf/w/dWzA==
-----END CERTIFICATE-----
Generated at Thu Jun 4 08:00:53 2026 by rpki-client