Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
File: hbT4demdNbFCBGk-7hHKm2qv5K4.mft (raw, json)
Hash identifier: pltISf9bqh59PhUFKRzU3jaHYmBrJ6MIqKvXLetqCtE=
Subject key identifier: 3A:24:F0:C2:7E:6C:C2:05:5B:8A:40:39:BE:BE:DD:73:96:C3:27:61
Authority key identifier: 85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
Certificate issuer: /CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Certificate serial: 019D3909C55E562EC15D0CEF0322EF0D3DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
Manifest number: 88
Signing time: Sun 29 Mar 2026 10:00:34 +0000
Manifest this update: Sun 29 Mar 2026 10:00:34 +0000
Manifest next update: Mon 30 Mar 2026 10:00:34 +0000
Files and hashes: 1: 42a5BDfavJB8-Fjb88ehzC_G2vI.roa (hash: 2elAAn7GbfRppYPOlapcCAAsvKzqxnlQwzBHL9tcDlY=)
2: CQEv-b3iodOi-uISHBHPc-tgjWM.roa (hash: JlM8b1SZjaRGm+HCIhtTTaWtpKsBolYmdJxakSZag0A=)
3: eXZdHpePUGkYaOH4ztUcIZuKWrs.roa (hash: HQWM35m3AuHcQ7qdoInnAm8EoKtgNopMBbkgqi3yHI4=)
4: hbT4demdNbFCBGk-7hHKm2qv5K4.crl (hash: 9oFkvtvjvuai2hAOHX+3aZpseHbAWWIVqwlLmxvD92o=)
5: sK5WIVuOnIIbX3JCbO2fOFMpkQ4.roa (hash: EW7D7I1/z0g1aSst1nAVy1Ct07XmtQOb6qb/Gz8MdGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:c5:5e:56:2e:c1:5d:0c:ef:03:22:ef:0d:3d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Validity
Not Before: Mar 29 10:00:34 2026 GMT
Not After : Mar 30 10:00:34 2026 GMT
Subject: CN=3a24f0c27e6cc2055b8a4039bebedd7396c32761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:79:9d:e6:f7:ec:09:33:dc:a7:e3:ca:af:7c:
81:19:87:a3:b3:f2:7d:a6:62:2e:09:5c:fc:92:c9:
09:27:2a:27:a7:99:bb:b8:c0:81:66:1a:4a:57:21:
14:cd:56:24:4d:13:f8:e0:ca:93:5b:ee:3f:9b:03:
ad:f2:79:c8:1b:7a:3f:bd:94:4c:35:2e:df:86:37:
a2:38:c6:18:5c:f0:38:89:af:17:b4:3d:57:ee:d0:
a6:a5:a3:39:9d:4d:0a:22:e6:88:df:d6:ce:30:41:
b5:f5:33:22:b2:47:45:f2:c7:ee:63:1a:8e:ee:c4:
27:cc:c2:70:21:d6:01:cd:b3:11:40:fb:bd:4f:3d:
33:3d:ac:cf:cc:b2:5b:47:19:76:f6:6c:c2:c3:20:
ec:b8:5f:72:8d:d4:b2:b3:43:53:7a:18:9a:b2:75:
5e:be:55:55:58:8f:43:b3:d9:c8:17:71:8d:89:29:
4f:10:d6:9f:1e:05:50:93:33:0d:ca:0f:58:75:80:
29:b3:52:6c:df:f9:54:71:74:43:5c:d7:f8:39:fa:
24:f8:73:43:0b:96:76:3c:87:d7:3f:1e:6d:b6:b4:
e5:03:04:e2:f9:9b:30:f9:b7:3a:4b:30:fa:aa:5a:
a5:c5:df:d1:09:d6:bc:19:52:57:3f:ab:a5:1a:04:
0d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:24:F0:C2:7E:6C:C2:05:5B:8A:40:39:BE:BE:DD:73:96:C3:27:61
X509v3 Authority Key Identifier:
keyid:85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:82:f1:5b:76:cf:a7:60:04:8e:86:cc:5c:24:bf:8d:ed:d7:
67:e4:55:37:96:0b:07:10:86:09:09:95:4c:d4:96:38:12:b1:
7f:4d:dc:d3:db:b9:6e:5a:85:d6:21:5f:11:ea:f9:d3:06:6b:
b0:c1:91:b8:bc:20:cd:f3:46:9d:fb:4d:36:ef:db:4c:19:b9:
9c:ec:d5:63:a1:16:dd:55:0e:5e:96:09:65:78:71:7c:a2:b2:
5d:d6:e1:05:95:ce:23:28:1e:6a:32:b5:ac:e9:ec:72:15:d7:
02:97:88:7d:01:68:64:e9:04:c9:82:c5:70:55:3d:bb:b5:8c:
e8:60:31:ab:1f:a7:2e:a6:1f:0b:c7:86:12:51:8b:8e:e2:f3:
60:cb:34:8d:17:fb:a5:cc:df:f7:3a:76:61:bb:d3:14:7e:27:
c7:3b:38:54:1f:59:6c:1f:13:48:b9:8d:c5:67:d9:ec:84:4a:
d7:a5:bc:45:39:c1:b2:3d:2d:84:61:21:14:f3:ae:20:d0:4b:
2d:9f:17:bd:ef:76:00:56:f3:0c:0c:94:e1:cc:83:11:9e:f7:
ed:9a:41:3e:30:de:23:e7:76:ca:b2:f9:a3:33:54:81:83:11:
c4:6a:68:37:43:d6:0f:e8:b9:07:f9:0d:b5:05:c1:14:43:11:
52:08:ce:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:08:40 2026 by rpki-client