Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
File: hbc7mIsBRCjrr2ehj30Zmbojxk0.mft (raw, json)
Hash identifier: Ho+LgvhbGo4qr8rCZDIn3rvtpdUpbDYgtki71b3lEF4=
Subject key identifier: 30:42:82:90:C1:9E:AA:29:1C:5D:8B:5C:F3:6F:8B:11:D6:3F:45:4B
Authority key identifier: 85:B7:3B:98:8B:01:44:28:EB:AF:67:A1:8F:7D:19:99:BA:23:C6:4D
Certificate issuer: /CN=85b73b988b014428ebaf67a18f7d1999ba23c64d
Certificate serial: 019D2703B9B2709C156F381F36C16667A0ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
Manifest number: 14A3
Signing time: Wed 25 Mar 2026 22:00:48 +0000
Manifest this update: Wed 25 Mar 2026 22:00:48 +0000
Manifest next update: Thu 26 Mar 2026 22:00:48 +0000
Files and hashes: 1: hbc7mIsBRCjrr2ehj30Zmbojxk0.crl (hash: uC2bGL+IiBHbT76/ktc07PCh2ZnER0AEUPckBWWOAAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:b9:b2:70:9c:15:6f:38:1f:36:c1:66:67:a0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b73b988b014428ebaf67a18f7d1999ba23c64d
Validity
Not Before: Mar 25 22:00:48 2026 GMT
Not After : Mar 26 22:00:48 2026 GMT
Subject: CN=30428290c19eaa291c5d8b5cf36f8b11d63f454b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3f:52:b4:53:a0:37:8e:20:4a:fb:58:95:87:
c8:5c:56:66:19:37:8e:70:25:5d:a4:46:2e:7d:4e:
f5:ed:b7:dc:32:a7:ba:c6:3c:10:b4:b9:e6:5b:47:
79:3e:e8:d6:8f:67:1c:e7:cb:30:01:5a:cc:6d:4e:
8b:31:f9:1f:63:ef:b8:60:f5:89:a1:d2:63:25:c2:
94:cb:d2:2a:83:14:61:23:24:5d:4e:a7:07:80:bb:
ef:92:59:6b:26:8f:1d:06:71:79:3e:08:27:bf:09:
49:bb:14:4e:74:81:af:b3:b7:29:f9:f1:e3:da:a4:
78:42:f3:36:74:7f:a1:c4:2b:b4:19:95:46:9b:9b:
e4:92:9a:46:50:c9:50:36:66:33:a7:e1:2c:bd:ec:
40:81:5b:0c:c1:04:2d:94:a1:a2:7f:57:b3:6a:eb:
fa:d1:ca:42:42:df:05:b0:75:3e:59:3a:90:f8:eb:
22:c6:38:f5:17:b2:26:3a:a6:3f:28:40:f8:75:22:
bb:fc:d3:ac:b6:26:15:0c:16:43:89:c5:9c:19:2d:
50:2d:7f:42:a8:1b:85:f1:f8:b8:cf:ba:6a:6b:60:
fa:88:08:8e:e6:1f:f0:98:ee:63:10:b4:cf:ce:f4:
eb:42:a8:17:dc:a7:92:3e:3e:e9:78:8f:a3:05:bf:
7f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:42:82:90:C1:9E:AA:29:1C:5D:8B:5C:F3:6F:8B:11:D6:3F:45:4B
X509v3 Authority Key Identifier:
keyid:85:B7:3B:98:8B:01:44:28:EB:AF:67:A1:8F:7D:19:99:BA:23:C6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:9a:c7:ab:60:79:ce:08:6b:cc:cb:2d:2c:9d:51:b2:fe:61:
36:95:eb:7b:b5:58:fe:4e:7c:be:8b:a6:c1:56:e1:0e:b1:cc:
b2:cb:7c:31:b4:92:bf:9e:44:07:9a:67:c3:eb:2c:d3:31:ad:
08:b1:fe:ee:a6:b3:0d:73:88:8b:06:ae:7c:de:f2:cc:44:c5:
53:42:5c:dc:65:6a:42:b1:50:ce:29:f5:81:fd:4f:c6:39:9c:
83:ac:24:13:79:63:f2:48:23:fa:d4:66:32:38:aa:0b:24:91:
bd:2f:24:f2:14:70:fd:59:b6:f8:cb:a6:7c:ff:22:f8:40:a9:
54:5d:ea:8a:9f:12:f1:2f:f9:48:06:a2:48:2e:91:81:a2:6a:
92:ff:a0:24:dc:59:a6:7a:d7:f8:5e:5b:b4:c2:dd:24:10:1e:
09:de:aa:08:88:e6:ff:e1:90:68:cf:c9:f0:77:23:5e:f2:29:
0e:8f:0f:09:c3:f4:d6:f3:67:14:3e:47:bb:95:0f:33:12:9f:
f6:13:9f:17:89:af:69:21:d0:7c:58:7f:5b:f7:73:8a:36:2e:
d1:f6:20:db:39:1f:18:42:53:30:f9:7c:73:34:98:58:3b:d7:
d3:69:62:db:dd:9b:4d:c0:d7:d3:a9:ea:bc:8a:4d:90:fe:b4:
29:28:e3:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:59:04 2026 by rpki-client