Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: Ctttco4dfV2KY84tg6a/sJuV9SG2dxOEdBCXpDTTHCk=
Subject key identifier: 8F:34:E9:F0:93:7A:2A:FE:91:9F:F1:2B:78:2A:12:79:EE:AB:3D:6A
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 019D28BBFC912AA87EFA214C3D61581C58F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 138F
Signing time: Thu 26 Mar 2026 06:01:41 +0000
Manifest this update: Thu 26 Mar 2026 06:01:41 +0000
Manifest next update: Fri 27 Mar 2026 06:01:41 +0000
Files and hashes: 1: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: Mx5fY4gIeuEeta8tnKcjtag4/OTjlhdhn/6f2YNq5Ak=)
2: m-rsXaeOpkpdSMqwVTpewPk00d4.roa (hash: rIs/IZogYIqQxOz7ptGPvRo3thst3hZ+JDFL9DxC1k8=)
3: x_DMZGJsbuDtxrP8_5aAtJAHah4.roa (hash: MEzmMNL5npMBSYbvubxXk2b9wk818GmjUSqjwh512m0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:fc:91:2a:a8:7e:fa:21:4c:3d:61:58:1c:58:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Mar 26 06:01:41 2026 GMT
Not After : Mar 27 06:01:41 2026 GMT
Subject: CN=8f34e9f0937a2afe919ff12b782a1279eeab3d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8f:5f:6b:a4:b4:52:ab:97:90:b0:46:fd:67:
c3:90:16:69:49:2d:a4:f4:89:83:63:54:06:09:71:
00:19:33:4b:83:89:7d:7e:b3:f8:84:b9:da:05:3e:
29:ee:bc:fa:f9:64:7e:d6:6d:07:d0:13:c2:5a:fa:
37:8f:2b:42:a6:5b:c2:a1:48:89:40:e1:03:fb:d8:
83:cd:42:74:a5:c0:af:07:f9:f3:92:95:8f:e7:7f:
69:eb:c7:5a:51:b0:8e:2c:fa:a9:26:ad:0a:cb:53:
3a:e1:de:51:e7:cf:31:1e:22:2e:d3:3f:34:1d:97:
92:ca:f6:aa:e1:34:6f:b8:1b:e5:c2:64:ef:ca:e7:
43:81:f4:36:94:d3:a8:cb:52:ce:a5:68:78:02:0b:
fe:f8:81:cc:29:74:d9:9f:d1:52:c7:32:b5:da:e5:
a8:4d:68:de:8e:cc:57:fd:15:59:e7:d3:a1:bb:81:
0e:fe:15:00:f9:08:25:8e:23:04:e2:b6:b6:cf:1b:
27:47:5a:cb:f5:ae:cd:eb:d6:05:4e:a0:91:36:eb:
2c:cd:9f:7d:26:9c:49:7c:16:56:d1:e6:d9:58:c4:
2c:da:54:20:a5:80:ad:01:80:3c:95:c8:95:39:f1:
3d:df:5a:f8:82:f9:35:06:7a:32:bd:1a:f3:de:93:
1a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:34:E9:F0:93:7A:2A:FE:91:9F:F1:2B:78:2A:12:79:EE:AB:3D:6A
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:5f:da:95:4b:eb:49:49:d4:30:9e:e1:85:51:8a:bf:2f:37:
21:d3:70:79:30:1c:ee:2e:56:e0:94:d3:1b:88:49:87:a1:d2:
6e:0c:43:8c:97:6c:2f:36:eb:0b:23:19:c9:46:c3:d6:95:03:
7a:0d:a5:c8:4a:1b:93:9a:60:29:8f:08:d9:6f:f9:96:3a:b6:
b9:54:6c:72:55:46:de:d0:f6:df:aa:38:2e:80:bd:ef:58:08:
a6:86:0b:72:95:bd:bf:22:93:e9:89:a9:fd:7a:69:8b:8b:40:
fd:dc:d6:e1:78:07:1d:54:76:a9:f3:9e:66:03:de:32:92:41:
ea:da:47:19:9d:ee:5c:a6:26:2b:26:53:1f:84:66:75:07:40:
f2:60:de:f5:eb:d7:a1:fe:b2:48:40:72:e2:96:de:93:c3:7c:
85:66:61:44:bf:61:ac:60:f1:46:74:00:80:40:ea:1f:2d:f1:
70:31:55:56:13:59:a3:ce:00:11:7c:a0:44:e4:18:76:75:c1:
91:5f:b8:4e:dc:e4:ac:13:55:e9:c0:9f:3f:13:d7:8e:28:0b:
17:bb:84:43:13:20:c3:4e:11:5a:25:6f:02:52:93:6d:d1:07:
9d:c0:91:a8:63:b9:b3:3d:28:ea:8c:88:5d:d0:6a:82:91:b0:
01:1d:7c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:46:47 2026 by rpki-client