Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: xwdnTwGdMgXzJd8/WXOkz4HrqErewLGPsL+lSXmXppc=
Subject key identifier: 82:D8:70:E5:BF:D4:6E:1F:9A:1E:51:6C:78:8B:20:89:67:8B:4D:96
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 019E1DFE3869F1BF403E12D66486CAC28875
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 140E
Signing time: Tue 12 May 2026 21:01:00 +0000
Manifest this update: Tue 12 May 2026 21:01:00 +0000
Manifest next update: Wed 13 May 2026 21:01:00 +0000
Files and hashes: 1: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: LR/wL8Z7z6VEhn4IOvHDLMUpXoecxASazMBBWaxTGBk=)
2: m-rsXaeOpkpdSMqwVTpewPk00d4.roa (hash: rIs/IZogYIqQxOz7ptGPvRo3thst3hZ+JDFL9DxC1k8=)
3: x_DMZGJsbuDtxrP8_5aAtJAHah4.roa (hash: MEzmMNL5npMBSYbvubxXk2b9wk818GmjUSqjwh512m0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:38:69:f1:bf:40:3e:12:d6:64:86:ca:c2:88:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: May 12 21:01:00 2026 GMT
Not After : May 13 21:01:00 2026 GMT
Subject: CN=82d870e5bfd46e1f9a1e516c788b2089678b4d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:73:5a:f5:0d:ff:af:f6:59:32:63:86:67:56:
0f:7c:45:7a:d9:cb:bb:14:ee:dd:82:f5:10:e4:0d:
37:a2:25:f7:49:14:fb:4e:89:38:38:c4:12:a1:98:
ab:cb:6d:9a:f9:2f:31:24:9c:d1:22:57:ce:9a:b8:
f9:1e:38:ce:d5:a6:3d:39:b1:fc:49:57:07:cf:0d:
b9:3c:5f:29:0f:0c:3a:ec:27:92:b4:3e:8b:ff:cb:
b7:79:61:52:11:d7:b2:98:0e:0c:af:ee:97:f6:d0:
cf:9b:86:e3:ca:b6:e8:89:4c:1d:ee:0b:02:6c:9e:
45:68:b0:1b:4a:d2:a6:64:17:64:15:b3:e2:e9:d1:
32:45:a6:c3:7b:93:52:16:d6:e8:25:f7:a7:6d:f8:
2c:92:64:fb:66:86:09:ee:36:0b:b4:2e:39:bb:f2:
3a:2f:63:ea:65:30:b7:f1:00:03:e3:f5:ed:e2:31:
a4:db:2f:b0:17:8f:13:b9:e1:1d:eb:26:0d:12:60:
bb:1b:f8:f6:01:bd:29:a2:02:08:bc:a2:40:6c:8d:
c0:02:fa:03:0e:e8:be:9d:89:26:e0:cf:66:aa:cb:
0c:47:c1:a4:6a:0e:bb:bc:98:ab:f2:a2:96:32:73:
51:4c:a3:a2:be:74:0c:13:ed:80:80:92:f0:d4:4e:
0b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D8:70:E5:BF:D4:6E:1F:9A:1E:51:6C:78:8B:20:89:67:8B:4D:96
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:6f:98:ed:b6:99:b2:bf:65:20:ce:50:24:a9:ba:ec:c2:b5:
ef:86:cf:7c:64:45:01:e6:2c:d7:cc:06:06:6a:29:48:c7:4a:
34:6f:c6:08:9f:01:8b:4c:86:f0:77:70:54:06:85:70:82:d9:
17:3a:0c:2d:e0:cc:79:9f:b3:25:af:d6:5b:b1:25:dc:5c:32:
7d:00:cd:2f:d4:f3:53:bc:d4:b7:89:3c:3e:e7:88:7b:e5:eb:
07:c7:8f:71:fc:45:64:07:f5:37:31:cb:2b:86:be:77:7f:3e:
e4:fb:5e:20:d4:a5:59:1b:48:70:fd:68:10:1e:5f:a3:0f:5e:
01:f0:fb:b0:08:ee:27:5f:a6:c1:25:89:ac:de:54:b9:ae:6e:
c0:3e:c7:94:b0:7c:df:ef:9e:bc:88:e4:8f:d4:47:86:aa:f0:
54:40:96:75:37:21:ac:90:12:7d:b9:37:73:4a:85:23:50:75:
35:c0:ee:53:f1:19:68:fb:fc:77:44:fe:ac:de:96:76:bf:95:
c0:76:9a:0d:1f:22:3d:e0:c0:40:6b:32:81:91:87:57:32:d5:
8d:11:9f:f6:82:68:be:6c:43:8c:81:90:38:9a:9b:79:f8:d4:
7e:95:56:a5:20:b6:b6:8b:06:83:f9:5d:d9:bb:ef:22:8c:85:
de:2e:50:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4d/jhp8b9APhLWZIbKwoh1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1YjYxMWEwYjdkNDMzNGI3YTIzOTVlOGNjZTdiMGUzYzli
ODM4ZTgwHhcNMjYwNTEyMjEwMTAwWhcNMjYwNTEzMjEwMTAwWjAzMTEwLwYDVQQD
Eyg4MmQ4NzBlNWJmZDQ2ZTFmOWExZTUxNmM3ODhiMjA4OTY3OGI0ZDk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnNa9Q3/r/ZZMmOGZ1YPfEV62cu7
FO7dgvUQ5A03oiX3SRT7Tok4OMQSoZiry22a+S8xJJzRIlfOmrj5HjjO1aY9ObH8
SVcHzw25PF8pDww67CeStD6L/8u3eWFSEdeymA4Mr+6X9tDPm4bjyrboiUwd7gsC
bJ5FaLAbStKmZBdkFbPi6dEyRabDe5NSFtboJfenbfgskmT7ZoYJ7jYLtC45u/I6
L2PqZTC38QAD4/Xt4jGk2y+wF48TueEd6yYNEmC7G/j2Ab0pogIIvKJAbI3AAvoD
Dui+nYkm4M9mqssMR8Gkag67vJir8qKWMnNRTKOivnQME+2AgJLw1E4L7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFILYcOW/1G4fmh5RbHiLIIlni02WMB8GA1UdIwQY
MBaAFIW2EaC31DNLeiOV6MznsOPJuDjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmIt
ODhjYjRlNzEwNmVhLzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmItODhjYjRlNzEwNmVh
LzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcG+Y7baZ
sr9lIM5QJKm67MK174bPfGRFAeYs18wGBmopSMdKNG/GCJ8Bi0yG8HdwVAaFcILZ
FzoMLeDMeZ+zJa/WW7El3FwyfQDNL9TzU7zUt4k8PueIe+XrB8ePcfxFZAf1NzHL
K4a+d38+5PteINSlWRtIcP1oEB5fow9eAfD7sAjuJ1+mwSWJrN5Uua5uwD7HlLB8
3++evIjkj9RHhqrwVECWdTchrJASfbk3c0qFI1B1NcDuU/EZaPv8d0T+rN6Wdr+V
wHaaDR8iPeDAQGsygZGHVzLVjRGf9oJovmxDjIGQOJqbefjUfpVWpSC2tosGg/ld
2bvvIoyF3i5Qcw==
-----END CERTIFICATE-----
Generated at Wed May 13 04:41:12 2026 by rpki-client