Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
File: hB6IIdAaloi57nryrruVnLvtBys.mft (raw, json)
Hash identifier: jS8fleuWF6d4KMgzcs//QdyRPl8wqEXaOpFiu+Km/0g=
Subject key identifier: AB:41:5D:DB:C1:AE:D7:66:AE:B7:50:2E:0F:79:9E:10:21:04:C5:53
Authority key identifier: 84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
Certificate issuer: /CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Certificate serial: 019D2583DADA548032B3E80A5754D7D665CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
Manifest number: BA
Signing time: Wed 25 Mar 2026 15:01:31 +0000
Manifest this update: Wed 25 Mar 2026 15:01:31 +0000
Manifest next update: Thu 26 Mar 2026 15:01:31 +0000
Files and hashes: 1: eQ8pUqqadp9cp4FYzeNplhCqiz8.roa (hash: RF09/EJZQF5XIgJSe7QHfYgaZkhCRVhxSpLB2BRdPks=)
2: hB6IIdAaloi57nryrruVnLvtBys.crl (hash: hEAtPNEuEhUzXTxOoFtIOtTNai9kcRlaqXvGZcB9LOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:da:da:54:80:32:b3:e8:0a:57:54:d7:d6:65:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Validity
Not Before: Mar 25 15:01:31 2026 GMT
Not After : Mar 26 15:01:31 2026 GMT
Subject: CN=ab415ddbc1aed766aeb7502e0f799e102104c553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1b:6c:0c:e6:61:e0:9d:8e:d9:d2:39:4e:c2:
7a:e7:00:da:dc:37:40:15:f3:83:d1:5e:c6:69:93:
a7:f5:43:6d:3a:83:90:f0:7a:e5:73:30:f8:66:26:
f0:e5:72:fa:91:b5:91:42:50:ae:bd:c6:04:98:79:
cc:69:9a:02:fc:56:36:4d:9d:25:fd:10:e9:89:b2:
c6:25:1a:3d:ec:e4:54:8a:38:9c:47:c1:a2:b9:c1:
18:f1:25:7a:de:74:f2:da:e4:5b:70:81:ca:84:e5:
c2:cc:8a:65:42:b8:21:2e:64:f6:47:07:0b:e8:74:
cf:5e:4f:78:4a:1e:3e:8e:d8:97:5c:da:ef:2c:53:
a7:0c:52:17:8c:77:27:74:68:42:15:a5:c1:8e:9f:
d6:26:c7:83:61:e3:f9:47:41:8d:93:31:29:36:bb:
08:99:77:36:47:40:35:17:ed:dd:2a:d9:db:c9:48:
82:1d:1d:4f:c5:d5:b1:fa:d6:d8:fc:96:10:24:51:
d9:ca:b4:41:98:16:87:78:60:9b:b4:45:e3:b3:80:
7d:3d:1b:d8:08:d8:89:f4:2f:a5:a5:2a:f0:4f:0e:
03:12:e2:5f:a1:d2:1b:0c:76:f2:3d:79:bc:9c:37:
cb:fd:51:cb:00:73:e9:63:0b:eb:68:25:e8:00:10:
b5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:41:5D:DB:C1:AE:D7:66:AE:B7:50:2E:0F:79:9E:10:21:04:C5:53
X509v3 Authority Key Identifier:
keyid:84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:c3:9b:2e:39:ae:17:25:b1:cd:10:81:bc:81:5e:a4:0c:16:
d6:da:b9:1e:77:50:72:f2:b3:43:7c:b8:d1:a2:82:82:37:d0:
8c:2a:19:d8:f5:d2:23:4a:99:a7:0b:a7:b9:7f:72:8a:0e:80:
d6:fd:19:05:bc:d4:b8:7c:b0:e1:20:1d:6b:f4:b3:e6:96:d2:
78:6f:b2:d2:c0:31:1f:b6:0d:68:65:0b:88:b8:80:e0:eb:bb:
59:78:e3:64:c3:30:93:97:dc:ff:43:ff:c0:d8:d6:87:73:d2:
26:53:13:38:9f:ac:b8:b3:39:92:91:d5:05:e4:27:5e:97:4b:
09:8d:3a:56:43:48:e3:63:95:d0:50:c5:bf:2d:53:3a:5d:15:
82:ae:5b:30:af:f5:0e:29:ff:46:56:4d:5e:e3:0e:41:8d:ed:
7d:10:c7:1e:3c:f6:d5:79:81:4a:d9:77:97:9d:69:ad:a9:da:
39:da:76:00:80:38:88:88:53:d1:10:90:4c:06:92:cb:46:ed:
cc:0f:04:bd:01:59:69:7a:66:77:c4:e6:0a:33:66:ea:62:04:
bd:b1:3b:8d:20:c2:eb:5c:6d:3c:62:5c:11:fd:14:40:d4:b5:
5e:d1:22:3d:74:26:67:a0:fe:d9:29:9b:5a:c9:13:ef:06:44:
64:8b:ae:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0lg9raVIAys+gKV1TX1mXMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MWU4ODIxZDAxYTk2ODhiOWVlN2FmMmFlYmI5NTljYmJl
ZDA3MmIwHhcNMjYwMzI1MTUwMTMxWhcNMjYwMzI2MTUwMTMxWjAzMTEwLwYDVQQD
EyhhYjQxNWRkYmMxYWVkNzY2YWViNzUwMmUwZjc5OWUxMDIxMDRjNTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxtsDOZh4J2O2dI5TsJ65wDa3DdA
FfOD0V7GaZOn9UNtOoOQ8HrlczD4Zibw5XL6kbWRQlCuvcYEmHnMaZoC/FY2TZ0l
/RDpibLGJRo97ORUijicR8GiucEY8SV63nTy2uRbcIHKhOXCzIplQrghLmT2RwcL
6HTPXk94Sh4+jtiXXNrvLFOnDFIXjHcndGhCFaXBjp/WJseDYeP5R0GNkzEpNrsI
mXc2R0A1F+3dKtnbyUiCHR1PxdWx+tbY/JYQJFHZyrRBmBaHeGCbtEXjs4B9PRvY
CNiJ9C+lpSrwTw4DEuJfodIbDHbyPXm8nDfL/VHLAHPpYwvraCXoABC1PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKtBXdvBrtdmrrdQLg95nhAhBMVTMB8GA1UdIwQY
MBaAFIQeiCHQGpaIue568q67lZy77QcrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAt
YTEzMjM3NjEzNDU5LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAtYTEzMjM3NjEzNDU5
LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz8ObLjmu
FyWxzRCBvIFepAwW1tq5HndQcvKzQ3y40aKCgjfQjCoZ2PXSI0qZpwunuX9yig6A
1v0ZBbzUuHyw4SAda/Sz5pbSeG+y0sAxH7YNaGULiLiA4Ou7WXjjZMMwk5fc/0P/
wNjWh3PSJlMTOJ+suLM5kpHVBeQnXpdLCY06VkNI42OV0FDFvy1TOl0Vgq5bMK/1
Din/RlZNXuMOQY3tfRDHHjz21XmBStl3l51pranaOdp2AIA4iIhT0RCQTAaSy0bt
zA8EvQFZaXpmd8TmCjNm6mIEvbE7jSDC61xtPGJcEf0UQNS1XtEiPXQmZ6D+2Smb
WskT7wZEZIuuVA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:46:33 2026 by rpki-client