Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
File: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft (raw, json)
Hash identifier: w2pDyML10NnPGM81u/uDQImCyJgIKhJIsP4A/Dp1Hu4=
Subject key identifier: 96:42:AC:76:B3:A3:FC:96:2B:5D:3D:62:52:96:1D:E9:A0:6A:E8:D4
Authority key identifier: 84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
Certificate issuer: /CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Certificate serial: 019D9A7511E370232D28108DF46FDB2F7ADB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 08:00:56 +0000
Manifest this update: Fri 17 Apr 2026 08:00:56 +0000
Manifest next update: Sat 18 Apr 2026 08:00:56 +0000
Files and hashes: 1: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl (hash: NZH4D+Jg+esTrE8jlu3GZZWzHRk27y1tuq+HYe7vTZo=)
2: xd4uF5A-A5iD95Zuer1EQgUg4c4.roa (hash: zL8osWE5mYbHuTzixEhig2aehz5wUK5OJXXALOyQ/Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:11:e3:70:23:2d:28:10:8d:f4:6f:db:2f:7a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Validity
Not Before: Apr 17 08:00:56 2026 GMT
Not After : Apr 18 08:00:56 2026 GMT
Subject: CN=9642ac76b3a3fc962b5d3d6252961de9a06ae8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:dd:58:33:e9:c5:a6:ad:4e:d4:60:6d:82:8d:
a8:0d:30:4a:28:6a:90:6b:79:43:4d:87:02:4b:60:
4a:a5:20:e8:78:ef:58:95:63:81:0e:4c:75:93:f9:
72:fe:91:2c:c3:80:dd:83:54:17:90:3d:d8:96:f9:
f0:4e:55:de:a6:0e:3e:ed:71:0b:d4:a2:82:7b:be:
7c:89:07:6d:fa:90:ad:da:04:12:00:64:b5:06:c7:
c4:fd:a3:10:02:89:19:73:b0:68:44:5b:cf:09:04:
9b:3b:1e:c1:9b:20:59:ce:e6:4f:88:d0:83:97:6d:
82:fc:9f:46:05:75:ef:c8:30:a3:0c:6c:41:94:46:
14:12:2c:d3:e5:5e:ee:f1:08:4d:a3:df:8a:be:7b:
58:b7:9f:c6:bc:cd:4f:a3:36:a6:40:4a:6f:b9:3c:
f8:c9:ac:46:4b:86:71:85:60:4a:49:44:34:c4:de:
c2:56:ad:6e:d2:1d:02:00:bd:72:c7:a9:24:0e:ab:
41:f3:88:e9:89:2c:74:a8:8c:aa:0e:f0:c2:90:ba:
d3:fc:0e:84:94:a1:20:c0:7c:18:83:04:27:21:ad:
7a:3e:e9:25:ff:5b:e9:7d:b8:ff:c6:f9:a5:86:10:
26:83:3a:36:e3:dd:04:40:2a:43:ed:4a:f0:bd:ef:
16:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:42:AC:76:B3:A3:FC:96:2B:5D:3D:62:52:96:1D:E9:A0:6A:E8:D4
X509v3 Authority Key Identifier:
keyid:84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ba:78:30:c4:80:f7:f2:34:51:2b:71:4c:a8:3d:2f:97:e7:
9d:db:be:5c:30:bc:e6:75:44:57:61:47:b3:92:9c:ab:9c:08:
ac:19:da:ba:fb:59:4c:0e:2d:38:4b:df:fa:4e:60:86:bc:18:
95:42:59:d0:8e:ce:e5:6a:25:d9:a8:99:83:11:7a:c2:27:38:
11:96:d8:9b:85:c9:16:8a:9e:8a:08:eb:32:87:8c:07:a9:5b:
65:65:e6:c0:20:37:df:5f:69:d0:0d:db:2d:82:c8:60:75:5d:
a9:89:57:a3:b3:59:d3:7b:d4:68:2b:a8:b5:55:4c:4b:3a:c4:
55:02:29:12:6e:15:60:02:1b:b5:5a:50:aa:71:f4:89:29:3d:
48:4b:63:d9:d0:18:ae:ec:06:76:d1:6a:ee:19:5c:f8:46:5d:
94:f5:2b:71:9e:b6:b3:f0:11:85:69:01:60:8a:64:05:92:78:
dd:8b:9e:34:2a:d6:12:d0:39:ac:3b:65:13:2b:aa:1d:4b:ff:
e7:ac:7d:05:67:55:de:76:2e:0e:ea:c6:c1:83:bb:aa:8c:9b:
cc:7f:44:79:4f:21:4d:c0:37:45:fb:c2:52:0b:7c:f8:da:d9:
97:be:ce:2d:08:54:10:6f:b8:ed:7a:4f:d8:d6:37:57:36:1a:
96:3c:d1:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2adRHjcCMtKBCN9G/bL3rbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MTA2YmZhMDIzZjE3Y2Y2ZDY3ZWFjOWZkZDI4NjhhNzJm
NzY2ODAwHhcNMjYwNDE3MDgwMDU2WhcNMjYwNDE4MDgwMDU2WjAzMTEwLwYDVQQD
Eyg5NjQyYWM3NmIzYTNmYzk2MmI1ZDNkNjI1Mjk2MWRlOWEwNmFlOGQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvt1YM+nFpq1O1GBtgo2oDTBKKGqQ
a3lDTYcCS2BKpSDoeO9YlWOBDkx1k/ly/pEsw4Ddg1QXkD3YlvnwTlXepg4+7XEL
1KKCe758iQdt+pCt2gQSAGS1BsfE/aMQAokZc7BoRFvPCQSbOx7BmyBZzuZPiNCD
l22C/J9GBXXvyDCjDGxBlEYUEizT5V7u8QhNo9+KvntYt5/GvM1PozamQEpvuTz4
yaxGS4ZxhWBKSUQ0xN7CVq1u0h0CAL1yx6kkDqtB84jpiSx0qIyqDvDCkLrT/A6E
lKEgwHwYgwQnIa16Pukl/1vpfbj/xvmlhhAmgzo2490EQCpD7Urwve8WzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJZCrHazo/yWK109YlKWHemgaujUMB8GA1UdIwQY
MBaAFIQQa/oCPxfPbWfqyf3Shopy92aAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEJCci1nSV9GODl0Wi1ySl9kS0dpbkwzWm9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83ZWIyOTMtOGU3Ni00NzBmLTg1NWYt
YjYyNmQ1NzQ2ZDEzLzEvaEJCci1nSV9GODl0Wi1ySl9kS0dpbkwzWm9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83ZWIyOTMtOGU3Ni00NzBmLTg1NWYtYjYyNmQ1NzQ2ZDEz
LzEvaEJCci1nSV9GODl0Wi1ySl9kS0dpbkwzWm9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP7p4MMSA
9/I0UStxTKg9L5fnndu+XDC85nVEV2FHs5Kcq5wIrBnauvtZTA4tOEvf+k5ghrwY
lUJZ0I7O5Wol2aiZgxF6wic4EZbYm4XJFoqeigjrMoeMB6lbZWXmwCA3319p0A3b
LYLIYHVdqYlXo7NZ03vUaCuotVVMSzrEVQIpEm4VYAIbtVpQqnH0iSk9SEtj2dAY
ruwGdtFq7hlc+EZdlPUrcZ62s/ARhWkBYIpkBZJ43YueNCrWEtA5rDtlEyuqHUv/
56x9BWdV3nYuDurGwYO7qoybzH9EeU8hTcA3RfvCUgt8+NrZl77OLQhUEG+47XpP
2NY3VzYaljzRQg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:38:00 2026 by rpki-client