Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
File: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft (raw, json)
Hash identifier: 3EoWGgWQP5A3WwF8tmCuimrQX8hXPJCxL/KAEDfrG44=
Subject key identifier: 40:B2:BA:38:CC:E7:BD:2D:05:94:8E:8C:36:F0:CC:45:7D:88:44:C8
Authority key identifier: 84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
Certificate issuer: /CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Certificate serial: 019CACEBCC3566F05E39DAF5C4DF2E3040DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 05:01:00 +0000
Manifest this update: Mon 02 Mar 2026 05:01:00 +0000
Manifest next update: Tue 03 Mar 2026 05:01:00 +0000
Files and hashes: 1: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl (hash: LwTwvtXM5CLV6069MrMf4x70783vXkWgfpZFmZphY0w=)
2: xd4uF5A-A5iD95Zuer1EQgUg4c4.roa (hash: zL8osWE5mYbHuTzixEhig2aehz5wUK5OJXXALOyQ/Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:cc:35:66:f0:5e:39:da:f5:c4:df:2e:30:40:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Validity
Not Before: Mar 2 05:01:00 2026 GMT
Not After : Mar 3 05:01:00 2026 GMT
Subject: CN=40b2ba38cce7bd2d05948e8c36f0cc457d8844c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:58:8c:c9:ad:8f:13:d3:78:59:15:03:9d:91:
49:c0:a7:18:79:34:c4:78:27:ee:dc:ce:3b:20:0f:
c3:ba:30:a9:c0:71:53:b8:42:5d:f0:49:1f:cd:cc:
37:9a:58:43:fc:4e:c1:34:c4:21:cb:03:69:cd:eb:
77:b5:37:03:88:bb:42:d8:54:2f:2c:2d:6d:1b:69:
de:4f:b3:0f:eb:96:9c:a3:6a:27:9a:d2:be:02:6b:
5f:b8:a8:e9:59:c2:fc:07:ea:df:d2:8d:20:b8:de:
e8:96:e1:28:99:00:de:21:07:05:72:2c:da:17:31:
17:5f:7d:e6:b1:d0:01:95:9d:e1:b5:9b:43:05:bc:
e8:ca:b1:6d:fe:91:32:83:37:c1:a8:7a:51:1d:9b:
5b:28:1e:ea:84:f3:2a:82:1b:ef:c6:1b:5b:25:9c:
e5:5d:fc:01:28:f0:80:a8:62:03:45:fd:7c:9e:79:
f5:fc:21:77:4c:cb:6e:2c:19:e0:69:a7:f5:f6:4f:
cf:c4:c8:41:22:c5:be:18:fe:69:a1:7c:e9:ea:74:
05:a1:54:fa:2f:4e:ea:54:07:92:e9:65:33:4b:77:
af:16:93:49:49:8b:47:1e:1f:ab:0d:75:00:08:da:
1a:32:24:5a:f1:32:cd:25:15:72:eb:59:19:5b:5c:
a0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B2:BA:38:CC:E7:BD:2D:05:94:8E:8C:36:F0:CC:45:7D:88:44:C8
X509v3 Authority Key Identifier:
keyid:84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:d6:50:b9:2d:1d:f0:e0:c5:9c:51:aa:7b:a9:b5:8a:f8:7e:
20:b2:8a:0b:46:96:a2:5f:22:fb:f7:53:12:f6:92:60:0e:bc:
d2:fc:ed:44:71:17:96:a1:7d:a3:33:08:5e:49:9e:e7:96:33:
45:ad:6a:6f:ac:3f:3b:a6:46:c5:52:a6:3c:48:a0:34:e1:c2:
07:b6:35:6e:9c:09:7e:45:53:0d:56:0c:5c:43:b5:76:e3:a5:
4d:55:4a:3d:8d:a5:36:d8:31:28:48:21:2e:b2:ee:e7:be:62:
cf:74:ca:6e:e9:ba:f4:36:a3:89:f2:e7:2b:bb:43:21:c1:0c:
01:99:59:ed:5a:39:63:de:71:78:aa:e8:6b:ac:6d:df:01:6f:
c3:15:41:d3:fb:fd:b7:e2:5f:15:ae:67:da:92:2e:34:60:f4:
63:d9:b2:ec:1b:2f:d6:ac:ea:cf:2c:0f:85:ec:17:dc:00:93:
87:54:55:6c:35:2d:85:9c:13:b7:c3:35:75:0f:b5:fa:5d:dc:
d4:c2:6b:b6:24:d0:f8:91:21:9d:81:49:e0:6d:83:7a:28:55:
3e:41:6d:18:7d:35:39:5a:c6:35:62:22:34:f4:aa:73:2e:b9:
5e:71:f0:2a:d1:c3:d0:b8:01:1a:ad:5b:0f:f4:1f:ac:9c:50:
0b:df:9d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:15:36 2026 by rpki-client