Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
File: hbT4demdNbFCBGk-7hHKm2qv5K4.mft (raw, json)
Hash identifier: XwYwfbb83eDHd3oDFReglQlQhWda+nsUMqjHaEbY/iA=
Subject key identifier: 16:29:46:D1:49:4D:A4:40:AA:7D:FA:B3:B2:4D:02:81:94:79:2A:40
Authority key identifier: 85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
Certificate issuer: /CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Certificate serial: 019EBF24000CBD3FBDCC5B51AFBF4BE3BE98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
Manifest number: 0152
Signing time: Sat 13 Jun 2026 04:01:07 +0000
Manifest this update: Sat 13 Jun 2026 04:01:07 +0000
Manifest next update: Sun 14 Jun 2026 04:01:07 +0000
Files and hashes: 1: 42a5BDfavJB8-Fjb88ehzC_G2vI.roa (hash: 2elAAn7GbfRppYPOlapcCAAsvKzqxnlQwzBHL9tcDlY=)
2: CQEv-b3iodOi-uISHBHPc-tgjWM.roa (hash: JlM8b1SZjaRGm+HCIhtTTaWtpKsBolYmdJxakSZag0A=)
3: eXZdHpePUGkYaOH4ztUcIZuKWrs.roa (hash: HQWM35m3AuHcQ7qdoInnAm8EoKtgNopMBbkgqi3yHI4=)
4: hbT4demdNbFCBGk-7hHKm2qv5K4.crl (hash: H6KnL3BVbCiYKezwG+/1pgcptOZeQGbzuM19TZ3XpfI=)
5: sK5WIVuOnIIbX3JCbO2fOFMpkQ4.roa (hash: EW7D7I1/z0g1aSst1nAVy1Ct07XmtQOb6qb/Gz8MdGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:24:00:0c:bd:3f:bd:cc:5b:51:af:bf:4b:e3:be:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Validity
Not Before: Jun 13 04:01:07 2026 GMT
Not After : Jun 14 04:01:07 2026 GMT
Subject: CN=162946d1494da440aa7dfab3b24d028194792a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1b:76:a0:b0:c6:86:44:c7:c5:64:73:14:82:
14:d1:1d:b9:38:fd:f7:26:85:d4:44:e5:3d:d3:c5:
c5:b1:f8:17:91:31:cc:b8:16:36:00:26:72:f4:fe:
73:1b:63:47:f1:76:e3:fc:1f:8e:df:fb:2a:75:a8:
36:41:d6:26:59:ce:b8:f5:61:3d:ef:52:40:c6:dc:
db:fb:75:88:8c:4c:62:2d:a3:36:b9:68:97:80:0c:
8f:b1:0b:fa:f4:f4:63:0a:35:2e:5f:32:d2:b5:d7:
e9:98:10:4d:59:57:b6:cc:56:0b:0e:da:de:09:af:
81:f0:ef:0f:17:7f:e6:98:02:87:a9:e7:0a:a4:77:
38:14:71:c5:ba:9b:b8:9a:6b:ac:4c:19:08:26:84:
f9:5c:af:ff:74:4e:30:07:68:e9:05:17:b7:1b:2b:
2b:bb:c5:d7:86:4b:7a:a8:dd:86:c5:1d:a4:a8:4c:
67:b3:ed:38:93:1c:3a:15:b9:1a:9c:e7:04:f3:2e:
09:42:6b:36:a6:9b:a4:0e:5e:2d:f2:dc:42:57:2b:
3f:9a:2a:ba:41:4a:0d:97:60:af:36:1a:2b:f7:e3:
96:f8:26:09:d4:57:bf:c0:e3:66:c3:97:f9:e6:68:
ad:0c:06:78:f0:f3:84:de:a6:33:d2:59:ef:ce:f0:
cf:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:29:46:D1:49:4D:A4:40:AA:7D:FA:B3:B2:4D:02:81:94:79:2A:40
X509v3 Authority Key Identifier:
keyid:85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:d2:6f:21:e7:8e:66:cf:3e:b4:89:64:ad:bf:88:25:23:c7:
ff:6c:39:67:24:22:18:9c:fa:1d:68:50:ba:47:0b:27:ae:4e:
7d:7c:3d:64:c6:0e:19:14:13:ea:5b:50:3f:fb:42:8f:0a:d5:
ac:7a:4f:1d:84:be:25:b0:8b:a0:48:6f:3c:d1:b3:52:43:0b:
b9:2e:15:25:82:7a:15:41:06:9f:2c:4f:e0:ef:00:44:bf:37:
c5:3a:64:35:87:34:9a:18:84:11:b3:21:de:ee:1b:cd:6e:e2:
7e:42:cc:cb:2a:41:9e:cb:80:20:93:f3:8c:2a:4f:c2:33:07:
f8:56:27:2c:1d:36:78:e9:98:c2:dc:51:38:86:5b:8c:b2:5b:
d6:5f:2e:b5:c8:77:6f:6a:64:2d:fc:f2:1a:e3:0d:b4:83:0b:
d4:06:ea:ef:64:00:74:a8:c3:96:c9:b9:e9:0b:a3:b5:3a:9c:
9e:c3:9e:d1:b7:f5:65:71:00:1d:e5:2a:f3:5b:67:5e:32:db:
ce:58:6b:2f:50:62:67:17:b6:aa:41:bf:91:81:fb:69:b8:87:
f3:a1:e0:56:b1:b0:9c:7e:2c:f3:09:64:0e:25:a9:b5:05:d4:
24:13:70:51:44:0e:c3:98:3e:01:14:25:3e:de:9e:ac:bc:cd:
37:8a:2a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:22:32 2026 by rpki-client