Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
File: hbT4demdNbFCBGk-7hHKm2qv5K4.mft (raw, json)
Hash identifier: pIgay7DCZyLHJTEFG2pIjZO/GdZghKhj1WBJCkBxD2c=
Subject key identifier: 0E:97:8A:B0:63:FA:A6:CE:ED:79:E0:31:30:68:96:14:48:87:5C:B8
Authority key identifier: 85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
Certificate issuer: /CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Certificate serial: 019D999934AFA8043134ECC7615236AF3DAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
Manifest number: BA
Signing time: Fri 17 Apr 2026 04:00:47 +0000
Manifest this update: Fri 17 Apr 2026 04:00:47 +0000
Manifest next update: Sat 18 Apr 2026 04:00:47 +0000
Files and hashes: 1: 42a5BDfavJB8-Fjb88ehzC_G2vI.roa (hash: 2elAAn7GbfRppYPOlapcCAAsvKzqxnlQwzBHL9tcDlY=)
2: CQEv-b3iodOi-uISHBHPc-tgjWM.roa (hash: JlM8b1SZjaRGm+HCIhtTTaWtpKsBolYmdJxakSZag0A=)
3: eXZdHpePUGkYaOH4ztUcIZuKWrs.roa (hash: HQWM35m3AuHcQ7qdoInnAm8EoKtgNopMBbkgqi3yHI4=)
4: hbT4demdNbFCBGk-7hHKm2qv5K4.crl (hash: 966nW08h3Xju55Wt7geMamXc22B+vhScf+oGtL2CwM8=)
5: sK5WIVuOnIIbX3JCbO2fOFMpkQ4.roa (hash: EW7D7I1/z0g1aSst1nAVy1Ct07XmtQOb6qb/Gz8MdGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:34:af:a8:04:31:34:ec:c7:61:52:36:af:3d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Validity
Not Before: Apr 17 04:00:47 2026 GMT
Not After : Apr 18 04:00:47 2026 GMT
Subject: CN=0e978ab063faa6ceed79e0313068961448875cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7e:97:f8:4e:b6:fa:42:5d:3a:d2:c3:76:87:
64:72:34:09:03:44:76:ad:12:66:3b:4b:16:44:1e:
9d:05:f2:13:16:a5:b6:ab:07:8b:27:3f:a3:0c:0f:
a9:ea:37:27:ef:6b:bf:2e:2b:84:d3:4b:7a:56:46:
c4:b1:09:1b:50:b8:0e:29:ce:e1:8f:2d:74:7e:d6:
2f:57:40:96:6c:cd:05:d9:55:57:64:1e:4f:fd:3c:
cc:16:63:8c:6b:73:cf:37:7a:ce:36:ee:87:5b:32:
f3:e7:e3:a8:4c:73:d8:06:23:98:27:f0:78:91:78:
f7:41:6f:b8:60:a4:a8:b1:64:80:fd:85:13:8e:69:
14:4f:40:5e:2b:d5:98:1e:e7:ea:06:33:6f:c8:41:
91:5d:58:91:35:ae:bf:3b:f9:6e:26:88:fa:e9:ce:
4b:bd:7a:fd:32:90:58:27:76:bc:ed:f8:64:26:ff:
af:20:0d:11:c4:b7:2f:be:82:d3:06:e3:5b:ad:94:
8e:0b:06:7c:00:09:14:f9:8a:bb:bf:60:b3:4e:6b:
ca:af:1b:27:3f:b2:42:c3:17:e0:c6:aa:95:d4:85:
7e:1e:b0:f1:37:f5:ca:87:40:5f:e8:1e:85:3c:64:
dc:48:aa:e4:a6:16:5c:ee:8e:1f:11:ab:ce:29:12:
f6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:97:8A:B0:63:FA:A6:CE:ED:79:E0:31:30:68:96:14:48:87:5C:B8
X509v3 Authority Key Identifier:
keyid:85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:dd:d1:68:1b:21:7f:57:46:cf:8c:8d:8f:fa:aa:24:21:f9:
c1:04:30:21:f7:77:e5:44:7a:19:0f:b8:b2:d0:fb:6c:13:5c:
6a:00:bc:19:24:17:d2:6b:3e:d0:a9:aa:62:81:8f:24:00:47:
7e:c2:da:e4:05:4f:9e:27:f8:54:9d:0d:b8:64:fd:01:2b:58:
33:bc:a6:79:9e:4f:21:fd:0b:15:d6:22:54:a4:82:1c:9b:f9:
cb:86:b9:2e:54:1f:b7:e9:aa:56:e8:c5:b9:1e:83:4c:f8:ec:
69:51:2b:d6:1f:1d:d9:9f:87:08:b8:28:9d:1b:ba:1c:5a:c6:
5e:83:a2:0b:17:b5:e9:a8:19:56:00:d2:65:ca:ee:a7:a8:32:
09:d2:d9:b3:ec:ed:87:30:08:a8:da:a4:18:0c:d2:45:51:f1:
73:f1:9b:5e:e4:de:aa:b0:6b:81:5c:ac:57:38:ad:bc:de:ee:
67:5d:96:db:5d:a0:20:dd:44:28:c4:53:e7:da:1d:85:f4:f7:
f3:88:75:91:2f:f3:3c:ea:93:c7:f3:f4:d8:54:0e:8c:8e:55:
1f:31:10:33:58:28:e7:1b:5e:72:ea:94:e9:4a:4b:d4:ff:41:
e3:da:b5:cc:00:5a:72:46:db:3c:54:21:52:36:57:01:8f:7d:
00:5f:21:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:45:29 2026 by rpki-client