Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
File: hbT4demdNbFCBGk-7hHKm2qv5K4.mft (raw, json)
Hash identifier: Hd03rhajq7Vj77Xb3NRoSetCeE9pj6EQzQKstus5WdI=
Subject key identifier: BB:FF:85:2D:59:3C:22:1B:0A:31:32:83:6A:7C:D9:05:A7:D8:11:96
Authority key identifier: 85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
Certificate issuer: /CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Certificate serial: 019CAC100068F0993C214F08246BC4A843C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
Manifest number: 3F
Signing time: Mon 02 Mar 2026 01:00:55 +0000
Manifest this update: Mon 02 Mar 2026 01:00:55 +0000
Manifest next update: Tue 03 Mar 2026 01:00:55 +0000
Files and hashes: 1: 42a5BDfavJB8-Fjb88ehzC_G2vI.roa (hash: 2elAAn7GbfRppYPOlapcCAAsvKzqxnlQwzBHL9tcDlY=)
2: CQEv-b3iodOi-uISHBHPc-tgjWM.roa (hash: JlM8b1SZjaRGm+HCIhtTTaWtpKsBolYmdJxakSZag0A=)
3: eXZdHpePUGkYaOH4ztUcIZuKWrs.roa (hash: HQWM35m3AuHcQ7qdoInnAm8EoKtgNopMBbkgqi3yHI4=)
4: hbT4demdNbFCBGk-7hHKm2qv5K4.crl (hash: NA7Iz/ejN0BHZ0+Ecr2RURs8suAcWsHA0dzYdZ9uYa4=)
5: sK5WIVuOnIIbX3JCbO2fOFMpkQ4.roa (hash: EW7D7I1/z0g1aSst1nAVy1Ct07XmtQOb6qb/Gz8MdGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:00:68:f0:99:3c:21:4f:08:24:6b:c4:a8:43:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae
Validity
Not Before: Mar 2 01:00:55 2026 GMT
Not After : Mar 3 01:00:55 2026 GMT
Subject: CN=bbff852d593c221b0a3132836a7cd905a7d81196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f5:f4:95:48:a7:0e:c2:e6:04:b0:53:50:1e:
64:6c:3d:10:f3:d7:5d:64:a8:7a:ae:8d:bb:3b:bd:
ce:ce:56:25:d9:28:9a:c8:59:7b:8a:ab:c6:f7:a4:
df:71:1d:5b:ae:ff:87:2d:09:bc:df:84:90:f4:23:
58:8f:cf:e1:5a:ea:1f:69:b6:d9:68:c5:b6:4e:1d:
2b:94:f9:da:5b:50:59:7f:d4:fb:62:53:21:ab:50:
da:c7:13:4d:a9:53:c8:91:53:26:26:a7:1e:3c:0f:
55:63:05:1f:be:6b:15:90:e0:da:e2:97:b5:93:23:
fd:f0:a1:52:81:13:4d:26:aa:24:1b:53:41:33:d9:
39:0b:08:33:eb:f5:aa:52:b0:2d:9a:84:cd:38:36:
d6:0d:9d:2b:e4:d9:f3:b7:dc:bd:a4:42:38:8d:53:
4d:b7:1a:4f:9f:3d:9c:b7:8f:1f:25:04:50:e9:1f:
92:8f:3b:74:d7:88:25:ee:3a:8f:35:bb:12:da:0b:
6d:ff:ff:95:e6:41:d2:59:8a:9c:de:ec:4e:57:eb:
11:a9:39:30:93:bc:1b:69:eb:de:c4:61:35:93:45:
12:d4:92:3e:5a:bf:83:9f:db:71:35:0c:78:88:c2:
68:57:7c:61:cc:76:72:3d:61:aa:ee:80:33:4b:1e:
c9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:FF:85:2D:59:3C:22:1B:0A:31:32:83:6A:7C:D9:05:A7:D8:11:96
X509v3 Authority Key Identifier:
keyid:85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:6c:83:dc:05:38:13:f2:cd:b3:86:f2:77:b0:00:d7:ae:47:
70:c8:ed:07:2b:f5:fa:79:f2:fd:e5:ae:4e:f1:fb:fb:12:08:
97:56:bf:10:29:54:53:0b:1a:97:68:42:fa:5e:ab:7f:8e:b5:
e3:58:01:6f:e9:c8:96:c7:30:95:00:ff:e0:18:32:8b:5f:b1:
ea:3c:91:d5:04:b9:aa:29:4b:06:25:11:dc:6a:45:cc:04:d7:
7d:c9:ea:0d:18:c3:6a:82:3d:ab:39:73:a0:d5:b3:6e:24:83:
3d:5e:52:d4:96:39:50:a1:07:1a:04:4b:68:74:3b:92:84:a8:
40:72:db:71:cd:5b:ca:e2:5a:ed:14:c7:e7:29:b2:62:ee:d3:
86:e0:60:11:61:15:e8:72:65:f2:de:b9:80:35:00:ee:6b:64:
5a:d1:bd:4e:4a:63:f5:0b:8e:37:d4:b2:e6:88:93:4d:2c:a2:
06:c7:5f:28:d1:f6:60:a3:ef:42:2b:98:1a:1d:cd:f7:c7:f5:
01:54:6d:ce:3a:2b:71:7d:7b:09:58:5f:1a:fa:50:56:ae:16:
68:3e:35:05:0e:34:0c:9e:9c:d4:47:35:ae:ad:ae:93:2a:09:
dc:8b:d3:20:02:c6:bd:28:ef:02:b2:d3:bc:63:d1:f3:86:69:
62:f6:dd:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:41:46 2026 by rpki-client