Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
File: Heds5TXPuOIW7A0k3rV50aTKDgY.mft (raw, json)
Hash identifier: Lr77EAUpDP80pM8ItC1Q9fVzwnD54IyyRMpBfcV4CG0=
Subject key identifier: 80:F5:77:C9:D2:16:CE:E7:CC:98:C3:B1:F9:E8:E1:74:1E:00:E5:BE
Authority key identifier: 1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
Certificate issuer: /CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Certificate serial: 019D284E0F7AF7D2A89CAF2701B1F5B50455
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
Manifest number: 05B9
Signing time: Thu 26 Mar 2026 04:01:37 +0000
Manifest this update: Thu 26 Mar 2026 04:01:37 +0000
Manifest next update: Fri 27 Mar 2026 04:01:37 +0000
Files and hashes: 1: ASskbiBD-ObX8oC040-fCoWvcFA.roa (hash: Sm4y81MRyHGizqogZIaFxikCrX8RLabzmDJ+zETP3zo=)
2: Heds5TXPuOIW7A0k3rV50aTKDgY.crl (hash: vaEDqz1+rN5Gtk1TwWuG6z6oZiHOE+4+TLKPxtbKOyA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:0f:7a:f7:d2:a8:9c:af:27:01:b1:f5:b5:04:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Validity
Not Before: Mar 26 04:01:37 2026 GMT
Not After : Mar 27 04:01:37 2026 GMT
Subject: CN=80f577c9d216cee7cc98c3b1f9e8e1741e00e5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:72:a6:22:52:f5:0e:e3:21:50:03:f2:63:9e:
f7:ac:04:aa:13:60:d7:a7:50:55:64:cb:51:1d:be:
65:2b:e5:4e:2c:68:e6:21:ab:37:d3:be:e9:3b:cc:
93:32:00:81:07:01:d5:81:07:f0:67:e9:b1:61:1a:
8a:39:8b:07:b8:bf:66:73:89:c7:47:5b:6e:70:d7:
d3:63:e2:b2:2b:f4:52:32:72:a7:9a:ba:77:82:a1:
e1:7a:32:55:f6:d3:47:da:d3:f1:ed:61:be:ad:f7:
a2:81:17:3c:d5:d1:e8:d7:05:63:a4:c3:d9:db:13:
3d:a3:da:2d:66:f0:89:97:c5:cb:52:6a:8f:48:fc:
43:c0:8d:07:12:da:30:6b:90:a8:ee:66:b4:d0:e4:
a9:7e:9d:b1:b6:0a:05:60:ba:ff:61:83:e0:22:fe:
49:94:1d:5c:b3:b9:02:a9:ba:30:72:e4:2d:f1:c4:
10:15:0c:41:cf:a0:c3:ba:59:52:c4:ee:d1:bf:64:
60:f9:de:7a:9f:51:65:aa:55:2d:53:26:0e:04:aa:
ea:77:b1:60:55:25:ac:85:08:57:85:9d:99:2e:7f:
dd:77:3e:44:05:54:87:64:32:3d:55:d4:6e:1d:a1:
30:12:0e:53:51:9c:26:5a:e6:a7:a1:3e:8e:7b:3b:
c9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F5:77:C9:D2:16:CE:E7:CC:98:C3:B1:F9:E8:E1:74:1E:00:E5:BE
X509v3 Authority Key Identifier:
keyid:1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:d5:8f:02:80:3f:5d:3c:93:ab:f8:cc:4a:46:c0:e2:6b:42:
fb:38:ff:a4:46:32:0f:c1:44:5d:7d:bd:8b:7d:8c:8c:a4:cc:
51:be:bc:c4:43:cc:d4:c8:3b:56:70:d3:ad:04:d7:25:ed:d2:
56:67:e6:16:70:f2:de:0d:1d:bb:94:af:51:54:50:88:24:02:
bf:c2:a4:0d:b4:92:d7:b8:cd:1b:d2:b6:86:f6:15:55:5f:58:
bb:89:a3:7a:28:8b:f4:72:4c:4f:a9:97:a4:b9:b5:28:d7:93:
93:f8:ae:65:7b:e1:42:ec:69:b6:4c:a5:a3:57:1d:f7:65:1d:
e0:b3:f9:68:c4:26:d4:1b:8e:89:81:46:5c:11:94:f0:27:3b:
8f:ff:32:44:f1:ce:9b:ed:1b:1e:d3:c3:f9:96:26:01:15:f8:
06:87:f3:c6:69:af:2c:7b:d6:b4:b0:fc:97:4d:c1:a0:f0:a3:
f6:fa:24:7c:5a:f5:ec:16:f5:6a:29:46:52:b0:f7:24:a2:03:
90:be:48:69:6a:61:5c:08:90:28:00:a8:8d:a7:b1:a6:85:69:
e4:8c:13:3e:88:2e:b8:c6:f5:4e:08:a2:fb:7d:22:9f:a1:fc:
65:89:3d:35:fc:cd:d1:23:07:49:b1:64:bb:61:76:8f:e6:1c:
f8:8d:f7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:05:49 2026 by rpki-client