Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
File: Heds5TXPuOIW7A0k3rV50aTKDgY.mft (raw, json)
Hash identifier: xv8AEbM7Qt6IU9QTk/EWb4k7VdPmodUn6jixpnVEFh4=
Subject key identifier: 22:C1:63:A1:72:3D:6A:CB:AA:31:B2:2E:6B:CB:46:F9:8D:0D:FE:94
Authority key identifier: 1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
Certificate issuer: /CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Certificate serial: 0199FCFD53CB95F4D75F8959FDF3894A2304
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
Manifest number: 0414
Signing time: Sun 19 Oct 2025 15:01:24 +0000
Manifest this update: Sun 19 Oct 2025 15:01:24 +0000
Manifest next update: Mon 20 Oct 2025 15:01:24 +0000
Files and hashes: 1: Heds5TXPuOIW7A0k3rV50aTKDgY.crl (hash: J1Fk3LfAFJE9UdvS7ztphpsJwBEEO6Z+A1p/eD4zC2U=)
2: Xrjd26KSD1TzQLdbZ0iBnuMSgeo.roa (hash: EiQGdbjr/bLCsj+VsiQM91wVnJzTPBjoFf00fG7D2D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:53:cb:95:f4:d7:5f:89:59:fd:f3:89:4a:23:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Validity
Not Before: Oct 19 15:01:24 2025 GMT
Not After : Oct 20 15:01:24 2025 GMT
Subject: CN=22c163a1723d6acbaa31b22e6bcb46f98d0dfe94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7b:2b:f0:73:03:49:eb:37:a7:10:05:40:3c:
46:36:49:4d:4b:17:c7:71:26:96:b0:05:66:9e:ed:
8e:4b:f1:8b:c4:22:c4:d8:68:b1:f3:21:5e:19:2e:
6a:95:e6:ca:ed:aa:16:6a:10:6d:45:ac:a4:59:cc:
96:2f:f3:40:d7:2d:bf:ff:39:22:0b:48:ef:b2:0b:
8d:3e:24:1b:4c:15:04:3b:79:9e:49:54:39:9e:4f:
ac:58:e6:9a:27:01:83:fe:69:b4:98:55:97:2e:b2:
23:b6:7b:23:66:c2:f1:53:c0:62:da:9e:bd:a1:a3:
3e:a8:1f:40:77:42:ef:f2:29:d1:e9:e5:40:30:cc:
59:87:e1:c0:ca:43:72:55:0a:e7:3d:69:81:9a:0d:
f9:de:f1:39:0b:dc:ed:be:2d:8c:e4:26:8c:16:06:
6e:d2:86:df:6f:53:1f:af:2f:b4:20:e5:2c:8d:25:
b8:c2:ed:2b:ba:a5:2e:52:bc:8f:a6:0b:57:06:1d:
b0:75:64:b9:b3:5c:58:8b:26:6c:e1:62:25:38:2a:
bd:b1:82:52:9e:80:83:0a:f2:3b:1b:19:f2:a8:3d:
3d:e8:f6:98:0b:6b:f7:6f:2b:e0:07:51:a9:29:ef:
d3:c3:fd:a0:80:fd:cc:4a:e5:e0:d3:6f:03:e8:c6:
75:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C1:63:A1:72:3D:6A:CB:AA:31:B2:2E:6B:CB:46:F9:8D:0D:FE:94
X509v3 Authority Key Identifier:
keyid:1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:e6:0f:dc:68:4a:74:f6:8f:6f:59:89:37:0b:a1:13:d2:95:
e6:77:30:d3:91:7c:d6:3e:98:07:bb:3a:fa:17:ad:c5:c4:cb:
fb:96:01:0b:15:11:a8:1c:da:14:0a:c6:a7:c9:a9:28:68:3c:
9c:a9:2c:e2:b8:28:37:7c:f2:79:8e:fe:fe:12:89:65:0f:ba:
08:f9:ff:00:38:ed:f4:fc:41:6a:ed:17:c1:af:70:32:6b:11:
3a:e5:f1:9d:26:f7:ad:61:48:8c:07:f3:42:6b:54:ef:0a:93:
84:26:e8:f8:83:1b:f6:d9:fe:df:43:f0:42:0d:03:4a:ac:47:
17:6b:4e:3d:0f:70:6d:bb:45:ef:e3:de:a8:a5:39:1a:d2:20:
f5:6b:7f:91:cd:92:40:39:fd:29:33:16:71:e3:d1:ab:59:46:
3a:c8:34:92:53:5b:e4:7e:72:d9:4c:ad:40:50:ec:68:cf:ea:
01:35:b4:1f:51:46:4c:d5:a9:9b:b9:a3:3b:b3:5f:29:b2:28:
51:6c:34:3d:de:0d:dc:58:a9:b3:d9:d1:c6:ef:50:cf:8a:56:
d2:1d:7b:e2:31:29:4e:c0:1c:7a:2b:e8:ce:aa:93:fe:3f:fe:
50:b5:8d:69:a3:fa:6d:cf:9e:c6:7d:17:a1:9a:40:b2:3c:c3:
d4:60:83:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8/VPLlfTXX4lZ/fOJSiMEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZTc2Y2U1MzVjZmI4ZTIxNmVjMGQyNGRlYjU3OWQxYTRj
YTBlMDYwHhcNMjUxMDE5MTUwMTI0WhcNMjUxMDIwMTUwMTI0WjAzMTEwLwYDVQQD
EygyMmMxNjNhMTcyM2Q2YWNiYWEzMWIyMmU2YmNiNDZmOThkMGRmZTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Xsr8HMDSes3pxAFQDxGNklNSxfH
cSaWsAVmnu2OS/GLxCLE2Gix8yFeGS5qlebK7aoWahBtRaykWcyWL/NA1y2//zki
C0jvsguNPiQbTBUEO3meSVQ5nk+sWOaaJwGD/mm0mFWXLrIjtnsjZsLxU8Bi2p69
oaM+qB9Ad0Lv8inR6eVAMMxZh+HAykNyVQrnPWmBmg353vE5C9ztvi2M5CaMFgZu
0obfb1Mfry+0IOUsjSW4wu0ruqUuUryPpgtXBh2wdWS5s1xYiyZs4WIlOCq9sYJS
noCDCvI7GxnyqD096PaYC2v3byvgB1GpKe/Tw/2ggP3MSuXg028D6MZ1EwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCLBY6FyPWrLqjGyLmvLRvmNDf6UMB8GA1UdIwQY
MBaAFB3nbOU1z7jiFuwNJN61edGkyg4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVkczVUWFB1T0lXN0EwazNyVjUwYVRLRGdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wNzZhZGQtZWRmYS00ZjM3LTk5OTYt
NjZjZTllM2E4YzFlLzEvSGVkczVUWFB1T0lXN0EwazNyVjUwYVRLRGdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8wNzZhZGQtZWRmYS00ZjM3LTk5OTYtNjZjZTllM2E4YzFl
LzEvSGVkczVUWFB1T0lXN0EwazNyVjUwYVRLRGdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq+YP3GhK
dPaPb1mJNwuhE9KV5ncw05F81j6YB7s6+hetxcTL+5YBCxURqBzaFArGp8mpKGg8
nKks4rgoN3zyeY7+/hKJZQ+6CPn/ADjt9PxBau0Xwa9wMmsROuXxnSb3rWFIjAfz
QmtU7wqThCbo+IMb9tn+30PwQg0DSqxHF2tOPQ9wbbtF7+PeqKU5GtIg9Wt/kc2S
QDn9KTMWcePRq1lGOsg0klNb5H5y2UytQFDsaM/qATW0H1FGTNWpm7mjO7NfKbIo
UWw0Pd4N3Fips9nRxu9Qz4pW0h174jEpTsAceivozqqT/j/+ULWNaaP6bc+exn0X
oZpAsjzD1GCD6Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:37:49 2025 by rpki-client