Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: lhtFbVYxeW0lLfHmDckjViGjYYJPTjlmyo6k/dzBiew=
Subject key identifier: F3:71:2B:C8:19:46:C1:81:05:2D:AE:EA:11:2B:5E:0F:21:63:58:6F
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 019E1F7EE6DD9002DF63DA9D2897618036D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 1215
Signing time: Wed 13 May 2026 04:01:10 +0000
Manifest this update: Wed 13 May 2026 04:01:10 +0000
Manifest next update: Thu 14 May 2026 04:01:10 +0000
Files and hashes: 1: Hh7KFktywM-1-107eqrB5yEmn-8.roa (hash: QGn4U4QC+cKt83SkTXHhg4z++P/aykfUDnj2eiXvebY=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: Dzz6cys0NLM82D/zMwk71TfTXV8JkkE+4DIwLFG59P0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:e6:dd:90:02:df:63:da:9d:28:97:61:80:36:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: May 13 04:01:10 2026 GMT
Not After : May 14 04:01:10 2026 GMT
Subject: CN=f3712bc81946c181052daeea112b5e0f2163586f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2f:05:47:38:18:a2:d2:ba:a1:3f:d2:70:e3:
8f:df:4e:de:6a:b9:03:16:65:3e:73:6b:15:22:0d:
fd:08:72:5f:19:12:03:fc:12:20:6a:ab:02:82:36:
bb:b5:11:fe:7e:06:ef:51:53:f5:b5:22:88:d9:8f:
50:4d:bc:4d:33:2b:03:81:69:e9:86:b7:2a:e9:6f:
04:58:32:09:0e:e0:2f:48:18:06:04:50:15:81:49:
a5:34:93:67:8c:10:8c:d1:96:99:e6:1a:33:16:70:
26:ae:79:f0:ce:7e:21:c4:95:0f:58:fc:ce:4d:50:
74:ce:e5:ab:ac:e6:ca:ee:2f:e3:18:d4:90:10:23:
ae:31:23:4f:0f:84:9c:15:fc:f1:be:30:53:55:1f:
ec:e2:e1:88:ae:56:4b:ff:61:28:92:28:d3:81:49:
79:26:f7:56:1c:58:65:4f:39:36:2b:7a:5c:52:47:
03:11:89:79:1e:eb:f7:29:33:45:bf:72:17:d5:b8:
fa:77:29:6e:a4:e9:32:c7:24:77:9a:e6:23:5a:33:
49:ec:b6:e3:ff:16:65:8d:d0:ab:4b:28:4f:cc:2d:
56:75:47:90:bf:02:1b:10:bc:a8:dc:69:ff:4b:41:
e2:d9:ed:02:7b:1c:17:94:2d:72:37:73:b8:f7:d4:
96:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:71:2B:C8:19:46:C1:81:05:2D:AE:EA:11:2B:5E:0F:21:63:58:6F
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:42:59:04:84:2d:7a:84:f1:32:0a:ae:32:60:3f:9f:48:fa:
b4:ec:27:68:fc:6b:2e:d5:e9:3f:7b:9e:3b:3b:28:38:7d:ed:
29:10:e3:93:8f:35:71:39:72:84:1d:00:64:8d:61:e1:93:95:
09:8d:30:8f:1b:b2:d3:7a:37:6a:10:9b:08:52:66:16:05:3e:
43:60:5b:a9:13:32:31:c9:7a:d3:5d:1a:7e:2f:f7:4b:e5:87:
24:1b:71:21:ff:db:54:65:76:da:cc:73:b4:f2:44:dc:61:a1:
22:a0:fd:71:ad:1b:4f:68:b9:40:4a:b7:3a:a8:75:fb:68:c4:
ec:cc:07:5f:0d:fb:44:7d:fc:69:ed:4f:25:5d:f4:90:93:82:
8e:16:c3:90:95:2c:0e:9d:d1:17:1a:69:ae:7a:42:ff:d9:0c:
b8:ec:93:38:3d:6f:9f:1a:4c:e7:fe:8c:e4:e9:00:e4:0b:34:
c4:cf:12:a3:8f:01:03:6b:4f:73:18:66:e5:ce:10:8f:e6:11:
e1:d1:b7:63:8f:37:fc:e4:45:0e:5b:3b:d7:03:0e:a9:07:75:
8d:98:f9:60:b8:0e:c8:12:c1:d0:b1:0d:29:0c:b9:11:08:a1:
a2:46:cb:cb:4f:0f:c7:f0:f2:b9:1f:df:8b:4b:31:d6:b4:6e:
04:0f:f0:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:15:06 2026 by rpki-client