Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: Yw6OsQQsgFNCdzqQ40enHvBRllUmasQGQorw9TXRXKY=
Subject key identifier: BB:F5:2A:59:CC:35:88:EB:F7:28:B4:37:BF:E7:91:51:32:7C:C0:F6
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 019DD23F7A462E7D71380120B46653A56AC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 11ED
Signing time: Tue 28 Apr 2026 04:01:08 +0000
Manifest this update: Tue 28 Apr 2026 04:01:08 +0000
Manifest next update: Wed 29 Apr 2026 04:01:08 +0000
Files and hashes: 1: Hh7KFktywM-1-107eqrB5yEmn-8.roa (hash: QGn4U4QC+cKt83SkTXHhg4z++P/aykfUDnj2eiXvebY=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: H2mGtR3MKfuHkKVzemrK8f3DFHjsBQjs4bSQkGEoS2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d2:3f:7a:46:2e:7d:71:38:01:20:b4:66:53:a5:6a:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Apr 28 04:01:08 2026 GMT
Not After : Apr 29 04:01:08 2026 GMT
Subject: CN=bbf52a59cc3588ebf728b437bfe79151327cc0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5a:09:59:15:39:90:95:95:80:b4:01:4a:c5:
4c:c7:44:fa:83:17:a3:b4:98:60:5d:1d:39:7b:93:
eb:af:fb:4b:25:4a:38:6d:96:3c:de:71:7a:cf:4d:
18:b5:b2:f6:49:a1:d8:41:7d:2d:c1:b7:7f:f7:c1:
60:73:e3:f0:49:ce:76:f2:ef:3b:d7:f0:7e:ce:72:
02:8a:ce:06:5c:1f:97:1f:7f:b6:c7:bf:8e:2d:c6:
dc:88:54:5f:03:a5:e7:d2:dd:11:a7:f1:86:7b:43:
8d:c7:2f:7b:17:14:39:fd:65:40:04:90:d2:0e:a4:
d9:62:d1:57:b0:2a:09:ff:af:87:8a:3f:97:db:68:
9d:c5:24:e4:cd:e5:0d:10:a9:c0:de:e5:2a:d1:ac:
e0:31:fa:68:91:83:76:50:6c:38:d5:d2:e8:32:eb:
1a:05:35:fe:28:4e:21:76:91:66:57:9e:c4:6c:42:
ca:34:ad:64:77:f0:25:6f:23:c4:3e:81:e1:3d:58:
1b:ec:55:54:9c:ef:8d:7b:4e:8e:62:74:5e:87:dd:
8f:7a:de:4d:78:4d:d3:bd:ca:87:64:3f:80:6c:76:
df:6b:01:50:3d:a8:e6:7a:b0:89:1e:70:7a:12:98:
58:bb:d0:3b:e5:e2:4f:75:a6:d5:f3:c1:b4:01:7e:
d8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F5:2A:59:CC:35:88:EB:F7:28:B4:37:BF:E7:91:51:32:7C:C0:F6
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:10:ea:ef:cb:23:37:ce:6a:4c:24:1d:01:5d:93:cf:f7:3c:
ce:86:01:fa:39:20:13:f5:11:10:88:20:86:e3:df:10:b5:e8:
41:b1:98:5d:d8:8c:56:9b:7e:bf:bc:d1:bf:85:de:92:0c:fd:
3a:94:47:e9:2c:f9:2f:ae:54:eb:90:42:19:88:71:44:8b:b2:
b7:05:87:25:69:8c:39:f5:e0:73:4e:4d:fb:ac:16:98:23:02:
83:c7:88:f0:b0:f6:e1:37:03:fa:2a:60:aa:da:33:9b:56:2d:
f5:8b:1a:e9:1a:05:41:d8:4e:46:5c:77:28:23:29:80:5c:2d:
dd:12:b0:46:0d:3e:35:b9:34:be:39:7a:75:89:39:f8:34:94:
d1:87:ac:78:48:46:0b:8e:16:53:e8:95:e4:2a:32:7a:01:f0:
a3:5e:a8:d5:8a:e0:20:39:45:61:3f:31:e3:cd:18:7d:ee:44:
a3:2a:ad:1b:d6:ab:48:99:bb:28:c9:8b:28:a5:5d:28:24:e5:
60:58:ae:c9:46:fd:14:ba:7a:2f:79:d6:db:98:1e:2e:84:db:
18:47:dc:41:12:b6:f9:35:6d:9e:7b:e4:28:c8:bd:34:1e:10:
74:69:73:b1:9d:60:86:8c:74:1a:ed:78:59:d4:cb:8c:da:ab:
a4:f4:3f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 07:06:45 2026 by rpki-client