Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: f5+HbFulqgxUE7DDMep90o6fC8C5pOYxlZ4wvxDNyyY=
Subject key identifier: C7:C4:3C:97:86:E7:26:7C:11:EC:21:07:F5:70:60:9A:A7:8A:91:56
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 019CE892C7FF3DB3A9D0785DCACDDC6E0943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 1174
Signing time: Fri 13 Mar 2026 19:00:59 +0000
Manifest this update: Fri 13 Mar 2026 19:00:59 +0000
Manifest next update: Sat 14 Mar 2026 19:00:59 +0000
Files and hashes: 1: Hh7KFktywM-1-107eqrB5yEmn-8.roa (hash: QGn4U4QC+cKt83SkTXHhg4z++P/aykfUDnj2eiXvebY=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: OZ/fbuCbz+mK2S5y7/c46ua53oJ9SfjgV4ybDK0vnc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:92:c7:ff:3d:b3:a9:d0:78:5d:ca:cd:dc:6e:09:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Mar 13 19:00:59 2026 GMT
Not After : Mar 14 19:00:59 2026 GMT
Subject: CN=c7c43c9786e7267c11ec2107f570609aa78a9156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:22:31:7a:9a:20:1f:26:50:8f:7a:cb:e0:c7:
b5:ec:80:de:d7:33:08:da:66:62:72:ad:ce:a5:8e:
03:6b:52:a3:da:9b:b9:2b:57:b4:01:63:74:ba:26:
f1:6e:d3:4d:8b:93:c7:bc:99:ac:f7:2a:3a:c2:a3:
1b:97:5b:c2:07:a2:5e:c1:e9:41:0e:9f:4e:32:34:
17:a6:df:03:da:bf:cf:33:6a:b9:3b:a2:ef:a1:c9:
3d:b1:90:3e:62:59:98:2a:0a:a7:11:ca:ad:bb:21:
e5:9e:93:99:d4:87:cb:b5:08:d9:2d:3f:5f:79:0d:
ca:a1:f5:42:25:0b:37:ee:61:ba:0b:c4:29:b8:a7:
0e:15:db:1e:77:e6:88:c5:24:92:f6:f8:7c:0a:4a:
ab:21:78:d5:30:a3:00:3a:07:74:b9:98:af:90:fe:
f3:76:92:3b:5c:66:ae:d1:38:3c:97:69:64:05:73:
6b:ef:ad:c4:58:80:bb:27:4e:d4:3c:d1:30:b7:79:
27:b9:9e:d0:72:b8:b5:e3:76:67:16:c7:2c:d3:bf:
55:8b:d0:d0:92:9f:e0:bb:b4:ce:44:2b:01:8f:38:
56:be:f8:4c:eb:d3:99:0f:1d:71:5c:02:fb:e6:a3:
bf:5a:ae:e3:57:a6:24:25:68:1e:70:9d:03:96:23:
25:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C4:3C:97:86:E7:26:7C:11:EC:21:07:F5:70:60:9A:A7:8A:91:56
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:2a:41:3a:c9:1f:22:c4:cf:34:cb:c5:17:21:84:82:97:28:
bb:61:71:f4:b2:4c:92:3a:e1:96:5b:9f:01:ac:14:5e:11:34:
60:e9:7b:3a:d6:3d:c4:99:a4:90:91:90:6c:da:1a:21:45:a2:
1c:52:19:36:23:b9:d3:7d:af:17:60:67:75:ac:df:8a:19:d8:
82:cc:b0:0b:c5:23:49:b6:0e:77:ca:b5:27:19:9c:2d:08:d1:
ed:44:ee:59:cb:e3:76:56:2f:43:fc:44:f0:5c:13:12:fb:39:
a0:38:24:1b:fd:ce:e5:59:ee:86:d0:69:b1:5c:4a:69:8f:3c:
f3:f3:85:20:a4:f4:af:e5:d6:aa:87:ff:e2:61:0a:9f:b4:6c:
24:01:0a:52:a5:16:1f:05:2e:43:c1:1d:5c:3c:6d:fb:ef:05:
29:fb:57:e0:b8:bd:ce:a0:b7:58:d9:1b:b2:55:dd:50:09:f0:
e2:44:76:30:5f:2b:95:fc:be:ca:fe:02:e5:65:d1:1b:2c:76:
04:b3:b6:62:86:c8:7e:ec:e7:d3:04:c9:f1:d0:28:3e:af:df:
cf:5f:e7:df:9d:3e:b7:56:4b:91:1d:93:fa:2d:a9:be:16:ed:
3e:48:bb:97:7f:53:5e:2e:14:a1:98:16:f0:b0:7b:60:20:ca:
11:59:42:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 00:37:14 2026 by rpki-client