Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: n45zKTyTjIeuCfbCDAQYeazzwoS9EGC8A6YgyKwXvu0=
Subject key identifier: E8:E2:11:22:81:0C:56:F6:64:61:6C:1D:C4:CE:93:58:4A:65:D0:B3
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 019DB21050CD84EF54A00C8DF6CBA7946CD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 081D
Signing time: Tue 21 Apr 2026 22:01:46 +0000
Manifest this update: Tue 21 Apr 2026 22:01:46 +0000
Manifest next update: Wed 22 Apr 2026 22:01:46 +0000
Files and hashes: 1: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: TM2DEakUu25xU6VekQjN3MHrZhcqh3Pp53WorDHrdLs=)
2: lx2J9WOsX2M54t8-J-Ipl4_XUM4.roa (hash: jlAohhibW/lQaiHQMqOapsCsgW9kpTO6lOTRSlTXr4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:56:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:10:50:cd:84:ef:54:a0:0c:8d:f6:cb:a7:94:6c:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Apr 21 22:01:46 2026 GMT
Not After : Apr 22 22:01:46 2026 GMT
Subject: CN=e8e21122810c56f664616c1dc4ce93584a65d0b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1a:64:13:a5:32:54:4e:8a:76:50:25:8e:af:
a1:a6:7f:c7:77:ea:8f:76:c9:b2:0a:2f:b4:92:8b:
15:46:44:bc:a7:2b:29:2b:25:f1:e8:0d:f4:76:f8:
0e:a1:4e:4a:93:64:97:fb:ff:c1:96:31:42:5d:28:
99:fe:2f:0c:23:63:66:8f:71:7d:bb:de:3a:b4:a9:
2a:06:76:35:3a:b2:65:7b:23:5d:c1:76:ff:14:4f:
af:b8:05:59:3d:8e:75:9d:13:52:36:f6:5e:3b:ae:
87:c5:ee:97:6a:23:8d:f1:11:09:ad:ad:b7:83:c9:
e8:9d:1d:ec:ed:ed:97:30:7f:d1:13:e5:c7:68:8b:
c9:18:f0:58:3d:d3:0c:0c:33:ce:53:87:0b:b9:a2:
ed:12:40:59:cc:bc:d8:7e:d7:ea:28:64:0f:ca:86:
ee:6f:45:09:1c:a0:5f:cf:e1:42:48:7a:95:7f:ab:
e3:22:0b:c1:93:8b:7b:cc:79:c4:53:38:aa:1b:1f:
f5:8b:91:79:29:8f:5b:89:1a:81:31:f2:ee:1b:a5:
75:b4:a8:31:78:f0:bc:14:9e:21:5d:7c:1e:42:8d:
51:7e:ec:3f:50:0a:33:c7:b0:a5:a3:f8:b5:a1:39:
45:c7:04:cb:f0:ec:10:96:ae:eb:91:16:e0:08:47:
e2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E2:11:22:81:0C:56:F6:64:61:6C:1D:C4:CE:93:58:4A:65:D0:B3
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:d7:a2:80:d4:a9:b3:36:4d:10:a8:a0:61:79:15:a1:02:0b:
3a:6e:dd:90:ec:33:fc:d9:c1:11:a5:15:cb:db:b9:71:40:16:
c2:1a:20:e5:92:85:1f:5a:47:85:ca:98:0b:9a:7e:0d:59:95:
79:2b:34:34:5f:cd:36:f7:25:77:21:29:9c:10:b0:2a:1b:78:
17:72:cb:ef:84:0b:ce:c8:c0:6b:88:48:eb:b6:90:be:89:fb:
cb:2b:10:2d:68:dd:f8:3e:fb:2a:74:3f:e5:d0:39:6a:fc:1e:
b0:40:b4:75:36:d3:f2:30:2a:f8:55:66:ca:86:f1:e4:5b:32:
c6:51:0c:a4:2d:38:c6:25:74:14:e3:25:37:42:11:2a:8d:d9:
e4:36:a8:14:73:0a:4d:07:51:d0:80:cf:ae:23:73:fd:92:ec:
dd:66:10:a7:a8:9a:8f:0b:83:76:3a:7b:4d:94:1b:52:a0:da:
50:67:b4:b9:27:cd:c8:bd:e2:64:37:c4:e6:70:32:b2:44:02:
f1:3c:91:3c:89:26:73:50:99:31:36:09:d1:7f:64:36:49:ba:
9c:1a:d2:60:e6:eb:53:f9:ef:fd:ab:7a:f9:49:a7:b3:11:b2:
a8:6a:67:34:85:5b:25:1c:2b:f9:d9:d4:bf:9d:f3:8f:58:dc:
bd:ca:03:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 02:39:51 2026 by rpki-client