Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: R2busAcKekHYgzXXnO8eiOY6BRBPQCGGOEGNbKvbMQU=
Subject key identifier: 21:3B:F1:57:0C:06:A7:3D:95:AF:30:0C:75:AC:38:CD:A5:2E:5A:85
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 019CC6749ACEF36985FC65EBD2EF02FA2571
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 07A3
Signing time: Sat 07 Mar 2026 04:00:56 +0000
Manifest this update: Sat 07 Mar 2026 04:00:56 +0000
Manifest next update: Sun 08 Mar 2026 04:00:56 +0000
Files and hashes: 1: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: fsXTgqakJ5y8WpmO4x0Rib1eQB7SYI7OOEvABtL4SQ4=)
2: lx2J9WOsX2M54t8-J-Ipl4_XUM4.roa (hash: jlAohhibW/lQaiHQMqOapsCsgW9kpTO6lOTRSlTXr4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c6:74:9a:ce:f3:69:85:fc:65:eb:d2:ef:02:fa:25:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Mar 7 04:00:56 2026 GMT
Not After : Mar 8 04:00:56 2026 GMT
Subject: CN=213bf1570c06a73d95af300c75ac38cda52e5a85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:58:39:c1:37:d2:21:84:08:2f:29:20:df:b9:
ec:51:17:1e:38:09:cb:f7:37:17:dd:0f:39:2a:c5:
33:81:e4:13:ec:f4:e0:a6:89:ce:96:1c:4f:cd:12:
7a:c3:2b:03:3e:b4:f4:10:21:65:ea:d0:bb:bb:44:
4e:d9:09:24:12:21:8f:8c:a7:56:14:5a:ba:98:41:
a4:78:b5:44:56:0e:89:4e:b9:87:f5:96:42:8a:84:
7f:bb:e1:2c:6d:76:0d:a7:73:c9:91:7f:f3:aa:0d:
3b:84:c7:5d:80:4a:a7:95:45:33:cb:28:52:25:c1:
dc:17:fe:bf:28:66:af:3c:75:66:45:c0:5f:49:02:
c6:4b:89:a7:14:53:fc:a3:04:a7:5b:75:3a:ae:e2:
87:9b:47:41:3d:93:16:f4:b9:7b:b4:a6:ba:0c:29:
32:c8:46:b9:ac:88:ff:e3:bb:50:8a:3c:10:5a:08:
37:b1:13:48:53:47:10:bf:46:20:a2:36:e3:10:6a:
c4:4c:d4:b0:41:f8:35:65:0e:b1:a1:14:fe:26:1f:
40:2d:9f:89:b1:4e:c6:2f:19:31:e6:e5:e0:be:f2:
de:a4:bf:5e:b4:5d:59:31:24:6a:73:d9:5d:12:17:
42:1b:c6:de:f0:51:18:3f:3c:03:ea:4e:6b:00:3f:
6e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3B:F1:57:0C:06:A7:3D:95:AF:30:0C:75:AC:38:CD:A5:2E:5A:85
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:25:6b:4f:77:f2:80:d6:f3:67:21:13:f3:37:b9:cc:b3:b3:
e7:32:6e:4c:07:17:2a:90:17:22:fc:b6:e9:09:c3:30:b3:9d:
1b:54:3c:c1:7e:c7:cf:de:0a:26:36:7a:f8:55:99:3b:99:d6:
ee:6f:18:29:83:87:6f:78:9a:9a:ee:e1:0b:fa:c8:47:2d:ca:
ef:0d:31:36:13:2e:69:c8:88:c1:54:e4:eb:0e:00:21:70:a5:
3a:a2:f3:1d:c1:8a:ea:9f:66:6e:8a:4b:65:42:93:14:00:94:
2b:1f:2c:1d:00:5d:cd:80:fa:62:26:f3:83:e3:97:62:a3:c6:
37:1d:2f:c3:7f:b6:71:18:14:c6:88:63:37:5c:bd:f5:43:b5:
52:48:43:39:e3:60:cf:9a:b1:2b:3c:ab:04:dd:72:ce:8a:7d:
d0:08:50:0b:2c:f2:8a:a7:2c:91:53:32:fc:f3:b9:c0:fa:69:
83:96:59:00:1c:96:bb:b1:f7:41:fc:5a:ff:6c:3d:7d:60:dd:
f6:17:2e:92:89:e8:f0:ee:0d:9c:ca:be:8e:e9:49:df:00:cf:
ba:5d:88:b3:7a:59:c1:b5:01:16:65:4b:80:af:07:6f:42:f6:
c8:cd:51:db:47:84:9c:6b:2f:cc:74:f6:cd:23:f1:33:b5:c3:
23:7e:cd:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzGdJrO82mF/GXr0u8C+iVxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZWIzZmFhODM4ODU0OWI1NWNiM2YzYWJkNGM2YzE1MTA2
Y2Y1M2IwHhcNMjYwMzA3MDQwMDU2WhcNMjYwMzA4MDQwMDU2WjAzMTEwLwYDVQQD
EygyMTNiZjE1NzBjMDZhNzNkOTVhZjMwMGM3NWFjMzhjZGE1MmU1YTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFg5wTfSIYQILykg37nsURceOAnL
9zcX3Q85KsUzgeQT7PTgponOlhxPzRJ6wysDPrT0ECFl6tC7u0RO2QkkEiGPjKdW
FFq6mEGkeLVEVg6JTrmH9ZZCioR/u+EsbXYNp3PJkX/zqg07hMddgEqnlUUzyyhS
JcHcF/6/KGavPHVmRcBfSQLGS4mnFFP8owSnW3U6ruKHm0dBPZMW9Ll7tKa6DCky
yEa5rIj/47tQijwQWgg3sRNIU0cQv0YgojbjEGrETNSwQfg1ZQ6xoRT+Jh9ALZ+J
sU7GLxkx5uXgvvLepL9etF1ZMSRqc9ldEhdCG8be8FEYPzwD6k5rAD9utwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCE78VcMBqc9la8wDHWsOM2lLlqFMB8GA1UdIwQY
MBaAFB3rP6qDiFSbVcs/Or1MbBUQbPU7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS82YzQxMzEtMzY1Yy00YzE0LTllMGIt
NTAyYTk1N2ZkYWY4LzEvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS82YzQxMzEtMzY1Yy00YzE0LTllMGItNTAyYTk1N2ZkYWY4
LzEvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUyVrT3fy
gNbzZyET8ze5zLOz5zJuTAcXKpAXIvy26QnDMLOdG1Q8wX7Hz94KJjZ6+FWZO5nW
7m8YKYOHb3iamu7hC/rIRy3K7w0xNhMuaciIwVTk6w4AIXClOqLzHcGK6p9mbopL
ZUKTFACUKx8sHQBdzYD6Yibzg+OXYqPGNx0vw3+2cRgUxohjN1y99UO1UkhDOeNg
z5qxKzyrBN1yzop90AhQCyzyiqcskVMy/PO5wPppg5ZZAByWu7H3Qfxa/2w9fWDd
9hcukono8O4NnMq+julJ3wDPul2Is3pZwbUBFmVLgK8Hb0L2yM1R20eEnGsvzHT2
zSPxM7XDI37Nrg==
-----END CERTIFICATE-----
Generated at Sat Mar 7 12:50:04 2026 by rpki-client