Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: ctWeYKBI3OQ/zL2z4OZjIjDfIwGuWSiAeHJlJbrals0=
Subject key identifier: DD:83:33:70:02:02:34:5B:BD:B3:FD:63:C8:BA:34:F1:2F:7D:11:43
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 019E9BBBBFCE4A123282DE37252A9FE45FF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 0896
Signing time: Sat 06 Jun 2026 07:00:33 +0000
Manifest this update: Sat 06 Jun 2026 07:00:33 +0000
Manifest next update: Sun 07 Jun 2026 07:00:33 +0000
Files and hashes: 1: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: OABBKnL1OsYi3vGniWrNPATBoRFrxrW8Dro/USsc1s8=)
2: lx2J9WOsX2M54t8-J-Ipl4_XUM4.roa (hash: jlAohhibW/lQaiHQMqOapsCsgW9kpTO6lOTRSlTXr4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:bb:bf:ce:4a:12:32:82:de:37:25:2a:9f:e4:5f:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Jun 6 07:00:33 2026 GMT
Not After : Jun 7 07:00:33 2026 GMT
Subject: CN=dd8333700202345bbdb3fd63c8ba34f12f7d1143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:85:ce:d1:90:83:31:27:43:bb:52:1b:69:2c:
60:d7:76:ce:94:73:19:95:a9:f9:3a:89:e7:bd:19:
ca:98:7f:2b:0b:f4:d8:78:d2:5b:6c:b6:ac:91:8c:
9f:28:5e:a1:61:53:f3:1f:17:c5:c1:d9:dc:e8:b2:
bb:3d:37:15:d9:77:d8:cf:ac:90:ac:d4:30:65:fb:
3f:3b:27:3b:c7:dc:76:29:72:e7:07:75:1f:98:96:
85:db:57:22:9d:15:6c:ba:e5:1c:67:0e:7e:a6:d8:
dd:dd:5d:e2:b9:f9:13:f6:42:75:b1:0c:5a:f8:26:
fa:80:e0:fd:fb:a1:be:7c:64:4b:01:67:1a:6f:3d:
89:c0:14:12:b1:b7:18:8a:66:18:cf:9a:e3:e5:fb:
7c:f3:a7:05:08:85:bf:c3:f3:c3:36:a8:85:6c:d0:
25:ab:a7:f4:56:dc:90:5e:e0:47:1e:d3:0d:b9:bc:
fe:3e:52:7f:7b:90:47:3b:c0:85:df:8d:98:44:89:
ed:17:6e:bc:ca:2e:64:4f:db:eb:69:71:fd:c1:2b:
2c:93:b1:47:4a:f8:e9:f7:eb:dd:e0:45:90:f5:2d:
a0:82:2d:18:f8:f3:09:59:a6:17:93:d3:6a:cc:d0:
7c:c2:fa:b3:17:83:65:5d:38:e5:9e:4e:38:ed:12:
db:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:83:33:70:02:02:34:5B:BD:B3:FD:63:C8:BA:34:F1:2F:7D:11:43
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:5c:1a:29:d0:53:6c:8d:93:47:7c:99:10:c0:1a:73:b1:47:
e4:b6:0f:79:3e:dc:29:c2:30:96:1d:09:98:92:87:b2:8f:63:
5e:6b:e6:0c:80:f3:5e:ab:79:ad:5d:c4:b2:3b:df:e0:38:f8:
d0:ef:d1:0f:01:a2:06:90:73:ce:aa:e2:e8:4a:0d:f0:eb:82:
d9:4e:4b:91:fc:06:e3:8f:f3:18:48:a3:d0:82:54:97:c5:24:
49:68:1c:66:91:4b:8d:be:08:ae:59:3a:52:7c:cc:9d:41:7a:
62:70:d3:0c:76:78:fb:65:0f:7e:25:12:46:bc:43:04:0b:6f:
d8:69:cf:26:a3:01:d9:60:1b:de:d0:64:dc:65:a7:dd:c2:b3:
97:f3:a1:5b:7f:f0:1d:da:88:20:59:a2:f7:9e:c3:7b:99:07:
0e:83:41:be:ac:2b:cc:c5:d9:5a:d1:3b:8d:be:ac:9b:b6:fe:
35:cd:a7:dd:6f:79:a3:db:65:a6:7a:26:73:0d:db:89:b2:3b:
9c:75:11:36:34:e7:65:cf:8e:80:76:aa:85:79:e8:dc:d4:9a:
3b:57:28:91:e1:70:eb:0f:82:65:d1:6b:af:cb:69:c7:a7:4f:
11:85:0d:32:0d:ea:96:28:03:f9:19:58:2b:ab:93:ea:7a:46:
5d:a7:2d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 12:22:57 2026 by rpki-client