Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
File: HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft (raw, json)
Hash identifier: bvg4Y08uUvRvNcGYDoFgBBX1UEo7jaBWth9aJF3hvNQ=
Subject key identifier: 81:53:E2:D4:E4:15:9C:69:D3:C9:01:04:B6:DA:DF:7F:91:FB:80:8D
Authority key identifier: 1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
Certificate issuer: /CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Certificate serial: 019D382DF94CD9F92C7EF38C3097ED09EDE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
Manifest number: 0DE9
Signing time: Sun 29 Mar 2026 06:00:30 +0000
Manifest this update: Sun 29 Mar 2026 06:00:30 +0000
Manifest next update: Mon 30 Mar 2026 06:00:30 +0000
Files and hashes: 1: 9oyMDlFUMJCEeicvl7UFwOHgYsE.roa (hash: f8s6l8eBEajunCZ6gmMPJ0g+5TCwQ3SpFosYHbC5O4E=)
2: HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl (hash: ngJIUq6LdMudgbodo+27SrAFe1rywy3ZRSfCc2xZ5FM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:f9:4c:d9:f9:2c:7e:f3:8c:30:97:ed:09:ed:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Validity
Not Before: Mar 29 06:00:30 2026 GMT
Not After : Mar 30 06:00:30 2026 GMT
Subject: CN=8153e2d4e4159c69d3c90104b6dadf7f91fb808d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:51:1e:f8:8d:1b:f3:30:2b:73:2d:d1:4a:4d:
09:11:88:97:f7:c6:3a:8c:d5:db:a0:a6:97:ef:3f:
70:2e:64:ae:42:e9:dd:4e:c2:4c:ec:cf:23:44:b7:
7a:09:66:4d:41:cd:75:00:0f:a2:cf:48:d6:90:13:
51:19:63:bb:ae:0d:5b:0c:2d:1d:0c:32:1c:c7:5a:
00:00:f1:92:14:9e:4b:74:c2:72:8b:28:1b:ad:3e:
08:20:c6:90:c4:75:80:9b:83:09:e3:47:d8:32:23:
04:49:7a:9d:04:e8:de:88:03:96:bc:bc:de:e5:f1:
ed:36:79:0e:47:34:ff:df:c0:21:d3:84:75:b6:6d:
69:c7:80:33:84:9f:f9:e6:b9:7f:ce:5e:c1:54:38:
1d:ab:24:e5:b5:36:f7:41:6f:e1:b0:0e:c2:42:e0:
c2:fe:8f:4c:c1:9e:15:03:6b:4c:3c:a4:23:cb:37:
e5:dd:e1:31:e0:1e:c3:e4:54:2a:33:a1:8e:20:59:
27:1c:0a:78:f5:b7:7c:ca:94:1f:e1:79:b5:0b:9e:
74:d1:e8:ba:70:cb:35:1a:e1:7d:07:b9:6c:bc:6d:
cf:c4:c2:23:22:81:37:32:da:90:ab:4e:6c:38:9b:
b6:4b:b8:dd:01:6a:7f:f6:a3:c5:0a:2d:12:1e:6a:
ae:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:53:E2:D4:E4:15:9C:69:D3:C9:01:04:B6:DA:DF:7F:91:FB:80:8D
X509v3 Authority Key Identifier:
keyid:1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:06:e3:04:4d:b9:da:1d:16:03:8c:b4:ed:3c:59:65:c3:49:
43:bf:2a:15:d9:7c:c3:48:20:5b:2d:73:63:9b:85:ca:8e:a8:
95:16:da:a4:b5:b1:94:07:26:4b:d8:be:cb:fd:02:c6:27:74:
9f:5b:a9:a9:23:fe:57:ee:9b:c4:77:fb:4d:94:dc:f9:b0:49:
87:71:11:cd:f3:65:f9:70:f8:44:f6:50:74:01:72:2d:3e:fc:
a8:aa:d9:60:45:a4:d4:58:db:d8:c3:63:86:26:43:cc:44:2d:
bb:f0:0e:05:6a:bf:76:3f:65:ac:1f:03:30:37:b9:85:18:bc:
10:66:0b:40:d9:9b:eb:8a:34:a7:af:3e:a0:8b:3a:41:f2:b1:
e6:b8:97:43:57:0b:47:94:7a:0a:55:42:a1:c8:b3:7e:73:63:
39:9a:5a:cd:c6:c5:47:19:30:f0:23:71:00:19:a7:79:13:2d:
ec:b3:fb:d7:52:4c:10:e6:0d:5f:d7:2b:64:9c:43:69:34:57:
17:9b:f6:fb:a0:65:fd:ab:af:d8:8d:df:eb:b5:f8:47:b1:8e:
b2:4d:84:06:65:f2:59:61:21:f6:bf:0a:39:7e:c2:bb:b2:dd:
95:3c:a6:43:2e:92:3f:f3:6e:a8:de:60:85:45:d1:c3:fe:4f:
05:7c:1b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:30 2026 by rpki-client