Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: p4nmYn64xytz1wAk7hfTq4GWYk4wuGoiIJ5AGrIyLXk=
Subject key identifier: FC:4E:8D:AE:C8:4B:A7:6B:DF:85:55:F5:2A:94:B4:E1:3E:F5:52:77
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 019ED50746373828F6140DFF8C8250FF4240
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 1273
Signing time: Wed 17 Jun 2026 10:01:24 +0000
Manifest this update: Wed 17 Jun 2026 10:01:24 +0000
Manifest next update: Thu 18 Jun 2026 10:01:24 +0000
Files and hashes: 1: Hh7KFktywM-1-107eqrB5yEmn-8.roa (hash: QGn4U4QC+cKt83SkTXHhg4z++P/aykfUDnj2eiXvebY=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: Yl8j02WbItsOQGVpUB3kO2dwwmkB4ox5Ifb9Ij6BbO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d5:07:46:37:38:28:f6:14:0d:ff:8c:82:50:ff:42:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Jun 17 10:01:24 2026 GMT
Not After : Jun 18 10:01:24 2026 GMT
Subject: CN=fc4e8daec84ba76bdf8555f52a94b4e13ef55277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a8:c8:21:89:63:9e:de:cf:b5:75:aa:10:9d:
66:d1:d4:a1:e2:54:06:af:bd:80:67:ff:99:a1:fc:
70:33:e3:c6:9a:30:83:6b:27:6a:de:70:81:0f:ad:
da:dd:78:72:77:b2:d7:d3:64:86:d4:e8:65:28:57:
76:b6:ac:88:3e:75:ca:be:ee:44:84:09:d8:19:fe:
c6:86:28:5a:d7:3b:77:d0:fc:b8:0e:bb:cb:51:76:
7d:32:70:53:b1:06:53:c8:a1:0c:78:87:ac:e2:13:
1f:6b:80:c1:22:95:3f:86:09:b1:99:e4:72:1b:f3:
50:37:b6:12:4b:47:f0:63:e0:33:7a:ec:4a:a9:e5:
85:2d:a5:21:1b:7e:78:96:c8:f7:29:e7:45:76:2b:
f6:31:65:fc:f8:73:e1:c3:67:e7:cf:18:35:72:40:
49:e7:ce:63:38:b2:a6:ee:76:5f:d2:b4:4e:86:d2:
fc:85:21:4c:65:08:4e:e3:35:68:2e:c8:8b:95:22:
9b:7d:ec:82:70:b4:39:c0:59:0e:96:4c:a3:f6:65:
fe:3e:ce:5c:8a:62:27:da:5e:9b:e9:cd:b9:92:36:
a1:c6:54:34:56:71:12:6c:63:61:42:0f:75:06:1f:
36:e4:cc:66:01:00:ad:6f:22:96:50:a7:de:0f:51:
a5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:4E:8D:AE:C8:4B:A7:6B:DF:85:55:F5:2A:94:B4:E1:3E:F5:52:77
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:c5:2a:e5:89:c4:c2:c0:da:5e:4c:c2:71:d1:ed:39:09:e6:
ed:76:26:4a:a5:76:14:14:28:8b:6f:69:f5:ae:84:8f:f9:4c:
c3:0c:dd:49:d9:80:ec:31:ff:ce:3e:cb:ee:c3:85:2c:0d:b0:
b6:b3:9e:41:fe:95:ae:a9:48:0e:28:85:e3:e4:1c:7e:58:3f:
75:be:fd:45:ff:5e:52:e8:6d:f5:36:63:c6:14:85:29:16:27:
2d:0e:37:b9:63:77:89:26:fa:ae:19:7a:43:d3:7c:92:3f:48:
35:eb:9c:74:30:6f:bc:96:66:c2:fe:55:aa:18:ee:d2:39:74:
52:cd:4d:c8:26:f4:f5:6c:b0:42:bd:02:a9:54:9b:6e:e1:f1:
d6:46:5c:9b:2a:b8:89:21:d9:57:d8:9e:00:11:f0:00:99:de:
be:25:2f:f0:c4:d3:9e:23:92:5c:65:6c:8d:fa:9e:2d:ee:b4:
22:7f:4d:91:e9:3b:b4:c2:be:1f:41:67:6a:42:e2:02:bb:31:
33:a3:4e:58:b8:d0:d2:dc:8a:2c:51:1b:46:8c:68:c4:3a:fa:
72:06:1b:80:0e:95:7c:df:6c:f4:df:e2:3e:bc:65:83:37:06:
2f:7c:5e:de:6a:29:ef:93:d0:70:01:50:4e:c1:2f:99:f1:7c:
5d:6b:bf:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 12:06:37 2026 by rpki-client