Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: ekL24V7AvN9jrrlHLs+ZzGIWNp3EiNk8+gKEpSZjyRU=
Subject key identifier: 2A:29:82:0F:93:A5:C5:85:91:A1:F3:3D:5D:7F:A0:53:21:77:97:12
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 019F18306048C4D725AA90DE672C7936193C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0D76
Signing time: Tue 30 Jun 2026 11:00:51 +0000
Manifest this update: Tue 30 Jun 2026 11:00:51 +0000
Manifest next update: Wed 01 Jul 2026 11:00:51 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: ImJZ31QMKGSRZ+zUmtysbTfnx6pBPajYWdLfO/nbZmU=)
2: hVWAONuzeazGNdnWSgmA3i9K9C4.roa (hash: uImqFCqVZwZHHyqryIJNgNimhq6Y9tDjYPxtIUj1zD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:60:48:c4:d7:25:aa:90:de:67:2c:79:36:19:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Jun 30 11:00:51 2026 GMT
Not After : Jul 1 11:00:51 2026 GMT
Subject: CN=2a29820f93a5c58591a1f33d5d7fa05321779712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2c:27:32:7c:52:bc:c6:49:b7:d7:8b:27:c9:
49:4c:9a:70:ae:54:56:25:1d:cb:e9:b6:bd:2d:fa:
56:de:e3:8c:b3:36:91:38:a3:67:a1:0e:a4:ff:e7:
bc:80:79:1c:25:c0:6a:25:b8:69:f0:89:37:58:5a:
99:7f:99:75:0f:25:ab:23:63:b1:1e:e8:9b:1f:de:
b3:c8:9b:00:99:f9:e2:05:ac:f1:d8:03:73:22:1a:
30:a4:29:79:fe:9e:1f:04:8c:81:36:7b:8f:03:c5:
f4:71:d6:a7:1d:b7:23:87:d8:e5:10:5f:fc:7f:55:
86:a9:03:3b:ac:b6:29:8c:71:0a:eb:d3:a6:20:9a:
17:e7:7b:aa:9e:0a:a4:d8:64:51:fd:93:b8:e6:55:
d7:57:23:a5:69:3a:1e:ed:35:22:d1:02:8a:ab:08:
97:3f:01:81:2e:3f:c9:b2:80:40:89:0f:22:ec:c2:
80:97:89:ef:38:dd:4c:d5:8b:f9:2d:a2:72:ea:84:
6e:70:cc:5d:9c:26:8d:8d:80:7c:87:4c:e9:11:f4:
64:f6:57:0c:33:36:9f:2b:41:40:d0:ef:8e:f6:1e:
8f:87:a9:aa:96:ea:d6:88:62:da:84:ed:f2:0d:29:
3f:d5:af:bf:1f:60:6b:31:47:ca:51:ce:ba:dc:f4:
0b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:29:82:0F:93:A5:C5:85:91:A1:F3:3D:5D:7F:A0:53:21:77:97:12
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:9f:27:5a:97:d4:97:38:6e:d3:06:0a:c0:55:ee:0f:59:87:
83:79:4b:27:de:34:7e:90:ee:c5:e2:5c:07:bc:0a:3f:f1:39:
9d:7c:79:f1:de:51:8d:6e:c1:e5:b4:3e:5c:cb:13:91:41:0e:
8a:e2:db:95:55:fd:e4:28:0c:e0:fa:40:e8:19:54:6d:35:00:
03:9b:63:de:35:8a:81:60:b3:c9:a4:b7:3f:d2:f2:a8:e2:69:
cf:50:18:55:b4:0f:34:b7:21:af:2d:a1:45:cc:78:36:69:d5:
7d:a4:f7:a1:c9:6f:82:82:d0:22:37:6d:22:6f:9f:49:3e:74:
0c:7a:0d:30:77:f4:18:72:6b:1f:5b:be:04:09:8e:80:5a:fc:
5e:fa:64:67:f6:43:35:9d:3c:23:e4:2d:12:c1:a7:71:ff:f7:
57:f9:7f:41:67:b0:fd:80:77:90:cf:d8:d7:63:55:a1:0e:f8:
34:c9:b0:8c:fb:20:62:55:e6:ca:ee:c6:9d:6d:35:5f:d0:0f:
9d:5a:e4:8d:cb:92:36:e8:1b:4a:09:c0:be:7a:ac:a6:fd:b2:
2d:51:8b:05:81:78:11:9f:64:88:e1:f9:39:d9:9d:8b:fb:f3:
7c:8b:a6:8c:b8:de:48:92:f5:43:94:79:33:a1:36:23:a2:f0:
ec:e1:69:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:12:11 2026 by rpki-client