Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: XtigwqdUy86LgolGJn0lBJgalD2XMh8tZuMu4y3Zzoc=
Subject key identifier: E4:3F:92:F6:DA:2E:D5:F1:7C:54:0B:43:7A:27:E3:83:A0:EA:DD:37
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 019CE636A617BE1A24B9BCD7F84DBFAD35DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0C53
Signing time: Fri 13 Mar 2026 08:01:06 +0000
Manifest this update: Fri 13 Mar 2026 08:01:06 +0000
Manifest next update: Sat 14 Mar 2026 08:01:06 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: pNTT9BQxL70nR4wIQLP9sklDod0QtwXKcYPH/fukDcw=)
2: hVWAONuzeazGNdnWSgmA3i9K9C4.roa (hash: uImqFCqVZwZHHyqryIJNgNimhq6Y9tDjYPxtIUj1zD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 08:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:36:a6:17:be:1a:24:b9:bc:d7:f8:4d:bf:ad:35:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Mar 13 08:01:06 2026 GMT
Not After : Mar 14 08:01:06 2026 GMT
Subject: CN=e43f92f6da2ed5f17c540b437a27e383a0eadd37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c7:ea:e1:b8:7b:54:b4:5b:ba:73:71:7e:f2:
0c:a0:93:85:60:90:57:c4:50:cc:78:03:f1:ed:dc:
54:61:0e:21:85:e5:08:c1:62:46:38:88:72:92:37:
73:d2:1a:fb:a4:cc:90:1a:74:59:d8:6d:eb:92:67:
57:93:8a:da:44:17:e4:f6:08:5e:81:74:87:5b:00:
70:9d:bd:b8:50:10:b9:d6:66:49:d9:72:07:6a:74:
c4:b7:93:3e:b2:95:d7:8d:22:b9:43:a4:33:67:36:
66:66:f6:c2:db:41:eb:a7:5b:2a:5a:95:bf:40:6e:
ec:2d:ea:dd:07:e4:ff:7c:e1:e2:d6:4b:b5:78:b6:
24:2a:82:db:70:0f:c0:45:c1:1a:24:bf:74:9c:87:
65:e9:c1:cd:05:6f:87:c2:d9:84:6e:b4:eb:2b:56:
5c:8d:5a:bd:8e:e2:a3:2e:66:78:20:d3:8b:76:e8:
4c:f5:7d:d4:30:4d:b9:ae:77:52:f9:c3:37:b0:89:
53:5b:c5:9a:84:32:7c:b6:08:86:69:33:f8:e9:1c:
8b:14:36:f0:20:3f:09:45:53:d4:d5:6f:1f:02:47:
ce:94:29:80:04:c5:9b:40:21:00:f9:76:73:4c:f0:
d4:4c:e9:47:63:03:1f:d7:31:01:32:a8:31:5c:f3:
e6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3F:92:F6:DA:2E:D5:F1:7C:54:0B:43:7A:27:E3:83:A0:EA:DD:37
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:77:ce:2c:40:49:82:ad:48:6f:53:b2:9a:ef:a3:f6:5c:db:
78:83:9b:db:88:de:fe:71:48:69:97:2b:97:11:bc:0c:58:1e:
47:42:d4:74:d0:39:e2:76:9c:a1:c0:ab:51:57:cf:7e:9c:ab:
0d:98:f6:a3:5c:64:d1:c2:b5:59:b5:65:64:18:0a:c7:58:72:
ab:1a:80:5d:d6:d6:e9:54:a5:19:bd:e2:62:86:85:ae:79:b9:
aa:2a:9e:39:78:7d:be:73:34:fd:47:34:b9:5d:8d:85:62:e7:
e8:fd:df:d7:30:e7:f8:63:c5:04:b2:5a:2e:e5:12:ed:63:8e:
71:d6:64:91:b0:51:bb:01:cd:49:6c:54:ef:4c:21:cc:07:60:
ac:e5:e9:c1:48:19:a5:36:9a:5b:c2:56:88:37:40:04:b1:ee:
73:77:36:1d:bd:a7:7e:d4:a1:66:02:95:89:ca:d7:42:c8:5e:
89:ae:83:19:b7:96:67:e7:cc:51:c9:42:d4:59:0c:36:48:d2:
7e:07:c1:05:87:b5:d0:57:e7:91:3b:0b:28:35:ea:b9:c2:28:
03:93:cb:8f:e3:e1:cf:5c:ae:dc:7a:a5:4e:56:82:ce:84:d3:
d5:00:99:f5:04:c0:5e:98:29:22:3d:9a:37:8e:48:90:93:0a:
27:b6:5a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 15:56:57 2026 by rpki-client