Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: arjYb2FJ/obETfuq8NzK7ZZRrmGyzCUgzlamKLOm7Wk=
Subject key identifier: ED:0B:0E:D7:6A:34:2D:9A:CE:7F:44:3C:17:2E:90:BC:28:A9:0B:F0
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 019E307334CDDB80C030447BDAC7A127F113
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0CFE
Signing time: Sat 16 May 2026 11:01:56 +0000
Manifest this update: Sat 16 May 2026 11:01:56 +0000
Manifest next update: Sun 17 May 2026 11:01:56 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: jrwKqnxs6a4EEqAEbQpVJmRvwteQL13l4BtEqnxMAyo=)
2: hVWAONuzeazGNdnWSgmA3i9K9C4.roa (hash: uImqFCqVZwZHHyqryIJNgNimhq6Y9tDjYPxtIUj1zD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:73:34:cd:db:80:c0:30:44:7b:da:c7:a1:27:f1:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: May 16 11:01:56 2026 GMT
Not After : May 17 11:01:56 2026 GMT
Subject: CN=ed0b0ed76a342d9ace7f443c172e90bc28a90bf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ab:d8:a4:ee:3f:b3:f8:a7:80:2f:1c:e7:62:
c4:1b:0c:de:48:dd:03:97:fa:ad:a6:68:b0:35:e7:
a3:2e:0a:08:ae:f1:09:e5:f9:72:50:94:5a:bf:56:
f9:42:e1:c7:6f:99:46:16:48:1c:9c:97:f3:fa:14:
16:81:ac:49:fe:60:e5:a3:ca:f4:2d:7f:1a:9a:6b:
78:ac:98:73:03:e5:32:80:26:f7:b0:cd:14:9b:c7:
d5:72:d3:73:ed:36:dc:da:65:f3:cc:28:04:bb:49:
cf:b0:c1:89:fc:a0:6b:f9:df:7f:63:fa:ba:09:0d:
ad:cc:de:f5:e5:54:7e:eb:64:ae:d8:66:0a:12:0f:
fd:2f:8a:d1:8a:94:75:c6:0a:52:93:25:3b:19:c9:
48:03:1b:f7:1f:7f:e6:50:38:bf:09:35:8f:44:d4:
09:c0:68:a8:d6:82:05:2c:92:f9:f3:ac:36:28:28:
aa:62:72:1a:ef:2b:b9:94:4c:20:5c:74:89:5d:b3:
1c:f2:34:0c:a0:62:21:23:fb:f5:87:c5:d1:81:16:
80:5f:ce:e7:45:c0:df:cd:9b:d3:da:ae:c3:2f:64:
95:fe:19:b1:25:64:e1:6b:4b:28:90:8f:56:f7:de:
35:f1:4d:d3:3a:bf:b8:5a:92:21:79:86:6a:9d:06:
28:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0B:0E:D7:6A:34:2D:9A:CE:7F:44:3C:17:2E:90:BC:28:A9:0B:F0
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:13:99:21:48:5a:e8:5c:ba:4f:75:9f:d7:b4:d2:8f:31:7d:
e4:f4:b4:a0:52:78:0f:b4:cf:28:44:7e:7e:51:e1:ba:5f:94:
e9:43:1a:79:6a:e5:a4:bd:a3:e7:9a:2e:bf:c7:f1:25:da:6d:
5f:81:98:6d:1c:85:25:86:88:a9:06:01:14:0d:94:f8:94:6f:
0d:e1:8b:78:a6:9b:e5:a5:35:57:e9:2e:32:c9:3e:a9:a0:45:
35:03:a2:26:81:fd:1e:1f:54:d6:4c:24:37:74:66:69:ac:e1:
35:d8:d5:43:90:cc:6f:d5:88:b0:da:10:6f:4e:12:ab:03:94:
9c:c2:a8:94:4d:5b:e9:5f:2f:00:f1:6f:7f:13:8e:2c:2f:48:
bf:87:50:d5:fc:b1:d4:52:29:d2:ff:34:ab:f8:c9:15:3c:31:
0b:68:1e:f2:14:7e:21:c4:12:df:6a:1a:6f:31:cf:d8:fa:71:
9c:6f:b8:77:af:de:cb:38:ed:c5:61:8d:c3:bc:66:c5:46:0b:
83:24:61:e1:8e:e3:5f:54:f2:24:5d:93:cf:b9:5b:8c:36:a6:
23:92:88:00:51:12:a4:ef:ed:74:1c:04:bc:c9:74:e2:94:88:
7b:d1:9d:63:d2:e8:f0:57:4f:de:d8:a3:fb:f6:5d:ed:59:d1:
87:1f:9b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:37:35 2026 by rpki-client