Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: dQ4plrWS6swl+eGUSeUZ4DsuwuMwOg57A4ntd3NW1L8=
Subject key identifier: 8F:AE:96:0A:E5:54:1C:C5:62:95:20:E2:B9:1C:F0:1E:79:D6:84:05
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 019D3909D21EF6D7A94F6661F86A34C02163
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 10:00:37 +0000
Manifest this update: Sun 29 Mar 2026 10:00:37 +0000
Manifest next update: Mon 30 Mar 2026 10:00:37 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: ud28u+fa1qjSWv9+gnW1LlnKRyjmFbZj3Da4/KRct+8=)
2: Lqd1mryq0eI3XAJCMSKyJDpltOI.roa (hash: NKrZd+8ubVZMRdGL7RM/ghy07bvO6vCdLTdgz04D2Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:d2:1e:f6:d7:a9:4f:66:61:f8:6a:34:c0:21:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Mar 29 10:00:37 2026 GMT
Not After : Mar 30 10:00:37 2026 GMT
Subject: CN=8fae960ae5541cc5629520e2b91cf01e79d68405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fc:d5:23:b9:16:fe:11:73:e0:ac:ed:77:1c:
ba:41:a0:af:b6:1a:c6:c5:98:14:4e:1b:fa:bd:4f:
46:9d:ac:c2:6e:94:27:d3:77:c1:01:09:86:be:47:
9c:83:6e:a0:c1:2b:1f:22:bc:80:0a:5f:2f:9c:35:
7e:d0:d5:ae:ff:81:ad:01:84:6c:a6:67:e8:c4:bd:
3b:93:50:50:d4:a6:5f:4d:4e:44:86:f7:6b:8d:21:
0d:8b:e6:1d:bf:d0:d5:7a:ae:04:62:fb:be:ce:12:
cb:d6:dd:df:61:c3:1d:1a:9f:fa:da:6a:9a:62:1b:
2e:9e:2e:b3:be:b6:3b:34:08:0f:02:eb:16:b7:93:
b0:9c:4f:3f:bf:7f:02:85:84:c9:04:d8:de:db:3c:
a2:08:fc:28:87:25:6a:3a:3d:50:50:b6:6d:f4:f6:
d7:fa:7b:78:4d:fd:1b:7b:db:64:c2:83:1c:73:8e:
08:2d:f4:6c:6e:e6:74:cf:ba:aa:52:ed:65:bd:40:
63:9e:a9:37:b6:89:d2:88:4d:28:ed:d5:df:c6:3c:
ef:bd:bc:2e:77:ef:6f:d6:98:71:5d:3d:4d:58:f6:
d0:4c:06:4c:5b:77:23:a5:e5:ab:2d:b4:4a:42:58:
ce:96:57:d2:9c:b8:8e:6d:15:7e:cd:fe:51:e4:0c:
fd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AE:96:0A:E5:54:1C:C5:62:95:20:E2:B9:1C:F0:1E:79:D6:84:05
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:40:58:8d:5c:72:c4:39:6d:40:ab:2c:29:5b:ce:9e:0a:56:
d1:60:a4:5d:48:00:51:51:9a:24:ae:54:b3:0c:3e:f5:ba:f7:
c3:5e:ac:ad:8f:ab:32:ae:f8:3c:d7:98:14:d5:47:12:2c:dc:
16:56:f2:0b:6f:af:12:41:5f:75:d7:d8:a4:66:d2:f8:31:71:
d9:83:a0:5c:1f:b3:e9:83:ca:ea:ed:c6:e7:ee:fc:01:bf:a9:
dd:40:97:83:8b:4f:46:57:35:ad:65:17:f7:04:c2:ef:0b:37:
70:86:bc:f3:7a:cf:77:be:c4:dc:19:a4:06:72:9f:de:df:64:
a8:91:27:a7:e1:74:c9:f0:48:60:6b:ae:7f:60:e0:30:4b:00:
e5:06:b9:35:59:6c:60:8a:b4:e8:93:73:3c:87:c0:df:d1:c5:
01:d1:6c:5a:af:9e:61:81:b1:bf:06:20:28:f9:e0:5e:44:13:
f1:c7:c3:de:23:6e:c2:b8:81:7a:32:27:35:26:d0:8b:80:98:
c8:31:24:1c:8a:ed:ee:86:64:1f:3f:74:4a:ce:aa:5c:47:0f:
68:d0:14:64:9f:04:e1:90:a0:b1:7f:f5:73:3c:ab:6b:d2:f3:
81:13:73:27:8b:53:7e:b3:0f:44:3b:a6:ea:a4:93:20:fc:73:
e4:05:5f:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CdIe9tepT2Zh+Go0wCFjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YWU1ZjIzZGI5ODNmZDEzNmFlOWQ3MWU4N2UxZTUxMzBi
Y2Y2ZDQwHhcNMjYwMzI5MTAwMDM3WhcNMjYwMzMwMTAwMDM3WjAzMTEwLwYDVQQD
Eyg4ZmFlOTYwYWU1NTQxY2M1NjI5NTIwZTJiOTFjZjAxZTc5ZDY4NDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmfzVI7kW/hFz4Kztdxy6QaCvthrG
xZgUThv6vU9GnazCbpQn03fBAQmGvkecg26gwSsfIryACl8vnDV+0NWu/4GtAYRs
pmfoxL07k1BQ1KZfTU5EhvdrjSENi+Ydv9DVeq4EYvu+zhLL1t3fYcMdGp/62mqa
Yhsuni6zvrY7NAgPAusWt5OwnE8/v38ChYTJBNje2zyiCPwohyVqOj1QULZt9PbX
+nt4Tf0be9tkwoMcc44ILfRsbuZ0z7qqUu1lvUBjnqk3tonSiE0o7dXfxjzvvbwu
d+9v1phxXT1NWPbQTAZMW3cjpeWrLbRKQljOllfSnLiObRV+zf5R5Az98wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI+ulgrlVBzFYpUg4rkc8B551oQFMB8GA1UdIwQY
MBaAFAWuXyPbmD/RNq6dceh+HlEwvPbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQt
NDRlZmQxMzA2NTljLzEvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQtNDRlZmQxMzA2NTlj
LzEvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYkBYjVxy
xDltQKssKVvOngpW0WCkXUgAUVGaJK5Usww+9br3w16srY+rMq74PNeYFNVHEizc
FlbyC2+vEkFfddfYpGbS+DFx2YOgXB+z6YPK6u3G5+78Ab+p3UCXg4tPRlc1rWUX
9wTC7ws3cIa883rPd77E3BmkBnKf3t9kqJEnp+F0yfBIYGuuf2DgMEsA5Qa5NVls
YIq06JNzPIfA39HFAdFsWq+eYYGxvwYgKPngXkQT8cfD3iNuwriBejInNSbQi4CY
yDEkHIrt7oZkHz90Ss6qXEcPaNAUZJ8E4ZCgsX/1czyra9LzgRNzJ4tTfrMPRDum
6qSTIPxz5AVfbQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:37 2026 by rpki-client