Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: mWNF4NDuDUc28aoXkOhV5XzKNWwRM+whPJixxY4Beis=
Subject key identifier: 5E:1A:BB:FA:CD:79:D6:BA:DD:6D:6F:DA:13:84:9D:69:13:EB:52:FF
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 019E322A022C5EE21B6E86C2C563C0BE501F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 19:01:14 +0000
Manifest this update: Sat 16 May 2026 19:01:14 +0000
Manifest next update: Sun 17 May 2026 19:01:14 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: PqBCFPyKK7EoGTH56zkrM32bmS2+NOU69aLAxdMCKIc=)
2: Lqd1mryq0eI3XAJCMSKyJDpltOI.roa (hash: NKrZd+8ubVZMRdGL7RM/ghy07bvO6vCdLTdgz04D2Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:2a:02:2c:5e:e2:1b:6e:86:c2:c5:63:c0:be:50:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: May 16 19:01:14 2026 GMT
Not After : May 17 19:01:14 2026 GMT
Subject: CN=5e1abbfacd79d6badd6d6fda13849d6913eb52ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:22:61:9c:79:3e:b3:52:df:cf:a8:19:39:a3:
29:ca:48:f6:52:6b:9c:1b:0e:b6:ce:9e:12:26:d6:
15:41:d4:99:f0:32:95:67:06:12:7a:1f:a0:99:22:
b5:50:5e:87:70:3c:fe:1b:84:8e:07:22:b6:11:4a:
07:82:40:b6:dd:1a:87:7d:79:f1:09:0a:a2:a5:a5:
90:a4:d2:37:ee:d6:4a:9d:db:90:d3:5b:f9:a9:ef:
d5:d3:58:d7:2b:e9:fa:3b:7d:6b:26:ac:a5:f6:6a:
9e:e7:5d:e9:3e:23:83:4b:b0:11:db:68:e9:15:99:
8b:71:a6:bf:58:f9:c4:03:96:51:5a:13:63:88:1c:
6d:77:f1:58:32:91:58:24:d4:c3:0d:e3:e7:09:63:
a7:ad:ec:b4:12:d7:8b:93:7f:70:96:32:93:66:13:
9e:b3:89:f7:f9:cd:cd:db:bf:e6:14:6b:4e:e2:3e:
bb:1f:b9:72:05:28:a1:ba:7e:a4:7e:74:fe:c3:c7:
77:af:f0:34:cb:b8:e1:7f:9a:09:d5:d9:5e:c8:08:
f9:5c:7b:5d:ca:fc:df:1c:f9:bf:0f:e9:a6:0e:63:
2e:91:ae:d9:98:a8:02:4f:e6:e4:d2:f1:f2:6c:2d:
86:fa:4d:d5:27:0d:55:57:fd:38:4f:7e:e9:6b:c6:
d7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1A:BB:FA:CD:79:D6:BA:DD:6D:6F:DA:13:84:9D:69:13:EB:52:FF
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:f7:f3:cd:47:cd:11:7e:60:02:91:51:4d:f1:32:b0:e0:df:
25:19:01:56:db:b7:81:01:7c:17:1a:f9:3c:64:15:62:1b:45:
e9:f8:1a:f6:eb:40:35:c3:8c:44:88:d0:0d:76:89:15:5e:db:
a8:f5:66:92:68:4f:85:95:13:a4:a7:a7:19:6a:23:5b:22:2c:
61:a5:1b:e0:68:3d:0c:8e:fb:a9:89:52:b4:48:45:21:92:26:
4f:31:1b:51:9a:c7:9b:f1:7d:a2:0d:b5:64:0c:a1:b3:2d:1e:
fc:9a:fc:12:c6:45:9b:9d:88:04:d0:a6:a6:1c:e5:c1:71:3f:
a2:55:75:b5:72:73:4f:06:b4:13:09:b2:96:2a:d7:0e:20:15:
ef:8a:08:14:fd:5d:53:c2:1d:de:0e:bc:cd:c1:64:f5:81:35:
b1:12:3a:cb:7a:43:0b:bf:aa:dd:1a:39:b8:ff:64:93:0d:25:
e0:bc:09:0d:9c:61:30:49:ab:31:25:2b:f2:27:5a:23:8e:c0:
a8:9d:a1:bb:ac:cc:1b:fa:a1:29:d9:0d:92:62:d3:ba:af:f2:
00:35:26:f8:76:44:6b:4c:21:c2:92:76:c6:ea:a6:74:ec:53:
d0:79:41:ea:f9:cb:5f:73:ab:9a:e0:b4:32:6c:98:18:64:5f:
ed:93:4c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:02:48 2026 by rpki-client