Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: w6ZIB+sQGpx151n5V0kkgSMF3rH1LFvkyAk3ISzNBOI=
Subject key identifier: BA:F3:5B:4D:17:0C:1C:4B:13:FC:11:24:0A:8C:7C:5C:11:AC:C0:05
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 019D27E058B860AA8245156774D30A2ECBA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0C75
Signing time: Thu 26 Mar 2026 02:01:47 +0000
Manifest this update: Thu 26 Mar 2026 02:01:47 +0000
Manifest next update: Fri 27 Mar 2026 02:01:47 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: lubFkg1M1a4TgWS8quACJMCuiwczJ3tVLkbyIB8EIYw=)
2: hVWAONuzeazGNdnWSgmA3i9K9C4.roa (hash: uImqFCqVZwZHHyqryIJNgNimhq6Y9tDjYPxtIUj1zD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:58:b8:60:aa:82:45:15:67:74:d3:0a:2e:cb:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Mar 26 02:01:47 2026 GMT
Not After : Mar 27 02:01:47 2026 GMT
Subject: CN=baf35b4d170c1c4b13fc11240a8c7c5c11acc005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:02:03:7a:98:7f:1e:64:f0:04:06:35:9f:ab:
50:c9:0c:bb:96:b4:8d:17:7a:3a:ad:51:ed:6a:cf:
8c:4a:92:96:17:60:ca:ca:36:bf:3c:dd:f0:1f:0d:
ca:fe:2e:cd:69:2e:15:01:63:a8:76:a0:39:0c:f9:
ea:95:c1:57:3f:d8:17:bc:91:61:39:5a:21:f3:51:
dd:55:e7:e8:6c:82:d1:5a:78:1d:11:32:db:66:20:
68:2e:40:e7:5a:0d:c0:94:74:26:f9:c2:ce:27:fd:
0b:45:c6:51:8c:38:10:8b:24:45:81:92:56:bd:87:
15:e3:ed:7e:fa:ee:95:64:d2:4e:a8:4f:0b:8c:bd:
ac:3c:f6:b2:60:0d:04:41:2a:ff:35:75:67:c4:7a:
e2:3a:c7:7c:3e:78:56:f0:ff:d0:de:41:85:6a:a2:
7e:10:42:e9:1e:62:f6:89:6f:52:eb:e9:bf:1a:ab:
b8:86:5b:d1:ff:3b:9a:6a:f7:0e:a6:82:8e:89:12:
fd:75:89:8f:cc:e4:c5:be:92:ee:ed:d3:98:2b:92:
12:92:17:14:1c:22:71:ae:f7:b1:9c:26:4f:a8:d9:
f0:e8:8c:5c:e3:1d:7e:c8:bc:8a:60:bb:b2:5c:07:
95:d0:64:8a:2c:f1:57:6f:24:1d:7e:67:26:5b:ec:
f2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F3:5B:4D:17:0C:1C:4B:13:FC:11:24:0A:8C:7C:5C:11:AC:C0:05
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:a7:01:84:fb:fd:3a:62:62:3a:4d:7f:45:92:4b:a3:ff:e3:
83:80:db:53:b0:24:6e:a8:2e:23:72:af:d8:2b:29:55:26:de:
7c:ae:79:5e:a9:01:a8:77:b9:84:5a:b9:08:46:83:2b:85:8b:
66:bb:5b:bb:dc:6b:9c:e3:d9:b9:d1:b1:3e:9c:63:19:07:06:
ec:f9:5b:2d:23:dc:0d:a5:76:eb:f0:85:b2:fc:55:af:62:2c:
64:74:a7:c3:20:50:07:be:62:f8:17:46:da:c5:ca:0d:dd:4b:
5b:95:f2:64:48:13:9f:a5:5c:c3:90:24:5e:65:6c:2d:08:94:
88:52:15:78:03:67:58:6b:1e:25:d3:ab:a0:38:79:a6:47:2b:
a4:07:13:0f:52:9d:c4:8c:f5:e1:56:c3:10:96:75:95:fb:ae:
5f:3d:9f:37:06:86:6c:a2:ab:52:f0:9e:ad:f5:dd:4a:f1:73:
8b:08:a3:aa:79:ce:46:c4:9d:80:5a:3c:2f:9a:f0:f0:1d:41:
0e:1e:10:da:24:09:c3:ad:2f:bd:fb:c8:2a:30:1d:86:b4:f1:
e7:e6:3d:77:99:1b:b7:23:7a:f2:fa:78:a7:c5:e3:08:b8:00:
d4:5a:b5:82:6e:4c:28:58:1a:20:ae:77:44:cb:1e:1c:1f:25:
d7:3b:eb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:47:28 2026 by rpki-client