Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
File: BaO2FkB7l-JhFjNId8aqkoqq7rI.mft (raw, json)
Hash identifier: RVL+OwwhGyobLa1vDUoSRSm4T+TkYBlKfYNKk17Xoss=
Subject key identifier: 92:95:73:56:03:C2:2A:D3:B3:6B:D5:4D:A2:6B:01:F9:C7:B2:B2:16
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 019E1D230A49B84080158E534A1106A52D5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
Manifest number: 0CF4
Signing time: Tue 12 May 2026 17:01:36 +0000
Manifest this update: Tue 12 May 2026 17:01:36 +0000
Manifest next update: Wed 13 May 2026 17:01:36 +0000
Files and hashes: 1: BaO2FkB7l-JhFjNId8aqkoqq7rI.crl (hash: sgMq959AFVhLVzMIqSByRGjI7sCzwEJGamWFvfCyp48=)
2: hVWAONuzeazGNdnWSgmA3i9K9C4.roa (hash: uImqFCqVZwZHHyqryIJNgNimhq6Y9tDjYPxtIUj1zD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:0a:49:b8:40:80:15:8e:53:4a:11:06:a5:2d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: May 12 17:01:36 2026 GMT
Not After : May 13 17:01:36 2026 GMT
Subject: CN=9295735603c22ad3b36bd54da26b01f9c7b2b216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:04:84:9a:f3:26:00:6b:12:69:55:94:e1:85:
c8:cc:76:74:0f:d6:1e:b6:6a:15:5f:30:16:48:0d:
07:6e:0f:f8:8b:49:63:cf:53:b8:98:9d:5a:21:91:
c5:8e:97:60:f8:33:88:4c:fa:7a:45:7f:be:13:ef:
38:b2:80:e9:2a:2b:3c:b3:29:33:9d:12:4c:f8:09:
66:26:46:43:e7:41:81:1e:a6:da:5b:c8:f6:1f:80:
e1:79:95:a7:a0:6d:0f:5f:5c:79:ea:55:84:05:5c:
f2:5c:83:d0:7d:dd:46:6a:2b:ee:61:42:57:84:13:
d7:28:c7:77:fa:47:44:99:2f:64:59:70:f7:b7:39:
d6:c8:70:43:55:cd:51:df:74:6d:14:1d:db:83:50:
27:8c:fe:d1:4e:aa:f4:19:8f:de:4e:74:c9:be:d1:
99:f8:39:f4:23:e4:06:06:ca:be:85:1e:28:fe:02:
17:52:20:05:8d:38:51:51:02:58:4f:7b:5e:38:f7:
cd:28:1f:cb:2b:40:77:78:54:7a:79:6f:4a:49:8f:
1f:58:de:13:59:f9:da:6d:b2:ed:72:79:04:18:28:
f4:4a:98:d7:14:1d:b2:cf:93:a9:b5:ea:8b:8f:ff:
e3:c6:96:04:28:41:19:f7:d8:1b:3d:a2:ea:59:3c:
3e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:95:73:56:03:C2:2A:D3:B3:6B:D5:4D:A2:6B:01:F9:C7:B2:B2:16
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:b6:aa:d7:8d:a9:a7:de:5d:49:5d:92:ce:19:e0:97:9b:a3:
00:e2:13:9c:dc:05:65:0a:99:88:98:cd:cd:93:9c:0b:50:ac:
ed:ba:3e:38:83:36:42:d6:4b:c0:e9:69:db:ea:1c:f9:57:7b:
2e:77:0b:36:65:d7:a3:34:c5:03:9d:d8:9f:30:b8:44:8b:56:
16:9e:9c:83:d4:f5:bf:7c:35:1d:ae:2d:7b:07:eb:6f:1e:84:
7d:78:39:4b:e5:41:59:0c:5c:5f:83:c6:46:32:ac:1c:02:00:
e2:9a:09:f8:a8:bc:e0:dd:70:db:f4:3e:a3:56:22:8f:7b:b6:
9a:dc:e9:9e:08:4d:4b:ae:2d:9b:1a:12:4f:3d:28:1b:ee:d7:
14:c7:07:28:86:1c:9e:37:2d:04:34:28:70:1d:06:4b:c9:3f:
7a:e6:3f:7a:fd:d1:76:07:2d:a8:5f:1e:08:f4:ce:54:a5:6f:
29:e7:a3:7d:f6:75:03:d5:df:f2:2b:5c:2b:d3:af:d4:3a:e8:
c7:1e:7c:7b:73:1a:b0:aa:0f:19:4f:26:e1:8b:44:56:db:b5:
ba:86:1e:7c:31:ff:ea:76:78:4a:bd:37:e0:a5:a0:ad:6c:f7:
b0:b3:b2:45:d4:73:37:af:32:8e:67:ca:98:99:6a:d4:36:42:
91:e4:63:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:17:05 2026 by rpki-client