Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
File: BaQevhJyohyuDqGzXcCD-taKXX0.mft (raw, json)
Hash identifier: oWJ5RvuEJfYLzyOM3aAsf5fJuYSkdX7PBldQotOS6Og=
Subject key identifier: 32:7E:25:9E:F8:D3:95:EA:85:29:8A:DA:2C:C8:8A:84:38:19:75:59
Authority key identifier: 05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
Certificate issuer: /CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Certificate serial: 019E1FECD2966B8D56FBF63D16B9740A8DFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
Manifest number: 1904
Signing time: Wed 13 May 2026 06:01:14 +0000
Manifest this update: Wed 13 May 2026 06:01:14 +0000
Manifest next update: Thu 14 May 2026 06:01:14 +0000
Files and hashes: 1: 8Cyiu9TGgmUOUznTzwuimvpBz-0.roa (hash: fxDhOvakeaBpONzylzbpa6MC2T2cHPWJh3ryLVED65Q=)
2: BaQevhJyohyuDqGzXcCD-taKXX0.crl (hash: LSLS6JEtiYq6NzjtD4sGEfEK8I83uBKHObwOMpliROY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:d2:96:6b:8d:56:fb:f6:3d:16:b9:74:0a:8d:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d
Validity
Not Before: May 13 06:01:14 2026 GMT
Not After : May 14 06:01:14 2026 GMT
Subject: CN=327e259ef8d395ea85298ada2cc88a8438197559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2a:84:01:bf:44:f2:aa:d6:ae:60:ae:3a:ee:
1e:d8:a8:62:bd:05:6b:3c:3c:5f:d6:0d:7a:83:d9:
b4:eb:cd:61:c9:f1:c1:dd:99:06:33:0a:0e:25:91:
d3:23:e2:2d:db:91:2d:ea:cf:cd:c5:73:d7:b3:35:
ed:bd:4d:b2:25:9d:8d:f8:38:8c:cb:48:d4:3d:ce:
0e:14:ff:f3:df:b1:05:d7:32:7d:ad:b3:d3:b4:76:
74:f8:89:83:2f:c0:9a:7a:7e:8c:31:30:ed:3f:c1:
52:9f:25:dc:dd:03:af:fe:ef:fc:00:96:0f:fd:63:
31:83:65:22:5f:0f:36:6e:3b:61:0b:7f:bd:0e:85:
44:1f:95:97:c4:44:67:1e:ab:86:0c:0b:60:cf:28:
d7:72:05:57:63:77:7a:6a:b7:7f:0d:ef:34:37:25:
55:04:16:c9:48:dd:4b:86:94:31:f6:95:14:d4:f0:
dd:b7:3e:37:dc:89:fe:e9:d4:d4:6f:7d:77:c9:e1:
ca:23:bd:73:4d:a7:24:c0:9b:92:17:22:61:c3:63:
9f:be:ad:84:e7:b1:ee:44:01:35:01:e5:ee:e5:82:
53:ce:88:d7:f7:2b:7c:81:3c:89:a6:87:a2:01:11:
2a:45:cc:22:21:6a:99:6c:6a:bc:0c:43:0e:40:50:
bf:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7E:25:9E:F8:D3:95:EA:85:29:8A:DA:2C:C8:8A:84:38:19:75:59
X509v3 Authority Key Identifier:
keyid:05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:fc:11:77:b0:be:d7:8d:a7:db:78:ca:56:3e:ab:fa:5c:f2:
4b:8f:d2:14:6c:2b:d5:77:c0:f3:c6:cc:6d:39:63:91:8d:97:
e9:60:7c:cf:8e:6c:85:29:2f:6a:c9:10:e5:bc:3e:70:17:01:
91:3c:11:d1:ec:1a:b5:f4:6d:36:62:ef:68:4d:b8:8c:c4:50:
83:a5:8c:25:d3:26:5d:d7:96:31:50:07:ab:d6:d6:8d:d5:8a:
60:82:b7:95:2a:ea:67:64:d5:82:91:4d:83:29:d4:76:de:44:
aa:9a:fa:3b:e5:b9:38:07:da:fa:06:3a:08:c3:71:65:f5:9e:
06:ea:07:e6:73:67:cd:b8:52:4e:c8:cb:9a:5c:73:e2:2b:e8:
38:ff:6e:b4:ae:5f:7f:df:ff:b7:69:7d:f5:96:1d:5b:56:fe:
f0:c5:bc:4f:97:ab:4a:ec:05:54:aa:80:47:32:c1:4e:56:7c:
e4:56:8b:a3:ee:05:56:a7:fb:60:7e:b7:67:b4:68:f9:b3:56:
6b:20:4c:fe:0e:b2:22:6d:ad:38:05:6c:0f:81:6f:64:d6:91:
d2:a6:b1:a8:c6:da:6f:9e:c3:77:9f:18:7d:fa:7d:24:60:71:
2d:5f:df:73:0b:e3:16:d8:05:1a:08:73:ac:45:c5:a8:1d:3a:
a2:aa:57:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:42:07 2026 by rpki-client