Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: WwsQZnJ6sAI6Cy2aitTVcA3LWMVOT98U+MoIKfoxXVc=
Subject key identifier: 0B:F4:7E:79:32:04:65:C9:D0:58:54:6C:5B:A7:8B:28:56:FC:E5:90
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 019E1CEB50D201E0B7CBB3A902CCAAA81C4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 16:00:44 +0000
Manifest this update: Tue 12 May 2026 16:00:44 +0000
Manifest next update: Wed 13 May 2026 16:00:44 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: fmhj6Cytoa8kHCnRRnQCuf6K4JnzpXh6Ilg0AuAiF6s=)
2: Lqd1mryq0eI3XAJCMSKyJDpltOI.roa (hash: NKrZd+8ubVZMRdGL7RM/ghy07bvO6vCdLTdgz04D2Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:50:d2:01:e0:b7:cb:b3:a9:02:cc:aa:a8:1c:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: May 12 16:00:44 2026 GMT
Not After : May 13 16:00:44 2026 GMT
Subject: CN=0bf47e79320465c9d058546c5ba78b2856fce590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:6b:bf:53:b2:7f:eb:e3:0b:86:87:48:f1:
ba:8f:90:86:cb:6a:1e:9c:f1:08:31:63:6e:30:94:
b2:fc:aa:b3:f2:44:9e:66:ab:c1:af:3e:45:95:a7:
c1:e0:9f:a9:6c:7f:46:e8:f5:e3:66:90:ae:8a:39:
b9:0a:f6:5d:aa:a6:6b:b2:32:0d:67:11:fd:ff:08:
3a:ea:05:cd:30:c8:50:bc:d2:38:90:6c:79:2e:72:
f2:d8:4f:52:eb:eb:11:4d:61:0f:01:12:c3:62:75:
6f:f6:92:b6:23:d6:de:ab:60:fa:73:00:fc:e5:88:
af:c4:f6:e6:2b:60:ae:d4:f9:19:2f:01:fd:2e:78:
18:a1:7a:70:03:b2:66:4a:74:18:1c:8e:c1:b1:92:
8b:82:ae:fa:b4:3c:7d:8e:1c:24:16:e7:6f:c7:e2:
63:1a:fc:b0:73:af:4b:70:ac:10:19:f0:bb:94:fa:
63:b3:a4:7b:e0:fd:d6:da:b9:36:07:27:51:00:06:
7a:66:53:5d:67:a1:22:f9:22:65:20:80:38:19:0d:
51:25:62:be:52:bd:c2:8a:a4:a4:8b:e1:ad:94:d7:
b6:8d:4c:bd:92:8a:50:44:21:ae:ff:43:dc:6c:5b:
2a:2c:b5:78:21:10:1c:6e:8f:13:f3:24:b6:49:32:
9d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F4:7E:79:32:04:65:C9:D0:58:54:6C:5B:A7:8B:28:56:FC:E5:90
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c3:ce:b5:4a:00:3f:64:e3:02:42:e5:63:9c:c6:42:9c:7f:
36:7d:bd:ca:93:b9:5f:98:41:9c:04:85:84:f5:a5:11:ea:ad:
d2:35:8b:d5:26:4c:81:d2:17:c5:04:b2:46:3a:dd:88:0c:f2:
3e:d0:65:2a:ef:06:ba:bd:df:5c:db:01:03:f2:79:70:dd:c4:
31:9e:a4:e3:3a:ab:2d:96:24:a1:03:7f:0f:96:c5:07:63:c9:
5c:03:c0:13:42:3f:a8:44:e0:07:fd:b8:ee:54:71:38:3f:55:
92:48:84:07:d1:f0:f4:b3:43:1b:07:b6:72:2e:b6:9b:3f:f9:
d4:c7:12:ab:01:f5:2a:ea:c6:ee:23:2f:2a:0c:e7:2a:5f:dc:
2d:bc:87:e9:46:1e:d2:04:ea:15:1e:4b:39:10:83:d8:2a:44:
20:14:ba:2d:65:5b:f3:36:0b:4a:a8:d3:0a:3f:72:4f:ad:4b:
f3:54:39:55:43:17:0d:71:7a:bc:c2:4e:60:6a:5a:77:ce:63:
f7:6b:11:2b:0c:9f:64:db:a7:74:2a:e9:f4:c8:c5:13:a8:3a:
f1:e7:4c:67:b7:fb:5d:41:2d:8c:91:9f:75:7b:0c:d9:62:c2:
07:c3:6c:14:92:b0:df:e0:cd:66:d2:0d:b7:76:21:62:33:1b:
3a:29:0e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:26:33 2026 by rpki-client