Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: oRFKSimiyjkdMLzAgQMtAMLd4+HlxwRdslaB4/RqtF4=
Subject key identifier: 09:EB:31:DC:0C:9C:D4:F2:6C:DC:41:FC:7C:F1:0A:95:15:18:A2:41
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 019D25BA75282906C85CD9EDA64D0E122E1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 16:01:09 +0000
Manifest this update: Wed 25 Mar 2026 16:01:09 +0000
Manifest next update: Thu 26 Mar 2026 16:01:09 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: ewgAPja2KpzFzmyMDVFLDWs4b5yFPWbzxLtP2U8Urd8=)
2: Lqd1mryq0eI3XAJCMSKyJDpltOI.roa (hash: NKrZd+8ubVZMRdGL7RM/ghy07bvO6vCdLTdgz04D2Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:75:28:29:06:c8:5c:d9:ed:a6:4d:0e:12:2e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Mar 25 16:01:09 2026 GMT
Not After : Mar 26 16:01:09 2026 GMT
Subject: CN=09eb31dc0c9cd4f26cdc41fc7cf10a951518a241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:cd:93:2c:c9:96:25:21:27:4c:6b:a2:99:bb:
93:fa:7f:b9:ce:89:9a:dd:02:c4:52:7a:11:50:93:
5a:98:4f:7a:fa:56:d5:10:80:24:3b:92:59:a9:58:
42:83:2d:1c:d6:8e:ce:03:50:d3:6c:1b:f7:e5:27:
f7:5c:d6:0b:69:a5:ab:33:ae:ae:6f:49:0f:d2:6a:
4b:43:10:31:5f:99:2b:d2:97:5d:1f:19:62:0d:e9:
b7:d7:f3:96:c9:b8:e4:d6:48:48:55:c5:00:e5:a6:
28:2f:f0:43:18:93:73:17:0e:eb:da:5d:96:56:63:
7c:cb:f7:42:a0:84:c4:97:5e:1a:91:3f:eb:80:1a:
93:5e:7f:6e:ae:ae:41:5c:4d:65:48:e0:f7:c3:9d:
2b:2f:16:1a:89:48:1c:9b:77:f3:d6:d0:96:e6:e9:
5a:aa:7a:fb:a7:a0:c0:f9:e1:9a:26:76:b3:e4:e2:
98:83:b8:4a:c6:72:f6:05:ff:f9:a9:a0:36:13:71:
d0:3f:08:bc:d9:e4:78:18:00:77:c9:79:f6:75:37:
ce:82:2d:e0:5e:51:6b:d0:39:54:00:74:aa:9d:d6:
34:d3:03:a5:5e:f9:81:43:0c:18:75:4d:eb:0d:a3:
cb:55:90:05:6c:d3:5b:80:1a:f1:7a:77:18:93:75:
94:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EB:31:DC:0C:9C:D4:F2:6C:DC:41:FC:7C:F1:0A:95:15:18:A2:41
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:2b:95:67:c3:67:f4:00:b9:ad:76:b4:5a:ce:16:37:3d:b7:
93:c2:f8:f9:07:cc:d2:93:61:e7:41:ae:f2:ba:3f:87:b9:da:
0c:35:62:ee:28:76:0a:d1:c0:ce:ed:95:46:fa:a9:ec:36:fc:
a0:1a:aa:ef:90:06:e5:5f:3a:ad:10:59:4e:87:9a:51:f5:35:
ed:01:02:4b:37:6a:f7:75:7a:ed:a6:67:d2:e6:11:46:c8:c2:
ff:03:54:a1:ab:33:0f:4f:7c:8d:0f:1d:a3:6d:cf:1c:2e:a8:
44:b9:77:bf:46:12:44:ed:29:a4:77:a3:1a:8d:e5:c7:8e:e9:
f7:28:b1:3c:26:e1:dd:ad:36:56:08:fb:42:68:e8:ae:34:28:
4c:2b:84:13:a2:ab:d1:d1:ad:46:95:16:1f:6d:19:a6:e7:0a:
f3:6c:a2:5d:67:c6:fc:d2:5b:11:81:8d:b8:a8:f5:31:46:9b:
8f:d9:f0:31:24:99:f1:7d:22:4a:72:3c:fa:98:a4:6f:fe:d6:
7d:fa:98:ab:41:ff:4c:9b:54:0c:4f:f4:ee:9b:4d:42:63:78:
7c:aa:c8:7e:33:75:70:63:4f:3a:ad:90:04:2b:f2:31:3c:d2:
9e:0c:f0:28:02:c9:b7:08:4f:08:ec:26:9e:d9:23:5d:57:4d:
cc:86:47:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:30 2026 by rpki-client